6/30/2022 June 30, 2022June 30, 2022 ~ The Cyber Beat ~ Leave a comment FCC Commissioner Urges Google, Apple to Drop TikTok AppNorth Korea Is Likely Culprit Behind $100 Million Horizon Crypto Heist, Researchers SayGoogle Blocks Dozens of Malicious Domains Operated by Hack-for-Hire GroupsA Fintech Horror Story: How One Company Prioritizes CybersecurityCompanies Are Desperate for Cybersecurity WorkersThe Seven Best Secure Messaging AppsChrome Password Manager Update Will Let You Manually Add Credentials on All PlatformsNevada Man Arrested for Alleged $45m Metaverse Investment FraudMacmillan Shuts Down Systems After Likely Ransomware AttackOpenSea Phishing Threat After Rogue Insider Leaks Customer Email AddressesTennessee’s Unemployment Claims Website Goes Dark After CyberattackMicrosoft Exchange Servers Worldwide Backdoored With New MalwareAstraLocker 2.0 Infects Users Directly from Word AttachmentsXFiles Info-Stealing Malware Adds Support for Follina DeliveryJenkins Warns of Security Holes in These 25 Popular Plugins
6/29/2022 June 29, 2022June 29, 2022 ~ The Cyber Beat ~ Leave a comment Norway Hit With Cyberattack, Temporarily Suspending ServiceCyberattack Hits Russian Space Agency Site After Sharing NATO Photos1Password Now Lets You Securely Share Files and Documents With Just a Link…1Password Will Help You Remember Which ‘Sign in With’ Service You UsedGoogle Workspace Now Alerts of Critical Changes to Admin AccountsCybersecurity Researchers Launch New Malware Hunting Tool YARAifyCybersecurity Leaders Are Anticipating Mass Resignations Within the Year – Here’s WhyEuropean, U.S. Groups Plan Salvo of Privacy Complaints Against GoogleUkraine Arrests Cybercrime Gang Operating Over 400 Phishing SitesAvaya Sysadmin Indicted for Illegally Generating, Selling VoIP LicensesCanadian Man Admits to Hacking Spree With Russian Cyber-GangCalifornia Gun Owner Personal Data Exposure More Extensive Than Previously KnownCannabis Delivery Company Unrivaled Brands dba Silver Streak Data BreachPhelps County Regional Medical Center (MO) Announces Data BreachJack Hughston Memorial Hospital (GA) Has Come Under Cyber Attack, CEO ConfirmsBaton Rouge General Hospital Responds to Cyber AttackWalmart Denies Being Yanluowang Ransomware HitNew YTStealer Malware Aims to Hijack Accounts of YouTube Content CreatorsNew UnRAR Vulnerability Could Let Attackers Hack Zimbra Webmail ServersNew ‘FabricScape’ Bug in Microsoft Azure Service Fabric Impacts Linux WorkloadsCISA Warns of Hackers Exploiting PwnKit Linux ?VulnerabilityLeaky Access Tokens Exposed Amazon Photos of UsersThunderbird 102 Released With Highly Anticipated Features, Bug Fixes
6/28/2022 June 28, 2022June 28, 2022 ~ The Cyber Beat ~ Leave a comment Evilnum Hackers Return in New Operation Targeting Migration OrgsHackers Deploy Shadowpad Backdoor and Target Industrial Control Systems in AsiaTencent Admits to Poisoned QR Code Attack on QQ Chat PlatformKrebs: The Link Between AWM Proxy & the Glupteba BotnetRansomware Is the Biggest Global Cyber Threat: And the Attacks Are Still EvolvingMeet The Cybersecurity Zeros: Heroes And Villains‘Supercookies’ Have Privacy Experts Sounding the AlarmNew Firefox Privacy Feature Strips URLs of Tracking ParametersAxie Infinity NFT Game Reopens Transactions Months After $625 Million TheftFBI: Stolen PII and Deepfakes Used to Apply for Remote Tech JobsAMD Targeted by RansomHouse, Cybercrims Claim to Have ‘450GB’ in Stolen DataFrozen-Food Firm Apetito Hit by Cyber AttackSLGA Clients’ Information Exposed on Dark Web Following Cyber AttackMason Tenders’ District Council (NY) Data Breach Affects 20,000+ Union Members and DependentsNearly One Million Misconfigured Kubernetes Exposed That Could Cause Data BreachesMalicious Messenger Chatbots Used to Steal Facebook AccountsRaccoon Stealer Is Back With a New Version to Steal Your PasswordsZuoRAT Malware Hijacking Home-Office Routers to Spy on Targeted NetworksOpenSSL to Release Security Patch for Remote Memory Corruption VulnerabilityMITRE Shares This Year’s List of Most Dangerous Software Bugs
6/27/2022 June 27, 2022June 27, 2022 ~ The Cyber Beat ~ Leave a comment Russian-Backed Hackers Target Lithuanian WebsitesHow Bad Actors Are Using Tech Platforms to Sexually Exploit, Traffic Ukrainian WomenBeijing Probes Security at Academic Journal DatabaseItaly Data Protection Authority Warns Websites Against Use of Google AnalyticsLockBit 3.0 Introduces the First Ransomware Bug Bounty ProgramMan Loses USB Flash Drive With Data on Entire City’s Residents After Night OutHacking Gets Dangerously Real: 8 Cybersecurity Predictions to Watch Out ForUK Snoopers’ Charter Ruled Partially UnlawfulIran’s Steel Industry Halted by Cyber Attack from Hacktivist Group Predatory SparrowVice Society Claims Ransomware Attack on Medical University of InnsbruckAndroid Malware ‘Revive’ Impersonates BBVA Bank’s 2FA AppBank of the West Found Debit Card-Stealing Skimmers on ATMsCybersecurity Experts Warn of Emerging Threat of “Black Basta” RansomwareChinese Researchers Find Critical Security Flaws in CoDeSys Automation SoftwareMicrosoft Exchange Bug Abused to Hack Building Automation Systems
6/24-26/2022 June 26, 2022June 26, 2022 ~ The Cyber Beat ~ Leave a comment Google Says Attackers Worked With ISPs to Deploy Hermit Spyware on Android and iOSConti Ransomware Finally Shuts Down Data Leak, Negotiation SitesRoe v. Wade Reversal Spurs Democrats’ Call for Data Privacy ProtectionsNetSec Goggle Shows Search Results Only From Cybersecurity SitesCafePress Fined $500K for Breach Affecting 23 MillionCarnival Is Fined $5 Million by New York for Cybersecurity ViolationsU.S. Watchdog Is Worried Cyber Insurance Won’t Cover ‘Catastrophic Cyberattacks’Cybersecurity’s Bad and It’s Getting WorseWhy We’re Getting Vulnerability Management WrongAmsterdam Cyber Startup Hadrian Closes €10.5M Seed for Platform That Simulates Hacker Attacks$100 Million Worth of Crypto Has Stolen From Harmony’s Blockchain Bridge HorizonFast Shop Brazilian Retailer Discloses “Extortion” CyberattackAutomotive Fabric Supplier TB Kawashima Announces CyberattackTridentCare (MD) Confirms Data Breach After Criminal Breaks into Office and Steals Hard DrivesClever Phishing Method Bypasses MFA Using Microsoft WebView2 AppsFake Copyright Infringement Emails Install LockBit RansomwareLGBTQ+ Community Warned of Extortionists Abusing Dating AppsMultiple Backdoored Python Libraries Caught Stealing AWS Secrets and KeysHackers Exploit Mitel VoIP Zero-Day in Likely Ransomware Attack
6/23/2022 June 23, 2022June 23, 2022 ~ The Cyber Beat ~ Leave a comment NSO Confirms Pegasus Spyware Used by at least 5 European CountriesGoogle Warns of New Spyware from RCS Labs Targeting iOS and Android UsersConti Ransomware Hacking Spree Breaches Over 40 Orgs in a MonthBusinesses Risk ‘Catastrophic Financial Loss’ From Cyberattacks, U.S. Watchdog WarnsLess Than Half of Organizations Have Open Source Security PolicyLithuania Warns of Rise in DDoS Attacks Against Government SitesScalper Bots Out of Control in Israel, Selling State AppointmentsHalfords Suffers a Puncture in the Customer Details DepartmentAvamere Health Services Breach Impacts Nursing and Senior Living EmployeesChinese Hackers Use Ransomware as Decoy for Cyber EspionageFancy Bear Uses Nuke Threat Lure to Exploit 1-Click BugNew MetaMask Phishing Campaign Uses KYC Lures to Steal PassphrasesMalicious Windows ‘LNK’ Attacks Made Easy With New Quantum BuilderCISA: Log4Shell Exploits Still Being Used to Hack VMware Servers
6/22/2022 June 23, 2022June 23, 2022 ~ The Cyber Beat ~ Leave a comment Israeli Air Raid Sirens Triggered in Possible CyberattackMicrosoft: Russia Stepped up Cyberattacks Against Ukraine’s AlliesTech Executives Urge Government to Share Cyber Threat IntelTech Firms Cut Staff Amid Recession FearsCyber Funding, Plentiful for Years, Faces a Reckoning80% of Firms Suffered Identity-Related Breaches in Last 12 MonthsGamification of Ethical Hacking and Hacking EsportsKrebs: Meet the Administrators of the RSOCKS Proxy BotnetBrave Now Lets You Customize Search Results—for Better or Worse‘Mysterious’ Company Sued to Expose Billionaire’s Twitter CriticChinese Hackers ‘Tropic Trooper’ Target Script Kiddies With Info-Stealer TrojanJapanese Automotive Hose Maker Nichirin Hit by Ransomware AttackYale New Haven Hospital Research File Implicated in Healthcare Data BreachGuardian Fueling Technologies (FL) Announces Data BreachHot Tub Crime Machine: Jacuzzi Smart Tubs Left Personal Info ExposedRIG Exploit Kit Now Infects Victims’ PCs With Dridex Instead of Raccoon StealerCritical PHP Flaw Exposes QNAP NAS Devices to RCE AttacksResearchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage ServiceMEGA Fixes Critical Flaws That Allowed the Decryption of User DataNSA Shares Tips on Securing Windows Devices With PowerShell
6/21/2022 June 22, 2022June 22, 2022 ~ The Cyber Beat ~ Leave a comment Biden Signs Cyber Bills Into LawFormer NSA Chief Warns of Russian Cyberattacks Against U.S. Financial SectorRussian Gov’t Hackers Hit Ukraine With Cobalt Strike, CredoMap MalwareKazakhstan Gov’t Used Spyware Against ProtestersReport: Daycare Monitoring Apps Are ‘Dangerously Insecure’Magecart Attacks Are Still Around: And They Are Becoming More StealthyHPE Tackles Cyber Skills Shortage with Hands-On ExperiencePhishing Gang Behind Millions in Losses Dismantled by PoliceTwitter Board Recommends Elon Musk Takeover BidCloudflare Outage Knocks Hundreds of Websites OfflineYodel Parcel Company Confirms Cyberattack Is Disrupting DeliveryAcorda Therapeutics (NY) Announces Data Breach After Compromised EmailsRobert Half International Reports Data Breach Affecting Consumers’ SSNsBrooks County (TX) Pays off Hacker With Tax Dollars After Ransomware AttackNew Toddycat Apt Targets MS Exchange Servers in Europe and Asia7-Zip Now Supports Windows ‘Mark-Of-The-Web’ Security FeatureAdobe Acrobat May Block Antivirus Tools From Monitoring PDF Files
6/20/2022 June 21, 2022June 21, 2022 ~ The Cyber Beat ~ Leave a comment What the Russia-Ukraine War Means for the Future of Cyber WarfareSecurity Flaw In Strava, A Social Fitness App, Exposed Identities Of Israeli Soldiers At Military BasesKrebs: Why Paper Receipts are Money at the Drive-ThruNew ‘BidenCash’ Site Sells Your Stolen Credit Card for Just 15 CentsRansomware Attacks: This Is the Data That Cyber Criminals Really Want to StealGoogle Chrome Extensions Could Be Used to Track Users OnlineThe Ghost of Internet Explorer Will Haunt the Web for YearsVoicemail Phishing Emails Steal Microsoft CredentialsFlagstar Bank Discloses Data Breach Impacting 1.5 Million Customers81,000+ Social Security Numbers Leaked in Quality Temporary Services (MI) Data BreachBaptist Health (TX) Announces Data Breach Affecting PatientsSimpson University (CA) Confirms Data Breach Leaked Information of 6,000+ StudentsNew DFSCoerce NTLM Relay Attack Allows Windows Domain TakeoverGoogle Researchers Detail 5-Year-Old Apple Safari Vulnerability Exploited in the WildCISA and Friends Raise Alarm on Critical Flaws in Industrial Equipment, Infrastructure
6/17-19/2022 June 19, 2022 ~ The Cyber Beat ~ Leave a comment Leaked Audio From 80 Internal TikTok Meetings Shows That U.S. User Data Has Been Repeatedly Accessed From ChinaU.S., EU Plan Joint Foreign Aid for Cybersecurity to Counter ChinaNSO Group’s Reported Sale to U.S. Defense Contractor Alarms Cybersecurity ExpertsAndroid-wiping BRATA Malware is Evolving Into a Persistent ThreatYouTube Removes Video From Jan 6 Panel Including Trump’s Election MisinformationFormer Amazon Employee Paige Thompson Convicted Over 2019 Capital One HackCookie Consent Crumbles Under Fresh UK Data Law ProposalsUK Approves Assange Extradition to U.S., WikiLeaks Says It Will AppealPersonal Details of 15,000 Memorial University (NL) Students Leaked in Accidental Data Breach to Other StudentsWilkins Recreational Vehicles (NY) Reports Data Breach Following Conti Ransomware AttackNew Phishing Attack Infects Devices With Cobalt StrikeAtlassian Confluence Flaw Being Used to Deploy Ransomware and Crypto MinersOver a Dozen Flaws Found in Siemens’ Industrial Network Management SystemQNAP NAS Devices Targeted by Surge of eCh0raix Ransomware AttacksQNAP ‘Thoroughly Investigating’ New DeadBolt Ransomware AttacksCisco Says It Won’t Fix Zero-Day RCE in End-Of-Life VPN Routers
6/16/2022 June 17, 2022June 17, 2022 ~ The Cyber Beat ~ Leave a comment U.S., Partners Dismantle Russian Hacking ‘RSOCKS’ Botnet, Justice Dept SaysCyber-Criminals Smuggle Ukrainian Men Across BorderIran State-Sponsored Phishing Attack Targeted Israeli Military OfficialsPolice Linked to Hacking Campaign to Frame Indian ActivistsCorporate Network Access Selling for Under $1000 on Dark WebCalifornian Man iCloud Hacker Gets 9 Years in Prison for Stealing Nude PhotosWhite House to Tackle Online Harassment, Abuse With New Task ForceMicrosoft Defender Launches on Windows, macOS, iOS, and AndroidRSAC Branded a ‘Super Spreader Event’ as Attendees Share COVID-19 Test ResultsIndia’s Allahabad University Website Crashes During Exam, Cyber Attack SuspectedNakedPages Phishing Toolkit is Now Available on Cybercrime ForumsAndroid Spyware ‘Hermit’ Discovered in Targeted AttacksMetaMask, Phantom Warn of Flaw That Could Steal Your Crypto WalletsAnker Eufy Smart Home Hubs Exposed to RCE Attacks by Critical FlawHigh-Severity RCE Vulnerability Reported in Popular Fastjson LibrarySophos Firewall Zero-Day Bug Exploited Weeks Before FixA Microsoft Office 365 Feature Could Help Ransomware Hackers Hold Cloud Files Hostage730K WordPress Sites Force-Updated to Patch Critical Plugin BugDemocratizing Cybersecurity
6/15/2022 June 16, 2022June 16, 2022 ~ The Cyber Beat ~ Leave a comment Russia Is Taking Over Ukraine’s InternetBabushka Z: The Woman Who Became a Russian Propaganda IconTravel-related Cybercrime Takes Off as Industry ReboundsAllison Inn & Spa (OR) Hit by Unusual Cyberattack; Employee Data, Guests’ Names Posted on InternetHeineken Says There’s No Free Beer, Warns of Phishing ScamHit by a Cyberattack? Hackers Will Probably Come After You Again – Within a YearRansomware Negotiation Evolves, as Victims Hope for DiscountsMusk Predicts ‘Massive Red Wave‘, Teases Creation of ‘Super Moderate Super PAC’Flashpoint Announces Cybersecurity Platform for K-12Interpol Seizes $50 Million, Arrests 2000 Social Engineers24+ Billion Credentials Circulating on the Dark Web in 2022 — So FarData Breach at U.S. Ambulance Billing Service Comstar Exposed Patients’ Healthcare InfoGoodman Campbell Brain and Spine (IN) Announces Data Breach After Ransomware AttackPanchan: A New Golang-based Peer-To-Peer Botnet Targeting Linux ServersMaliBot: A New Android Banking Trojan Spotted in the WildHackers Exploit Three-Year-Old Telerik Flaws to Deploy Cobalt StrikeCritical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass AuthenticationCitrix Warns Critical Bug Can Let Attackers Reset Admin PasswordsSAP Patches Critical NetWeaver and ABAP Platform VulnerabilitiesKrebs: Microsoft Patch Tuesday, June 2022 EditionMicrosoft: June Windows Server Updates May Cause Backup Issues
6/14/2022 June 15, 2022June 16, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Has Begun Moving Sensitive Data Outside Its BordersThe War in Ukraine Has Exposed a Critical American VulnerabilityCybersecurity in the Pacific: How Island Nations Are Building Their Online DefencesVeterans Explain How Military Service Prepared Them for Cybersecurity CareersThe Unrelenting Threat of Ransomware Is Pushing Cybersecurity Workers to QuitHacker Advertises ‘Crappy’ Ransomware on InstagramKrebs: Ransomware Group Debuts Searchable Victim DataWhy a Bipartisan Data Privacy Proposal Faces Uphill BattleLawmakers Make Bipartisan Push for New Government Powers to Block U.S. Investments in ChinaBrazil’s Data Protection Authority to Gain Independence From Presidential OfficeShanghai’s Censors Can’t Hide Stories of the DeadFormer U.S. State Agency CIO, IT Exec Plead Guilty to Bribery and Extortion SchemeMicrosoft to Acquire Foreign Cyberthreat Analysis Vendor MiburoFirefox Now Blocks Cross-Site Tracking by Default for All UsersMalaysia-Linked DragonForce Hacktivists Attack Indian TargetsCloudflare Saw Record-Breaking DDoS Attack Peaking at 26 Million Request Per SecondLarge Southern Africa Supermarket Chain Shopright Hit With RansomwareAllaire Health Services Announces Data BreachCHI Health (WA) Says Cybersecurity Breach May Have Exposed Some Patients’ DataAndroid Malware on the Google Play Store Gets 2 Million DownloadsUnpatched Travis CI API Bug Exposes Thousands of Secret User Access TokensNew Hertzbleed Side-Channel Attack Affects Intel, AMD CPUsNew Zimbra Email Vulnerability Could Let Attackers Steal Your Login CredentialsTechnical Details Released for ‘SynLapse’ RCE Vulnerability Reported in Microsoft AzureMicrosoft June 2022 Patch Tuesday Fixes 1 Zero-Day, 55 Flaws…Microsoft’s Final Patch Tuesday Fixes Follina BugBotched and Silent Patches From Microsoft Put Customers at Risk, Critics Say
6/13/2022 June 14, 2022June 14, 2022 ~ The Cyber Beat ~ Leave a comment Russian Hackers Start Targeting Ukraine With Follina ExploitsTop Cyber Official Says Transformation Needed in CyberspaceWorld Economic Forum Wants a Global Map of Online CrimeCybersecurity Skills Gap a Mounting Concern in AsiaIn Security, Less Is MoreFDNY Calls for Digital Firewall to Protect Rescue Workers From Cyber-AttacksApple CEO Tim Cook Pushes Senate For Privacy LegislationApple Wants to End Passwords for Everything: Here’s How It Would WorkCISA Recommends Organizations Update to the Latest Version of Google ChromeGoogler Suspended After Claiming AI Became SentientKrebs: “Downthem” DDoS-for-Hire Boss Gets 2 Years in PrisonQuestions to Improve Enterprise Cybersecurity AwarenessKaiser Permanente Data Breach Exposes Health Data of 69K PeopleIndia’s Farmers Exposed by New Aadhaar Data Leak700 Patients’ Private Information Stolen in Avera Data BreachPerkins & Co. Announces Data Breach Related to Incident at Cloud-Hosting Company NetgainHackers Clone Coinbase, MetaMask Mobile Wallets to Steal Your CryptoChinese ‘Gallium’ Hackers Using New PingPull Malware in Cyberespionage AttacksNew Syslogk Linux Rootkit Uses Magic Packets to Trigger BackdoorHelloXD Ransomware Installing Backdoor on Targeted Windows and Linux SystemsMicrosoft: Exchange Servers Hacked to Deploy Blackcat RansomwarePyPI Package ‘Keep’ Mistakenly Included a Password StealerResearchers Disclose Rooting Backdoor in Mitel IP Phones for BusinessesMetasploit 6.2.0 Improves Credential Theft, SMB Support Features, More
6/10-12/2022 June 12, 2022June 12, 2022 ~ The Cyber Beat ~ Leave a comment Conti’s Attack Against Costa Rica Sparks a New Ransomware EraJob Cuts Hit Cybersecurity Industry Despite Surging Growth From Ransomware AttacksCybersecurity Courses Ramp up Amid Shortage of ProfessionalsIn an Ever Evolving Landscape, CISOs Shift Their PrioritiesIntroducing ‘Hack Me if You Can,’ a New Podcast SeriesResearchers Find Bluetooth Signals Can be Fingerprinted to Track SmartphonesKrebs: Adconion Execs Plead Guilty in Anti-Spam CaseIranian Lycaeum APT Target Energy Sector With New DNS BackdoorPyramid Consulting Group (NY) Data Breach Leaked 3,000 Social Security NumbersVulns Targeting InfiRay Thermal Cameras May Result in Industrial Process HackingHackers Exploit Recently Patched Confluence Bug for CryptominingConfluence Servers Hacked to Deploy AvosLocker, Cerber2021 RansomwarePacman: MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched
6/9/2022 June 9, 2022June 9, 2022 ~ The Cyber Beat ~ Leave a comment Russia Says West Risks ‘Direct Military Clash’ Over Cyber AttacksDark Web Sites Selling Alleged Western Weapons Sent to UkraineFeds Forced Travel Firms to Share Surveillance Data on HackerNew Privacy Framework for IoT Devices Gives Users Control Over Data SharingHow Poor Communication Opens the Door to Ransomware and ExtortionYouTube Accused of Failing to Tackle Fake Elon Musk Livestream ScamsTwitter Set to Agree to Elon Musk Request For Data on Fake AccountsBizarre Ransomware Sells Decryptor on Roblox Game Pass StoreChinese Hacking Group Aoqin Dragon Quietly Spied Orgs for a DecadeEllsworth (KS) Warns Residents of Ransomware AttackFred Hutch Center Center (WA) Data Breach: Unauthorized Hack of Employee EmailAdviceOne (CT) Announces Data BreachVice Society Ransomware Claims Attack on Italian City of PalermoNew Ultra-Stealthy Linux Backdoor ‘Symbiote’ Isn’t Your Everyday Malware DiscoveryHackers Can Steal Your Tesla by Creating Their Own KeysMicrosoft Defender Now Isolates Hacked, Unmanaged Windows DevicesXage Releases New Tool to Battle MFA Bombing in Critical Infrastructure
6/8/2022 June 9, 2022June 9, 2022 ~ The Cyber Beat ~ Leave a comment Disinfo and Hate Speech Flood TikTok Ahead of Kenya’s ElectionsUkraine’s Secret Cyber-Defense That Blunts Russian Attacks: Excellent BackupsHow a Saxophonist Tricked the KGB by Encrypting Secrets in MusicBeware of Scams Involving Jobs, Stimulus Checks and Tax Refunds, IRS WarnsWork Remains in Fight Against RansomwarePaying Ransomware Paints Bigger Bullseye on Target’s BackRansomware Pressure Forces UK CISOs to Consider QuittingKali Linux Team to Stream Free Penetration Testing Course on TwitchBipartisan Antitrust Bill Sponsors Push for Floor Vote This MonthMassive Facebook Messenger Phishing Operation Generates MillionsAustralian Chinese News Site Hit by Cyber Attack, Media ReportsTenafly Public Schools (NJ) Final Exams Canceled After Ransomware Cripples ComputersOnDeck Breach of Social Security Numbers and Financial Account InfoPoisoned CCleaner Search Results Spread Information-Stealing MalwareEmotet Malware Now Steals Credit Cards From Google Chrome UsersCuba Ransomware Returns to Extorting Victims With Updated EncryptorLinux Botnets Now Exploit Critical Atlassian Confluence BugIntel Offers ‘Server on a Card’ Reference Design for Network Security
6/7/2022 June 8, 2022June 8, 2022 ~ The Cyber Beat ~ Leave a comment U.S.: Chinese Gov’t Hackers Breached Telcos to Snoop on Network TrafficKrebsOnSecurity in New Netflix Series on CybercrimeCyber-Attack Surface “Spiralling Out of Control”Elevated Cyber Threats Are the ‘New Normal’An Emerging Threat: Attacking 5G Via Network SlicesSenators Gillibrand, Lummis Introduce Major Cryptocurrency BillIBM Buys Startup Randori to Address Multicloud Security MessesApple’s Rapid Security Response Will Push Faster Updates That Install on Macs Without a RebootApple’s Safety Check Combats Domestic Abuse but Timing Its Use Is CriticalU.S. Seizes SSNDOB Market for Selling Personal Info of 24 Million PeopleShields Health Care Group Data Breach Affects 2 Million PatientsOnline U.S. Gun Shops, Including Numrich Gun Parts, Hacked to Steal Credit CardsProthena Corporation, PLC Confirms Data Breach Following Compromised Employee Email AccountResearchers Warn of Spam Campaign Targeting Victims with SVCReady MalwareLinux Version of Black Basta Ransomware Targets VMware ESXi ServersFollina Exploited by State-Sponsored HackersQBot Malware Now Uses Windows MSDT Zero-Day in Phishing AttacksAndroid June 2022 Updates Bring Fix for Critical RCE VulnerabilityNew ‘DogWalk’ Windows Zero-Day Bug Gets Free Unofficial Patches
6/6/2022 June 6, 2022June 6, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Officials’ Phones Targeted by Hackers -Cyber WatchdogAt Least Three Russian Ministry Website Reportedly HackedCosta Rican Government Held up by Ransomware … Again… This Time by HiveRansomware Gangs Now Give Victims Time to Save Their ReputationRansomware Attacks Have Dropped. And Gangs Are Attacking Each Other’s VictimsMeet the Vigilantes Who Hack Millions in Crypto to Save It From ThievesAlphaBay Is Taking Over the Dark Web—AgainLastPass’ Mobile App Offers Access to Your Desktop Vault Without a Master PasswordApple Demos Safari’s ‘Passkeys’ Support in macOS Ventura That Will Help Bring an End to PasswordsElon Musk Threatens to Pull Out of Twitter Deal Without More Information About Fake AccountsWindows Zero-Day Exploited in U.S. Local Gov’t Phishing AttacksItalian City of Palermo Shuts Down All Systems to Fend Off CyberattackTexas Gulf Bank Confirms Data Breach From Unauthorized Access to Employee Email AccountsRainier Arms Reports Data Breach Impacting the Credit Card Numbers of 46K+ Customers‘Move-to-Earn’ Application Stepn Suffers Cyber Attack After UpgradeMandiant: “No Evidence” We Were Hacked by LockBit RansomwareQBot Now Pushes Black Basta Ransomware in Bot-Powered AttacksCISA Warned About Critical Vulnerabilities in Illumina’s DNA Sequencing DevicesUnpatched Critical Flaws Disclosed in U-Boot Bootloader for Embedded DevicesThe U.S. Isn’t Getting Ahead on Cyber Security Threats
6/3-5/2022 June 5, 2022June 5, 2022 ~ The Cyber Beat ~ Leave a comment A Digital Conflict Between Russia and Ukraine Rages on Behind the Scenes of WarMicrosoft Disrupts Bohrium Hackers’ Spear-Phishing OperationApple Blocked 1.6 Millions Apps From Defrauding Users in 2021Americans Report Losing Over $1 Billion to Cryptocurrency ScamsBusiness Email Compromise: The Hacker Gold Rush That’s Poised to Eclipse RansomwareEvasive Phishing Mixes Reverse Tunnels and URL Shortening ServicesKrebs: What Counts as “Good Faith Security Research?”Tim Hortons Coffee App Broke Law by Constantly Recording Users’ MovementsGoogle Settles Lawsuit With Illinois Residents for $100M: May 1, 2015, and April 25, 2022Key Congressional Lawmakers Draft Competing Data Privacy BillsLouisiana Authorities Investigating Ransomware Attack on City of AlexandriaEMC National Life Company Announces Data BreachMedicare Issuing New Cards to Residents of the Villages (FL) After Data BreachNovartis Says No Sensitive Data Was Compromised in CyberattackBored Ape Yacht Club, Otherside NFTs Stolen in Discord Server HackWatchDog Hacking Group Launches New Docker Cryptojacking CampaignSMSFactory Android Malware Sneakily Subscribes to Premium ServicesExploit Released for Atlassian Confluence RCE Bug, Patch NowAtlassian Releases Patch for Confluence Zero-Day Flaw Exploited in the WildGitLab Issues Security Patch for Critical Account Takeover Vulnerability
6/2/2022 June 2, 2022June 2, 2022 ~ The Cyber Beat ~ Leave a comment Tehran Municipality Websites Hit by Possible Hacking, Iranian Agency SaysChinese LuoYu Hackers Deploy Cyber-Espionage Malware via App UpdatesSouth Korean Special Forces Captain Charged With Spying for North KoreaRussian Linked Ransomware Groups Rebrand to Dodge SanctionsRansomware Gang Now Hacks Corporate Websites to Show Ransom NotesU.S. Technology, a Longtime Tool for Russia, Becomes a VulnerabilityExpressVPN Removes Servers in India After Refusing to Comply with Government Order45% Of Cybersecurity Professionals Have Considered QuittingFoxconn Confirms Ransomware Attack Disrupted Production in MexicoOwner of Dodge’s Southern Stores, D&H Company, Reports Data BreachScammers Target NFT Discord ChannelClipminer Malware Gang Stole $1.7M by Hijacking Crypto PaymentsTop 10 Android Banking Trojans Target Apps With 1 Billion DownloadsConti Spotted Working on Exploits for Intel Management Engine FlawsCritical UNISOC Chip Vulnerability Affects Millions of Android SmartphonesMicrosoft Blocks Polonium Hackers From Using Onedrive in Attacks
6/1/2022 June 1, 2022June 1, 2022 ~ The Cyber Beat ~ Leave a comment Cyber Command Chief Confirms U.S. Took Part in Offensive Cyber OperationsLine Between Criminal Hackers and Nation-State Threats Blurs, U.S. Officials SayCloud Computing Dominates. But Security Is Now the Biggest ChallengeU.S. Gov’t: Paying Karakurt Extortion Ransoms Won’t Stop Data LeaksRansomware Attacks Need Less Than Four Days to Encrypt SystemsWhat if Ransomware Evolved to Hit IoT in the Enterprise?Sheryl Sandberg Steps Down From MetaAuthorities Seize Domain Names After Probe Into Sales of Stolen Personal InformationEuropol Confirms Takedown of SMS-based FluBot SpywareFormer OpenSea Head of Product Charged With NFT Insider TradingFBI Thwarted Cyberattack Against Boston Children’s HospitalHundreds of Elasticsearch Databases Targeted in Ransom AttacksTelegram’s Blogging Platform Abused in Phishing AttacksRuneScape Phishing Steals Accounts and In-Game Item Bank PINsSideWinder Hackers Plant Fake Android VPN App in Google Play StoreNew Unpatched Horde Webmail Bug Lets Hackers Take Over Server by Sending EmailNew Windows Search Zero-Day Added to Microsoft Protocol NightmareWindows MSDT Zero-Day Vulnerability Gets Free Unofficial PatchCybersecurity Startup Ordr Nabs $40M to Monitor Connected Devices for AnomaliesThe Race to Hide Your Voice
5/31/2022 June 1, 2022June 1, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Officials Report ‘Shutdown of All Communications’ in Kherson RegionLatest Cyberattack in Costa Rica Targets Hospital SystemKrebs: Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade SanctionsCyber Defense Confidence Ebbs as Ransomware Attacks MultiplyNew Research: Increase in Cyber Vulns for Small and Medium Sized BusinessesWindows MSDT Zero-Day Now Exploited by Chinese APT HackersFBI Warns of Ukrainian Charities Impersonated to Steal DonationsHackers Steal WhatsApp Accounts Using Call Forwarding TrickSupreme Court Temporarily Blocks Texas Social Media LawTurkish Airline Exposes Flight and Crew Info in 6.5TB LeakOver 3.6 Million MySQL Servers Found Exposed on the InternetAfter Hive Cyberattack, Partnership HealthPlan of California Confirms Data Theft Affecting 855KAlbany Bank & Trust Co. (IL) Reports Data Breach Following Data Security IncidentChristiana Spine Center (DE) Latest Spine Practice to Suffer Ransomware AttackMirror Protocol $2M Hack; Here’s What HappenedMagniber Ransomware Now Targets Windows 11 MachinesNew XLoader Botnet Uses Probability Theory to Hide Its ServersMicrosoft Shares Mitigation for Office Zero-Day ExploitedYou Need to Update iOS, Chrome, Windows, and Zoom ASAP