9/29/2022 September 29, 2022September 29, 2022 ~ The Cyber Beat ~ Leave a comment Optus: How a Massive Data Breach Exposed 40% of AustraliaGovernment, Union-Themed Lures Used to Deliver Cobalt Strike PayloadsCovert Malware From UNC3886 Targets VMware Shops for Hypervisor-Level EspionageMicrosoft: Lazarus Hackers Are Weaponizing Open-Source SoftwareMobile, Cloud and Email Are Top Threat Vectors For 2023Fired Admin Cripples Former Employer’s Network Using Old CredentialsTwitch Is Temporarily Restricting Browser Support to Just Chrome, Edge, and FirefoxBrave Browser to Start Blocking Annoying Cookie Consent BannersSwachh City Platform Suffers Data Breach Leaking 16 Million User RecordsPersonal Data of 70K Students Accessed in Waterloo School (ON) CyberattackBrazilian Prilex Hackers Resurfaced With Sophisticated Point-of-Sale Malware‘Witchetty’ Hacking Group Hides Backdoor Malware Inside Windows Logo ImageNew Royal Ransomware Emerges in Multi-Million Dollar AttacksA Matrix Update Patches Serious End-to-End Encryption FlawsDetectify Secures $10M More to Expand Its Ethical Hacking Platform
9/28/2022 September 29, 2022September 29, 2022 ~ The Cyber Beat ~ Leave a comment Russia Prepares to Annex Parts of Ukraine as Staged Votes EndThe Race to Find the Nord Stream SaboteursStealthy Hackers, Similar to APT37, Target Military and Weapons Contractors in Recent AttackEnergy, Finance and Telecoms Corporations Test Their Cyber MettleMeta, YouTube Failing to Crack Down on Brazilian Election MisinformationCryptominers Hijack $53 Worth of System Resources to Earn $1IRS Warns Americans of Massive Rise in SMS Phishing AttacksTurnstile is Cloudflare’s Latest Attempt to Rid the Web of CAPTCHAs…Lacks Crosswalks, Checkboxes, GoogleGoogle to Test Disabling Chrome Manifest V2 Extensions in June 2023Microsoft to Kill off Old Access Rules in Exchange OnlineWall Street to Pay $1.8 Billion in Fines Over Traders’ Use of Banned Messaging AppsHackers Breach Tech Magazine Fast Company to Send Racist Push Notifications to iPhones…Hacker Shares How They Allegedly Breached Fast Company’s SiteAUTH0 Warns That Some Source Code Repos May Have Been StolenFMC Services (TX) Data Breach Affecs More than 230k People’s Sensitive InfoResearchers Warn of New Go-based Malware ‘Chaos’ Targeting Windows and Linux SystemsLeaked LockBit 3.0 Builder Used by ‘Bl00dy’ Ransomware Gang in AttacksCyber Criminals Using Quantum Builder Sold on Dark Web to Deliver Agent Tesla MalwareHackers Now Sharing Cracked Brute Ratel Post-Exploitation Kit OnlineEthernet VLAN Stacking Flaws Let Hackers Launch DoS, MiTM AttacksMost Attackers Need Less Than 10 Hours to Find WeaknessesWhen Will Cybersecurity Get Its Bloomberg Terminal?
9/27/2022 September 27, 2022September 27, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Warns of ‘Massive’ Russian Cyberattacks Against Critical InfrastructureOccupied Regions of Ukraine Vote to Join Russia in Staged ReferendumsMeta Dismantles Massive Russian Network Spoofing Western News SitesMeta Busts First Chinese Campaign Prodding U.S. MidtermsLazarus Group Targets MacOS Users Seeking Crypto JobsWalls Between Technology Pros and Customers Are Coming Down at Mainstream CompaniesSamsung Sued for Gobbling up Too Much Personal Info That Miscreants Then StoleOptus Hacker Apologizes and Allegedly Deletes All Stolen DataOxford Health: Cyber Attack Continues to Hit UK NHS Trust’s ServicesDefense Giant Elbit Confirms Data Breach After Ransomware Gang Claims HackNew NullMixer Malware Campaign Stealing Users’ Payment Data and CredentialsMicrosoft Sway Pages Weaponized to Perform Phishing and Malware DeliveryHackers Are Testing a Destructive New Way to Make Ransomware Attacks More EffectiveWhatsApp Discloses Critical Vulnerability in Older App VersionsAmid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
9/26/2022 September 26, 2022September 26, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Warns Allies of Russian Plans to Escalate CyberattacksVladimir Putin Grants Edward Snowden Russian CitizenshipCyberattack on InterContinental Hotels Disrupts Business at FranchiseesAustralia to Overhaul Privacy Laws After Massive Data BreachTikTok Could Face $29 Million Fine From UK Over Kids’ Data Privacy ViolationsThe Best VPNs to Protect Yourself OnlineFitbit Increases Security Requirements, Mandates Google Login From 2023Chinese Espionage Hackers Target Tibetans Using New LOWZERO BackdoorSQL Server Admins Warned About Fargo RansomwareHackers Use Powerpoint Files for ‘Mouseover’ Malware DeliveryAdware on Google Play and Apple Store Installed 13 Million TimesNew Erbium Password-Stealing Malware Spreads as Game Cracks, CheatsMajor Berry Producer Reiter Affiliated Companies Confirms Leaked SSNs After BreachDiodes (TX) Confirms Data Breach Affecting SSNs and Health Information
9/23-25/2022 September 25, 2022September 25, 2022 ~ The Cyber Beat ~ Leave a comment Google Sees Russia Coordinating With Hackers in Cyberattacks Tied to Ukraine WarUkraine Dismantles Hacker Gang That Stole 30 Million AccountsDetails of Over 300,000 Russian Reservists Leaked, Anonymous ClaimsSweden Tests Cyber Defenses as War and NATO Bid Raise Security RisksPentagon Launches Effort to Assess Crypto’s Threat to National SecurityWhy Even Big Tech Companies Keep Getting Hacked—and What They Plan to Do About ItVPN Providers Flee India as a New Data Collections Law Takes HoldIran Blocks Whatsapp, Instagram as Citizens Protest Death of Mahsa AminiSignal Calls on Users to Run Proxies for Bypassing Iran BlocksBiden Administration Eases Sanctions to Boost Iranian People’s Internet AccessKrebs: Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.London Police Arrest Teen Hacking Suspect but Won’t Confirm GTA 6, Uber LinksMulti-Million Dollar Credit Card Fraud Operation UncoveredAmerican Airlines Learned It Was Breached From Phishing TargetTAP Cyberattack: Portuguese President’s Personal Data StolenNpm Packages Used by Crypto Exchanges CompromisedMicrosoft SQL Servers Hacked in TargetCompany Ransomware AttacksNew Hacking Group ‘Metador’ Lurking in ISP Networks for MonthsRansomware Data Theft Tool Exmatter May Show a Shift in Extortion TacticsSunshine Coast Regional District (BC) Acknowledges Cyber AttackNoberus Ransomware Gets Info-Stealing Upgrades, Targets Veeam Backup SoftwareSophos Warns of New Firewall RCE Bug Exploited in AttacksHackers Exploited Zero-Day RCE Vulnerability in Sophos Firewall — Patch ReleasedCISA Warns of Hackers Exploiting Recent Zoho ManageEngine VulnerabilityWindows 11 Now Warns When Typing Your Password in Notepad, WebsitesThis Image Shows Its Own MD5 Checksum — And It’s Kind of a Big Deal
9/22/2022 September 22, 2022September 22, 2022 ~ The Cyber Beat ~ Leave a comment NSA Accessed China’s Telecommunications Network, State Media ClaimsThe U.S. And Its Allies Are Joining Forces on Chips: That Could Stop China Reaching the Next LevelResearchers Uncover Years-Long Mobile Spyware Campaign Targeting UyghursCambodian Authorities Crack Down on Cyber Slavery Amid International PressureRussia-Based Hackers FIN11 Impersonate Zoom to Conduct Phishing CampaignsHacktivist Group From Bangladesh Launches Cyber Attack on Indian Government WebsitesBlackCat Ransomware’s Data Exfiltration Tool Gets an UpgradeFlorida Asks Supreme Court to Consider Controversial Social Media LawThe Ungodly Surveillance of Anti-Porn ‘Shameware’ AppsMorgan Stanley Fined $35m By SEC For Data Security LapseOptus Hit By Cyber-Attack, Breach Affects Nearly 10 Million CustomersTAP Air Portugal Hit by Cyber attack, Passenger Data StolenWheat Ridge (CO) Won’t Cough up Millions in Ransomware Attack That Closed City HallHackers Stealing GitHub Accounts Using Fake CircleCI NotificationsMicrosoft Exchange Servers Hacked via OAuth Apps for PhishingMalicious NPM Package Caught Mimicking Material Tailwind CSS PackageCritical Magento Vulnerability Targeted in New Surge of AttacksCISA Warns of Critical ManageEngine RCE Bug Used in AttacksNSA Shares Guidance to Help Secure OT/ICS Critical Infrastructure
9/21/2022 September 21, 2022September 21, 2022 ~ The Cyber Beat ~ Leave a comment Shadowy Russian Cell Phone Companies Are Cropping Up in UkraineFBI: Iranian Hackers Lurked in Albania’s Gov’t Network for 14 MonthsU.S. Adds 2 More Chinese Telecom Firms to National Security Threat ListSen. King calls on Senate to pass the Cyber Diplomacy ActDHS Rejects Plan to Protect Election Officials From Harassment as Midterms LoomOkta: Credential Stuffing = 34% Of All Login AttemptsTwitter Failed to Log You Out of All Devices After Password ResetsMeta Quietly Reduces Staff in Cost-Cutting PushKrebs: SIM Swapper Abducted, Beaten, Held for $200k RansomLockBit Ransomware Builder Leaked by “Angry Developer”After Prison, Hackers Face Tech Restrictions, Limited Job ProspectsHackers Hit Los Angeles Unified School District With Ransom DemandBerry, Dunn, McNeil & Parker (ME) Breached After Employee Email CompromisedLinkedIn Smart Links Abused in Evasive Email Phishing AttacksOver 39,000 Unauthenticated Redis Instances Found Exposed on the InternetDomain Shadowing Becoming More Popular Among CybercriminalsUnpatched 15-Year Old Python Bug Allows Code Execution in 350K ProjectsMultiple Vulnerabilities Discovered in Dataprobe’s iBoot-PDUsWindows 11 Gets Better Protection Against SMB Brute-Force AttacksMalwarebytes Blocks Google, YouTube as MalwareDon’t Wait for a Mobile WannaCry: Attacks Against Phones & Tablets Increasing
9/20/2022 September 20, 2022September 20, 2022 ~ The Cyber Beat ~ Leave a comment Companies Should Treat Cyber Threats as Core Business Risk, U.S. Cyber Official SaysHackers Admit Destroying InterContinental Hotels Group’s Data ‘For Fun’MFA Fatigue: Hackers’ New Favorite Tactic in High-Profile BreachesImperva Mitigated Long-Lasting, 25.3 Billion Request DDoS AttackBeware of Phish: American Airlines, Revolut Data Breaches Expose Customer InfoHow to Dodge New Ransomware TacticsCFOs Should No Longer View Cybersecurity as InsuranceMicrosoft Defender for Endpoint Will Turn On Tamper Protection by DefaultTelegram Has a Serious Doxing ProblemDozens of Civil Rights Groups Are Calling on Amazon and MGM to Cancel Ring Nation Reality ShowCalifornia Signs Internet Privacy Legislation to Boost Children’s Safety Online2K Game Support Hacked to Email Redline Info-Stealing Malware…Targeted Players With MalwareHive Ransomware Claims Attack on New York Racing AssociationKiwi Farms Has Been Breached; Assume Passwords, Emails & IP Addresses Have Been LeakedHacker Steals $160 Million From Crypto Trading Firm WintermuteCash Express Files Notice of Data Breach City Furniture (FL) Files Notice of Data BreachSouth Redford School District (MI) Cancels Classes Following CyberattackWolfe Clinic Eye Care Fallout Grows: 543K Patients Added to Breach TallyCritical Vulnerability in Oracle Cloud Infrastructure Allowed Unauthorized AccessWindows 11 22H2 Adds Kernel Exploit Protection to Security Baseline
9/19/2022 September 19, 2022September 19, 2022 ~ The Cyber Beat ~ Leave a comment Russian Sandworm Hackers Pose as Ukrainian Telcos to Drop MalwareMicrosoft 365 Phishing Attacks Impersonate U.S. Gov’t AgenciesThe Deep Roots of Nigeria’s Cybersecurity ProblemMicrosoft Warns of Large-Scale Click Fraud Campaign Targeting GamersCalifornia Dems Follow Texas GOP Into Online Speech BattleIndonesia Accuses Google of Abusing MonopolyU.S. Treasury Plans to Ask Public if Crypto-Related Regulations Are ‘No Longer Fit for Purpose’Partisan Asymmetries in Exposure to MisinformationUber Blames Lapsus$ Hacking Group for Security Breach Last WeekAmerican Airlines Discloses Data Breach After Employee Email CompromiseRevolut Hack Exposes Data of 50,000 Users, Fuels New Phishing WaveLubbock Heart & Surgical Hospital Reports Data Breach Affecting 23,379 PatientsAmeriprise Financial (MN) Confirms the Company’s Fourth Data Breach of 2022M.C. Dean Breach After Hackers Had Access to Company’s Computer Systems for 6 MonthsVMware, Microsoft Warn of Widespread Chromeloader Malware Attacks
9/16-18/2022 September 18, 2022September 18, 2022 ~ The Cyber Beat ~ Leave a comment DHS Rolls Out $1 Billion Investment in Cybersecurity for State and Local GovernmentsAllies Warn of Iranian Ransom Attacks Using Log4ShellCISA Orders Agencies to Patch Vulnerability Used in Stuxnet AttacksWhat Does a Doomsday Level Cyber Attack Look Like?Can Reflections in Eyeglasses Actually Leak Info From Zoom Calls? Here’s a Study Into ItTeamTNT Hijacking Servers to Run Bitcoin Encryption SolversFake Cryptocurrency Giveaway Sites Have Tripled This YearKrebs: Botched Crypto Mugging Lands Three U.K. Men in JailBeloved Browser Extension Acquired by Non-beloved Antivirus Firm AvastLastPass Says Hackers Had Internal Access for Four DaysGoogle, Microsoft Can Get Your Passwords via Web Browser’s SpellcheckHighly Skilled Tech Workers Are Becoming a Rarity, and Companies Have Tough Decisions to MakeBitdefender Releases Free Decryptor for LockerGoga RansomwareUber Investigating the Scope of a Breach of Its Computer Systems…Uber Claims No Sensitive Data Exposed in Latest Breach… But There’s More to This…Uber Hacker May Have Compromised Secret Bug Reports…Uber’s Hack Shows the Stubborn Power of Social EngineeringGTA 6 Source Code and Videos Leaked After Rockstar Games HackEmpress Emergency Medical Services (NY) Discloses Data Breach After Ransomware AttackHacker Sells Stolen Starbucks Data of 219,000 Singapore CustomersPhysicians’ Spine and Rehabilitation Specialists of Georgia Breached, Possible RansomwareSuffolk County Documents Stolen in Cyberattack Posted on Dark WebEmotet Botnet Now Pushes Quantum and BlackCat RansomwareResearchers Find Link b/w PrivateLoader and Ruzki Pay-Per-Install Services
9/15/2022 September 15, 2022September 15, 2022 ~ The Cyber Beat ~ Leave a comment Russian Gamaredon Hackers Target Ukrainian Government Using Info-Stealing MalwareSenate Confirms First-Ever Cyber AmbassadorKrebs: Say Hello to Crazy Thin ‘Deep Insert’ ATM SkimmersYouTube Users Targeted By RedLine Self-Spreading Stealer CampaignEU Proposes Strict Cybersecurity Rules for Digital-Product MakersWhite House Announces Updates From Tech Companies to Combat Violent ExtremismEnglish-Language Altenen Cybercrime Forum Admins Steal from Site UsersMalware on Pirated Content Sites a Major WFH Risk for EnterprisesZoom Outage Left Users Unable to Sign In or Join MeetingsWebworm Hackers Using Modified RATs in Latest Cyber Espionage AttacksMicrosoft Edge’s News Feed Ads Abused for Tech Support ScamsHackers Trojanize PuTTY SSH Client to Backdoor Media CompanyHack of Popular Parent-Teacher App Seesaw Left Users Open to Infamous Shock ImageHive Ransomware Claims Cyberattack on Bell Canada SubsidiaryLaval City Shuts Down Online Services After ‘Targeted’ Cyber AttackAkamai Stopped New Record-Breaking DDoS Attack in EuropeNotepad++ Plugins Allow Attackers to Infiltrate Systems, Achieve Persistence
9/14/2022 September 15, 2022September 15, 2022 ~ The Cyber Beat ~ Leave a comment White House to Tech World: Promise You’ll Write Secure Code – Or Feds Won’t Use ItDOJ Indicts Iranians for Allegedly Hacking and Extorting U.S. GroupsThe Twitter Whistleblower’s Testimony Has Senators Out for BloodDeath of Queen Elizabeth II Exploited to Steal Microsoft CredentialsSparklingGoblin APT Targeted Hong Kong University With New Linux BackdoorPhishing Page Embeds Keylogger to Steal Passwords as You TypeEA’s New Anti-cheat Tools Dip Into the Dreaded “Kernel Mode”Microsoft Teams Stores Auth Tokens as Cleartext in Windows, Linux, MacsSelf-Checkouts, IoT And The Rise Of Cyber Security Threats In RetailVulnerabilities Found in Airplane WiFi Devices, Passengers’ Data ExposedGay Hookup Site Typosquatted by 50 Domains to Push Dodgy Chrome ExtensionsTIC International Corporation Reports Data Breach Following Conti Ransomware AttackResearchers Detail OriginLogger RAT — Successor to Agent Tesla MalwareFBI: Hackers Steal Millions From Healthcare Payment ProcessorsNew Lenovo BIOS Updates Fix Security Bugs in Hundreds of ModelsKrebs: Wormable Flaw, 0days Lead Sept. 2022 Patch TuesdayCISA Orders Agencies to Patch Windows, iOS Bugs Used in AttacksTo Ease the Cybersecurity Worker Shortage, Broaden the Candidate Pipeline
9/13/2022 September 14, 2022September 14, 2022 ~ The Cyber Beat ~ Leave a comment Twitter ‘Lacked the Ability to Hunt for Foreign Intelligence Agents,’ Says Whistleblower…‘Misled The Public’Iranian Hackers Launch Renewed Attack on Albania, Taking Border Control Systems OfflineIranian Hackers Target High-Value Targets in Nuclear Security and Genomic ResearchU.S. Broadens International Efforts to Pursue HackersGPS Jammers Are Being Used to Hijack Trucks and Down Drones: How to Stop ThemTop Election Security Official Warns of Election Workforce Problems: 1 in 3 Have Left PostsTax Fraud Leader Jailed for Selling Children’s IdentitiesPolice Arrest Man for Laundering Tens of Millions in Stolen CryptoShadowPad-Associated Hackers Targeted Asian GovernmentsNapa Valley College Alerts 8,000 About Possible Data BreachHackers Steal Steam Credentials With ‘Browser-in-the-Browser’ TechniqueNew PsExec Spinoff Lets Hackers Bypass Network Security DefensesTrend Micro Warns of Actively Exploited Apex One RCE VulnerabilityZero-day in WPGateway WordPress Plugin Actively Exploited in AttacksMicrosoft September 2022 Patch Tuesday Fixes Zero-Day Used in Attacks, 63 FlawsApple Will Let You Roll Back the iPhone’s Security Patches
9/12/2022 September 12, 2022September 12, 2022 ~ The Cyber Beat ~ Leave a comment Hacktivist Group GhostSec Compromises 55 Berghof PLCs Across IsraelLorenz Ransomware Breaches Corporate Network via Phone SystemsiOS 16 Has 2 New Security Features for Worst-Case ScenariosSecurity Pros Get Ability to Manually Add Incidents to Microsoft SentinelGoogle Now Owns Mandiant, the Firm That Found SolarWindsG-7 Privacy Regulators Aim To Ease Turbulent International Data FlowsRomanian & UK Cops Raid Suspected Fraudster Penthouses in BucharestHP Will Pay Customers for Blocking Non-HP Ink Cartridges in EUCybersecurity Firm Fortanix Secures Capital to Provide Confidential Computing ServicesHackers Compromise Employee Data at PVC-Maker EurocellU-Haul Discloses Data Breach Exposing Customer Driver LicensesOakBend Medical Center (TX) Hit by RansomwareSuffolk County (NY) Government Investigates Possible Cyber IntrusionCisco Confirms Yanluowang Ransomware Leaked Stolen Company DataNew Attack Can Unlock and Start a Tesla Model Y in Seconds, Say ResearchersOxeye Discovers Several High Severity IDOR Vulnerabilities in HarborApple Fixes Eighth Zero-Day Used to Hack iPhones and Macs This YearVMware: 70% Drop in Linux ESXi VM Performance with Retbleed Fixes
9/9-11/2022 September 11, 2022September 11, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Treasury Sanctions Iran’s Intelligence Ministry for Alleged Cyberattack on AlbaniaCoinbase Bankrolls Lawsuit Against Treasury Department Following Tornado Cash SanctionsRansomware Gangs Switching to New Intermittent Encryption TacticKrebs: Transacting in Person with Strangers from the InternetUber Exec Accused of Disguising Data-Breach Extortion as “Bug Bounty”Microsoft, Cloud Providers Move to Ban Basic AuthenticationCybersecurity Expert: Even if You Debunk It, People Believe the DeepfakeVice Society Claims LAUSD Ransomware Attack, Theft of 500GB of Data…LA School District Was Warned of Ransomware Threat Before Recent ShutdownHoliday Inn Online Bookings Tank After Suspected Ransomware Attack: FranchiseesWilson’s Gun Shop (AR) Announces Data BreachLampion Malware Returns in Phishing Attacks Abusing WeTransferAttackers Exploit Zero-Day WordPress Plug-in Vulnerability in BackupBuddyFirmware Bugs in Many HP Computer Models Left Unfixed for Over a Year
9/8/2022 September 8, 2022September 8, 2022 ~ The Cyber Beat ~ Leave a comment North Korean Lazarus Hackers Take Aim at U.S. Energy ProvidersClassified NATO Documents Stolen From Portugal, Now Sold on DarkwebRansomware Campaigns Linked to Iranian Gov’t DEV-0270 HackersThis Clever Anti-Censorship Tool Lets Russians Read Blocked News80%+ Of the Top Sites Leak User Searches to AdvertisersU.S. Recovers $30 Million Stolen From Axie Infinity by Lazarus HackersDraft EU Rules Target Smart Devices With Security RisksWhy Companies Need to Think About Cyber Resilience, Not Just CybersecuritySavannah College of Art and Design Data Compromised After Ransomware AttackCBC Group (AZ) Data Breach Compromises Consumer SSNsBumblebee Malware Adds Post-exploitation Tool for Stealthy InfectionsGIFShell Attack Creates Reverse Shell Using Microsoft Teams GIFsNew Vulnerabilities Reported in Baxter’s Internet-Connected Infusion PumpsCISA Orders Agencies to Patch Chrome, D-Link Flaws Used in AttacksGoogle Urges Open Source Community to Fuzz Test CodeVulnerability Exploits, Not Phishing, Are the Top Vector for Initial Compromise
9/7/2022 September 7, 2022September 7, 2022 ~ The Cyber Beat ~ Leave a comment Former Conti Ransomware Gang Members Helped Target Ukraine, Google SaysUkraine Dismantles More Bot Farms Spreading Russian DisinformationRansomware Gang’s Cobalt Strike Servers DDoSed With Anti-Russia MessagesJapan Government Websites Hit By Cyber-Attacks, Killnet SuspectedMandiant Links APT42 to Iranian ‘Terrorist Org’Albania Severs Diplomatic Ties With Iran Over Cyber-Attack…U.S. Condemns ‘Unprecedented’ AttackApple’s Killing the Password: What You Need to KnowRing Finally Brings End-To-End Encryption to Its Flagship Battery Powered Video DoorbellsCISA to Hold Meetings to Flesh Out Cyber-Incident Reporting Rules200,000 North Face Accounts Hacked in Credential Stuffing AttackRadiant Logistics (WA) Data Breach May Have Stemmed from Ransomware IncidentGenesis Health Care (PA) Reports Data Breach Following Period of Unauthorized AccessNorth Korean Hackers Deploying New MagicRAT Malware in Targeted Campaigns‘DangerousSavanna’ Hackers Targeted Financial Institutions in Africa For Two YearsNew Stealthy Shikitega Malware Targeting Linux Systems and IoT DevicesHP Fixes Severe Bug in Pre-installed Support Assistant ToolCisco Won’t Fix Authentication Bypass Zero-Day in EoL RoutersNHTSA Updates Cybersecurity Guidelines for New Cars to Guard Against Hackers
9/6/2022 September 6, 2022September 6, 2022 ~ The Cyber Beat ~ Leave a comment Biden Administration Unveils Plan For Bolstering Semiconductor ProductionHow Critical U.S. Sectors Are Coping With Rising CyberattacksFBI Warns of Vice Society Ransomware Attacks on School DistrictsHalf of Firms Report Supply Chain Ransomware CompromiseIsrael Defence Minister’s Cleaner Jailed for Trying to Spy for Iran-Linked HackersIt’s Time to Get Real About TikTok’s RisksMinecraft Is Hackers’ Favorite Game Title for Hiding MalwareMeta Fined $400M in Ireland for Children’s Privacy BreachU.S. Seizes WT1SHOP Market Selling Credit Cards, Credentials, and IDsCybersecurity Startup Funding Highlights Competing Market ForcesLos Angeles Unified School District Hit by Cyberattack…FBI, DHS Join ProbeLondon’s Biggest Bus Operator Go-Ahead Hit by Cyber “Incident”Cyberattack Brings Down InterContinental Hotels’ Booking SystemsGateway Diagnostic Imaging (TX) Data Breach Impacts SSNs &Health InfoWorok Hackers Target High-Profile Asian Companies and GovernmentsTA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor AttacksMoobot Botnet Is Coming for Your Unpatched D-Link RouterNew Linux Malware Evades Detection Using Multi-Stage DeploymentZyxel Releases New NAS Firmware to Fix Critical RCE Vulnerability
9/5/2022 September 5, 2022September 5, 2022 ~ The Cyber Beat ~ Leave a comment China Says U.S. Hacked Aeronautics, Space Research University Northwestern Polytechnical in Escalating War of WordsCrypto: Actor Bill Murray HackedEvilProxy Phishing Toolkit Spotted on Dark Web ForumsInterpol Dismantles Sextortion Ring, Warns of More AttacksTikTok Denies Reports That It’s Been Hacked After ‘AgainstTheWest’ Claims It Exposed Source Code and User DataKeyBank’s Customer Information Stolen By Hackers in July Via Third-party Provider Overby-SeawellQNAP Patches Zero-Day Used in New Deadbolt Ransomware Attacks
9/2-4/2022 September 4, 2022September 4, 2022 ~ The Cyber Beat ~ Leave a comment IRS Says It Exposed Some Confidential Taxpayer Data on WebsitePolice Across US Bypass Warrants With Mass Location-Tracking ToolGoogle, YouTube Ban Election Trolls Ahead of U.S. MidtermsHackers Caused a Massive Traffic Jam in Moscow Using a Ride-Hailing AppKrebs: Violence-as-a-Service: Brickings, Firebombings & Shootings for HireDev Backdoors Own Prynt Stealer Malware to Steal Data From Other HackersMalware Dev Open-Sources CodeRAT After Being ExposedNavigating The Cybersecurity Funding LandscapeThe Makings of a Successful Threat-Hunting Program: What it TakesHoxhunt Primed to Spread Gamified Phishing Awareness in the EnterpriseCoro CEO Guy Moskowitz Plans to Take an Enterprise-Grade Security Capability to the SMB MarketSamsung Says July Data Breach Revealed Some Customers’ Names, Birthdays, and MoreDamart Clothing Store Hit by Hive Ransomware, $2 Million DemandedBlackCat Ransomware Claims Attack on Italian Energy AgencyHack Shuts Down Internet for Thousands Across Bardstown (KY)San Francisco 49ers: Blackbyte Ransomware Gang Stole Info of 20K PeopleBlack Knight (FL) Leaked Social Security Numbers Following Data BreachJuiceLedger Hackers Behind the Recent Phishing Attacks Against PyPI UsersSharkBot Malware Sneaks Back on Google Play to Steal Your LoginsGoogle Releases Urgent Chrome Update to Patch New Zero-Day VulnerabilityMicrosoft Defender Falsely Detects Win32/Hive.ZY in Google Chrome, Electron Apps
9/1/2022 September 1, 2022September 1, 2022 ~ The Cyber Beat ~ Leave a comment Montenegro Attack Hackers Demand $10 MillionRagnar Locker Ransomware Targets Energy Sector, Cybereason SuggestsNSA and CISA Share Tips to Secure the Software Supply ChainThousands Lured With Blue Badges in Instagram Phishing AttackThe U.S. May Soon Learn What a ‘Kid-Friendly’ Internet Looks LikeDark Web Of Cybersecurity Concerns Rising With Gig EconomyWhy Cybersecurity Stocks Are Beating the MarketCrypto.com Accidentally Sends Woman $10 Million Instead of $100: She Went and Bought a MansionNew Ransomware Hits Windows, Linux Servers of Chile Gov’t AgencyTulsa Tech Hit By Data Breach Exposing Data of Students Between 1986 and 1999Platinum Performance (CA) Reports Data Breach Following Successful Phishing AttackNeopets Says Hackers Had Access to Its Systems for 18 MonthsResearchers Detail Emerging Cross-Platform BianLian Ransomware AttacksOver 1,800 Android and iOS Apps Found Leaking Hard-Coded AWS CredentialsMicrosoft Will Disable Exchange Online Basic Auth Next Month