10/31/2022 October 31, 2022October 31, 2022 ~ The Cyber Beat ~ Leave a comment Ransomware Hackers Hit Australian Defence Communications PlatformU.S. Convenes Over 30 Countries to Address Ransomware as Hacks of Hospitals, Critical Infrastructure ContinueData Breach of Missile Maker MBDA May Have Been Real: CloudSEKNSA Shares Supply Chain Security Tips for Software SuppliersCISA, FBI, MS-ISAC Publish Guidelines For Federal Agencies on DDoS AttacksThe Hunter Cat Is Kinda Like a Bodyguard for Your Credit CardEducation Tech Giant Chegg Gets an F From FTC for Security After Sensitive Info on 40 Million Users StolenHackers Selling Access to 576 Corporate Networks for $4 MillionU.S. Vision Data Breach Involves Patients of Nationwide Optometry, P.C., SightCare, Inc. & Nationwide Vision CenterNew Azov Data Wiper Tries to Frame Researchers and BleepingComputerHacking Group Abuses Antivirus Software to Launch LODEINFO MalwareMozilla Firefox Fixes Freezes Caused by New Windows 11 Feature
10/28-30/2022 October 30, 2022October 30, 2022 ~ The Cyber Beat ~ Leave a comment Inside a U.S. Military Cyber Team’s Defence of UkraineLiz Truss Phone Hack Claim Prompts Calls for InvestigationFederal Bans Aren’t Stopping U.S. States From Buying Forbidden Chinese Kit‘Complex Threat Environment’ Ahead of Midterm Elections, Top Cybersecurity Official SaysIsrael’s Largest Ultra-Orthodox Party Suffers Database Leak, Exposing Info on Millions of VotersThe Election That Saved the Internet From Russia and ChinaElon Musk Closes Twitter Deal, Immediately Fires Top Executives…Twitter Is Drafting Broad Job Cuts, Days After Elon Musk’s TakeoverNew Open-Source Tool Scans Public AWS S3 Buckets for SecretsStudent Arrested for Running One of Germany’s Largest Dark Web Markets, ‘Deutschland im Deep Web’Largest EU Copper Producer Aurubis Suffers Cyberattack, IT OutageWakeMed Health & Hospitals (NC) Announces Data Breach Affecting 495,808 PatientsThese Dropper Apps On Play Store Targeting Over 200 Banking and Cryptocurrency WalletsCranefly Hackers Use Stealthy Techniques to Deliver and Control MalwareHigh-Severity Flaws in Juniper Junos OS Affect Enterprise Networking DevicesConnectwise Fixes RCE Bug Exposing Thousands of Servers to AttacksExploit Released for Critical VMware RCE Vulnerability, Patch NowGoogle Fixes Seventh Chrome Zero-Day Exploited in Attacks This YearActively Exploited Windows MoTW Zero-Day Gets Unofficial pPatch
10/27/2022 October 27, 2022October 27, 2022 ~ The Cyber Beat ~ Leave a comment U.S. Cyber Officials Prioritizing Securing Critical Sectors, Foreign Partnerships Amid Rising Threats…U.S. Officials Say Tech Companies Must Build Secure ProductsJapan to Citizens: Get a Digital ID or Health Insurance Gets HarderSlovak Parliament Suspends Voting Due to Suspected CyberattackNew York Post Hacked With Offensive Headlines Targeting Politicians…New York Post Fires Employee Who Posted Racist, Sexist Articles to Website, TwitterMicrosoft Links Raspberry Robin Worm to Clop Ransomware AttacksNever Pay the Ransom — A Cybersecurity CEO Explains WhyAmazon Accidentally Exposed an Internal Server Packed With Prime Video Viewing HabitsApple iOS and macOS Flaw Could’ve Let Apps Eavesdrop on Your Conversations with SiriTwilio Discloses Another Hack From June, Blames Voice PhishingMichigan Medicine Notifies Patients of Health Information BreachAscension St. Vincent’s Coastal Cardiology Data Breach After Ransomware AttackDrinik Android Malware Now Targets Users of 18 Indian BanksFodcha DDoS Botnet Reaches 1Tbps in Power, Injects Ransoms in PacketsKiss-a-Dog Cryptojacking Campaign Targets Docker and KubernetesNot So Nice: Purpleurchin Cryptocurrency Miners Spotted Scouring Free Github, Heroku AccountsResearchers Expose Over 80 ShadowPad Malware C2 ServersOpenSSL Warns of Critical Security Vulnerability With Upcoming PatchApple Fixes Recently Disclosed Zero-Day on Older iPhones, iPads
10/26/2022 October 26, 2022October 26, 2022 ~ The Cyber Beat ~ Leave a comment Pro-Chinese Disinformation Group Attempts to Undermine U.S. Political System, Influence VotersWhite House Unveils Cyber Plan for Chemical SectorThe Feds’ New Open-Access Policy: Who’s Gonna Pay For It?Ransomware Threat Shifts from U.S. to EMEA and APACRansomware Gangs Ramp Up Industrial Attacks in U.S.These Ransomware Victims Are Making the Highest Ransom PaymentsLinkedIn’s New Security Features Combat Fake Profiles, Threat ActorsHinge Plans to Add Video Verification Feature as ‘Romance Scams’ SoarBritish Hacker Charged for Allegedly Running the Real Deal Dark Web MarketA Bug in Apple MacOS Ventura Breaks Third-Party Security ToolsUnknown Actors are Deploying RomCom RAT to Target Ukrainian MilitaryKimsuky Hackers Spotted Using 3 New Android Malware to Target South KoreansAustralian Clinical Labs Announces Medlab Pathology Data Breach Affects 223,000 Accounts15 Anesthesia Practices Confirm Recent Data Breach From Incident at “Management Company”Phoenix Programs of Florida Experienced Data Breach Following Compromised Email AccountsUrology of Greater Atlanta Announces Data Breach, Does Not Disclose ImpactMedibank Now Says Hackers Accessed All Its Customers’ Personal DataMicrosoft Fixes Windows Vulnerable Driver Blocklist Sync IssueGoogle Chrome Pays $57K (and Counting) in Bug Bounties for Latest Update
10/25/2022 October 25, 2022October 25, 2022 ~ The Cyber Beat ~ Leave a comment Sen. Wyden Urges FTC to Access Classified Info to Combat Foreign HacksWhatsApp Back Online After Worldwide OutageNew Samsung Maintenance Mode Protects Your Data During Phone RepairsGone Phishing: UK Data Watchdog Fines Construction Biz £4.4M for Poor Infosec HygieneDutch Police Arrest Hacker Who Breached Healthcare Software VendorUkrainian Charged for Operating Raccoon Stealer Malware ServiceThe Hunt for the Dark Web’s Biggest Kingpin, Part 1: The ShadowCybersecurity Teams Are Reaching Their Breaking Point: We Should All Be WorriedRemote Work Has Changed Everything: And It’s Still Getting WeirderAbout Workers’ Cybersecurity Awareness: 4 MisconceptionsHive Ransomware Hackers Begin Leaking Data Stolen from Tata Power Energy CompanySee Tickets Discloses 2.5 Years-Long Credit Card Theft BreachMicrosoft: Vice Society targets schools with multiple ransomware familiesCyber Attack Suspected in Erie County (PA) 911 Failure Sunday NightChoice Health Insurance Confirms Recent Data BreachMassive Cryptomining Campaign Abuses Free-Tier Cloud Dev Resources22-Year-Old Vulnerability Reported in Widely Used SQLite Database LibraryResearchers Detail Windows Event Log Vulnerabilities: LogCrusher and OverLogCisco Warns Admins to Patch AnyConnect Flaw Exploited in AttacksVMware Fixes Critical Cloud Foundation Remote Code Execution Bug
10/24/2022 October 24, 2022October 24, 2022 ~ The Cyber Beat ~ Leave a comment When Would a Cyberattack Trigger a NATO Response? It’s a MysteryCuba Ransomware Affiliate Targets Ukrainian Gov’t AgenciesU.S. Says Two Chinese Intelligence Officers Tried to Obstruct Huawei ProsecutionU.S.-Listed Chinese Stocks Drop 15% After Beijing’s Power Reshuffle Makes the Market ‘Uninvestable’Hot on the Trail of a Mass-School-Shooting HoaxerBinance Is ‘Narrowing Down’ Identity of Hacker Behind $570 Million Crypto Attack, CEO SaysPayPal Is Getting More Secure Passkey LoginsDHL Replaces LinkedIn As Most Imitated Brand in Phishing AttemptsCriminals Are Starting to Exploit the Metaverse, Says Interpol. Police Follow.Payment Terminal Malware Steals $3.3M Worth of Credit Card Numbers – 167,000 So FarPendragon Car Dealer Refuses $60 Million LockBit Ransomware DemandSnatch Ransomware Group Claims Attack on Kenosha Unified School District (WI)SideWinder APT Using New WarHawk Backdoor to Target Entities in PakistanChrome Extensions With 1 Million Installs Hijack Targets’ BrowsersMultiple RCE Vulnerabilities Discovered in Veeam Backup & Replication AppApple Fixes New Zero-Day Used in Attacks Against iPhones, iPadsK-8 Students Learn Cybersecurity Through Gamification
10/21-23/2022 October 23, 2022October 23, 2022 ~ The Cyber Beat ~ Leave a comment As Russia Wages Disinfo War, Ukraine’s Cyber Chief Calls for Global Anti-Fake News FightResearchers: Facebook and TikTok Approving Ads With ‘Blatant’ Misinformation About Voting in MidtermsTikTok Fires Back at Forbes, Denies Report of a Plan to Track Specific U.S. Citizens Using Its AppDC Attorney General: Don’t Use Facebook Messenger, Other Unencrypted Services for Abortion PlanningTory Leadership: How Secure Is the Online Vote?The Quiet ‘Insurrection’ the January 6 Committee MissedHow Billionaires Are Building a Right-Wing Online EcosystemEverything We Know About the White House’s IoT Security Labeling Effort$228 Million Privacy Ruling Against Rail Giant Is ‘Wake-Up Call’ for Third-Party RiskClearview AI Gets Third €20 Million Fine for Illegal Data CollectionU.S. Gov’t Warns of Daixin Team Targeting Health Orgs With RansomwareTommyLeaks and SchoolBoys: Two Sides of the Same Ransomware GangSchools Are Getting Hit Hard By Cyberattacks. What Can They Do About It?New Phishing Campaign Targets Saudi Government Service PortalIran’s Atomic Energy Organization Says E-mail Was HackedWholesale Giant METRO Hit by IT Outage After CyberattackThousands of Publicly Exposed API Tokens Could Threaten Software IntegrityBlackByte Ransomware Uses New Data Theft Tool for Double-ExtortionEmotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop MalwareAndroid Adware Apps in Google Play Downloaded Over 20 Million TimesTyposquat Campaign Mimics 27 Brands to Push Windows, Android MalwareThousands of GitHub Repositories Deliver Fake PoC Exploits With MalwareHackers Exploit Critical VMware Flaw to Drop Ransomware, MinersExploited Windows Zero-Day Lets Javascript Files Bypass Security WarningsCritical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network
10/20/2022 October 20, 2022October 23, 2022 ~ The Cyber Beat ~ Leave a comment Ransomware is Being Used As a Precursor to Physical War: IvantiHow Vice Society Got Away With a Global Ransomware SpreeKrebs: Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedInFBI Warns Students Against Loan Forgiveness Scammers74% Say Connected Cars and EV Chargers Need Cybersecurity RatingsBiden to Announce Nearly $3 Billion for U.S. Battery Production in Electric Vehicle PushPresident Biden Still Wants His Cybersecurity Labels on Those Smart DevicesSingapore, Germany to Mutually Recognise IoT Cybersecurity LabelsCorporate Cybersecurity Teams Continue to Struggle to Fill JobsHealth System Data Breach Due to Meta Pixel Hits 3 Million PatientsParler Accidentally Exposes Elite Members’ Email Addresses in Kanye AnnouncementOldGremlin Ransomware Targeted Over a Dozen Russian Entities in Multi-Million SchemeHackers Using New Version of FurBall Android Malware to Spy on Iranian CitizensNew Ursnif Variant Likely Shifting Focus to Ransomware and Data TheftGoogle Launches GUAC Open Source Project to Secure Software Supply ChainGoogle Sued Over Biometric Data Collection Without ConsentCybercriminals Jailed for Cryptocurrency Theft, Death Threats8 Trends Driving Cybersecurity in the Public Sector
10/19/2022 October 19, 2022October 19, 2022 ~ The Cyber Beat ~ Leave a comment Retired U.S. Generals, Admirals Take Top Jobs With Saudi Crown PrinceChina’s Military Is Trying to Recruit Ex-British Air Force Pilots for Training and Intel, UK SaysHow the World Will Know If Russia Is Preparing to Launch a NukeSo, The U.S., China, and Russia Walk Into an Infosec Conference…Krebs: How Card Skimming Disproportionally Affects Those Most In NeedMicrosoft Announces Enterprise DDoS Protection for SMBsBrazil Arrests Suspect Linked to the Lapsus$ Extortion Hacking GroupCyber M&A Expected to Remain Robust Into 2023Microsoft Data Breach Exposes Customers’ Contact Info, EmailsKeystone Health Breach Exposed Health Details of 235KDeadbolt Ransomware Extorts Vendors and CustomersExperts Warn of Stealthy PowerShell Backdoor Disguising as Windows UpdateResearchers Detail Azure SFX Flaw That Could’ve Allowed Attackers to Gain Admin AccessApache Commons Text RCE Flaw — Keep Calm and Patch AwayCISA Warns of Critical Flaws Affecting Industrial Appliances from Advantech and HitachiEmotional Toll From Cyberattacks Can Linger Among Staff for Years
10/18/2022 October 18, 2022October 18, 2022 ~ The Cyber Beat ~ Leave a comment Ongoing U.S. Support to Ukraine Could Prompt Russian Cyber Escalation in Midterms, Experts WarnPro-Russia Hackers DDoS Bulgarian GovernmentGermany Fires Cybersecurity Chief ‘Over Russia Ties’ AllegationsSen. Rosen Requests Info on Cyber Threats Targeting Aviation SectorFBI: Scammers Likely to Target Us Student Loan Debt Relief ApplicantsCritical RCE Vulnerability Discovered in Popular Cobalt Strike Hacking SoftwareThe Black Market for Blue ChecksEuropean Police Catch Suspected Car HackersJapanese Giants to Offer Security-As-A-Service for Connected CarsEx-WSJ Reporter Says He Was Framed in Elaborate ‘Hack-And-Smear’ OperationYou Need a Password Manager. Here Are the Best OnesWine Merchant Vinomofo Among Aussie Firms Breached, Exposing MillionsVerizon Notifies Prepaid Customers Their Accounts Were BreachedChinese Spyder Loader Malware Deployed Against Hong Kong Organizations…‘Winnti’ Hackers Compromised Hong Kong Gov’t Agency Network for a Year‘DiceyF’ Hackers Target Asian Casinos in Lengthy Cyberespionage CampaignCHI Health Begins to Restore Systems Affected by Ransomware AttackLifespire Services Reports Data Breach With HHS-OCR Affecting 15,375 IndividualsZoom Patches High-Severity Flaw in macOS ClientDuckDuckGo for Mac Enters Public Beta, Now Available to EveryoneMillennials and Gen Z Less Likely to Observe Cybersecurity Protocols Than Their Elders
10/14-17/2022 October 17, 2022October 17, 2022 ~ The Cyber Beat ~ Leave a comment ‘Prestige’ Ransomware Group Targets Organizations in Ukraine and PolandRansom Cartel Linked to Russia-Based REvil Ransomware GroupOngoing U.S. Support to Ukraine Could Prompt Russian Cyber Escalation in Midterms, Experts WarMusk’s SpaceX Says It Can No Longer Pay for Critical Satellite Services in Ukraine, Asks Pentagon to Pick up the TabXi Wanted China to Be at the Tech Frontier. 5 Years On, Tensions With the U.S. Have Dented That GoalFBI Warns Chinese Hackers Scanning State Political PartiesReport Shows How China Has Been Using Cyberattacks Over the Past DecadeThe Next Ford Mustang Won’t Be Easy to Tune; Blame CybersecurityGadgets That Break Things: Our Favorite Hacking HardwarePhishing Works So Well Crims Won’t Bother With Deepfakes, Says Sophos ChapThe Hunt for Wikipedia’s Disinformation MolesMisinformation Most Amplified on TikTok, Twitter: Advocacy GroupKrebs: Anti-Money Laundering Service AMLBot Cleans HousePolice Tricks DeadBolt Ransomware Out of 155 Decryption KeysSpanish Police Bust Region’s “Biggest Narco Bank”Global Cops Arrest Dozens Linked to ‘Black Axe’ Financial Crime GangStudent Jailed for Hacking Female Classmates’ Email, Snapchat AccountsOnly PC Players Need a Registered Phone Number for Modern Warfare 2Raising Cybersecurity Awareness Is Good for Everyone – But It Needs to Be Done BetterAustralian Police Secret Agents Exposed in Colombian Data LeakMyDeal Data Breach Impacts 2.2M Users, Stolen Data for Sale OnlinePhishing Incident May Have Exposed Seton (TX) Patient Names, Clinical InformationMulticare Says Employee Data Enmeshed in Kaye-Smith Vendor Ransomware AttackRansomware Attack Halts Circulation of Some German NewspapersIndian Energy Company Tata Power’s IT Infrastructure Hit By Cyber AttackAmazon Customers Receive Smishing Warning After Receiving Fake TextsNew PHP Version of Ducktail Malware Hijacking Facebook Business AccountsVenus Ransomware Targets Publicly Exposed Remote Desktop ServicesThe Hackers Behind the Black Basta Ransomware Family Infiltrate Networks via Qakbot to Deploy Brute Ratel C4Malware Dev Claims to Sell New BlackLotus Windows UEFI BootkitMirai Botnet Hits Wynncraft Minecraft Server with 2.5 Tbps DDoS AttackFortinet Urges Admins to Patch Bug With Public Exploit ImmediatelyZimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration SuiteWindows Mark of the Web Bypass Zero-Day Gets Unofficial PatchResearchers Say Microsoft Office 365 Uses Broken Email Encryption to Secure MessagesMicrosoft’s Out-Of-Date Driver List Left Windows Pcs Open to Malware Attacks for YearsCISA Releases Open-Source ‘RedEye’ C2 Log Visualization Tool
10/13/2022 October 14, 2022October 14, 2022 ~ The Cyber Beat ~ Leave a comment UK Extends Deadline to Remove Huawei From 5G Networks After One Carrier Warned of OutagesGlobally Critical Chip Firm Tells U.S. Staff to Stop Servicing China Customers After Biden Export CurbsChinese APT WIP19 Targets IT Service Providers and TelcosNew Chinese ‘Alchimist’ Malware Attack Framework Targets Windows, macOS, and Linux SystemsFirefox’s New Service Gives You a Burner Phone Number to Cut Down on SpamThe $1 Billion Alex Jones EffectNearly 3 in 4 Say Misinformation a ‘Major Problem’U.S. Election Officials Are on Alert for Cyber, Physical AttacksU.S. Election Workers Slammed With Phishing, Malware-Stuffed EmailsHow Palantir’s Tech-Based Patriotism and Politics Grew Into a Multi-Billion Dollar CompanyNudge Security Emerges From Stealth to Tackle Cybersecurity’s People ProblemCyberattackers Spoof Google Translate in Unique Phishing TacticGoogle’s Futuristic 3D Meeting Tech Is Taking Another Step ForwardBudworm Espionage Group Returns, Targets U.S. State LegislatureInsurer Medibank Hit by Targeted CyberattackCyber Attack Accesses Personal Data of LDS Church Members, EmployeesNew Mexico Licensing Department Subject of Cyber AttackSnap Employee Data Exposed After Breach at Document Company ElevateFast Company Says Executive Board Member Info Was Not Stolen in Recent September AttackThe Scoular Company (NE) Confirms Recent Data BreachGEE Group (FL) Reports Data Breach Following Encryption EventCloudflare Mitigated Record DDoS Attack Against Minecraft ServerRussian DDoS Attack Project Pays Contributors for More FirepowerMagniber Ransomware Now Infects Windows Users via Javascript FilesExploit Available for Critical Fortinet Auth Bypass Bug, Patch Now
10/12/2022 October 12, 2022October 12, 2022 ~ The Cyber Beat ~ Leave a comment America’s ‘Once Unthinkable’ Chip Export Restrictions Will Hobble China’s Semiconductor AmbitionsU.S. To Issue New Cybersecurity Requirements for Critical Aviation SystemsSamsung Knox Matrix Plans ‘Private Blockchain’ Security for Appliances, Phones, and TVsGoogle’s Pixel 7 Packs a Beefed-Up Security ChipGoogle Rolling Out Passkey Passwordless Login Support to Android and ChromeFormBook Tops Check Point’s Most Wanted Malware List For SeptemberGoogle Forms Abused in New COVID-19 Phishing Wave in the U.S.How Wi-Fi Spy Drones Snooped on Financial FirmThe Company That Owns Shein Will Pay New York State $1.9 Million for Data BreachHackers Using Vishing to Trick Victims into Installing ‘Copybara’ Android Banking MalwareUnofficial WhatsApp Android App Caught Stealing Users’ AccountsMars Area School District (PA) Investigates BreachNew npm Timing Attack Could Lead To Supply Chain AttacksClaroty Found Hardcoded Cryptographic Keys in Siemens PLCs Using RCEAruba Fixes Critical RCE and Auth Bypass Flaws in EdgeConnectKrebs: Microsoft Patch Tuesday, October 2022 EditionMicrosoft Defender Adds Command and Control Traffic DetectionMicrosoft Adds New RSS Feed for Security Update Notifications
10/11/2022 October 11, 2022October 11, 2022 ~ The Cyber Beat ~ Leave a comment Hacking Group Polonium Uses ‘Creepy’ Malware Against IsraelThe Cruel Temptation of the Job Offer ScamRising Premiums, More Restricted Cyber Insurance Coverage Poses Big Risk for CompaniesHacktivists Force Companies to Respond to Low-Level CyberattacksLabor Department Proposes Rule to Reclassify Contractors as EmployeesGoogle Chat Upgrades for Threading, Custom Emoji, and Security Are Coming SoonAndroid Leaks Some Traffic Even With ‘Always-on VPN’If You’re Wondering Why Google Blew $5B on Mandiant, This May Shed Some LightAmerica’s Oldest Bank, BNY Mellon, Will Hold That Crypto NowTalent & Governance: The Key To Cybersecurity ChangeJPMorgan Says It Is Not Seeing Any Impact From Alleged Killnet AttackValle del Sol (AZ) Announces Unauthorized Access to Its IT NetworkBazarCall Callback Phishing Attacks Constantly Evolving Its Social Engineering TacticsMicrosoft Exchange Servers Hacked to Deploy LockBit RansomwareResearchers Detail Critical RCE Flaw Reported in Popular vm2 JavaScript SandboxVMware vCenter Server Bug Disclosed Last Year Still Not PatchedMicrosoft October 2022 Patch Tuesday Fixes Zero-Day Used in Attacks, 84 FlawsCalls for Better Microsoft Teams Backup as Confidential Info Sent on the PlatformAll Windows Versions Can Now Block Admin Brute-Force Attacks
10/10/2022 October 10, 2022October 10, 2022 ~ The Cyber Beat ~ Leave a comment Russian-Speaking ‘Killnet’ Hackers Knock Multiple U.S. Airport Websites Offline. No Impact on Operations ReportedUkraine Enhances Cooperation With EU Cybersecurity AgenciesGerman Cybersecurity Chief Investigated Over Russia TiesThermoSecure: Cracking Passwords Using Finger Heat on Keyboards is Now PossibleWindows 11 Now Offers Automatic Phishing ProtectionCaffeine Service Lets Anyone Launch Microsoft 365 Phishing AttacksIt’s 2022 and Netizens Are Only Now Getting Serious About CybersecurityHospitalwide Outages Still Plaguing CommonSpirit HospitalsIntel Confirms Alder Lake BIOS Source Code Leak, New Details EmergeToyota Discloses Data Leak After Access Key Exposed on GitHubSingtel’s Second Unit Faces Cyber Attack Weeks After Optus Data BreachMativ Holdings (GA) Confirms Recent Data breach Affected Employee InformationResearchers Detail Malicious Tools Used by Cyberespionage Group Earth AughiskyNew Report Uncovers Emotet’s Delivery and Evasion Techniques Used in Recent AttacksHackers Behind IcedID Malware Attacks Diversify Delivery TacticsFortinet Says Critical Auth Bypass Bug Is Exploited in Attacks
10/7-9/2022 October 9, 2022October 9, 2022 ~ The Cyber Beat ~ Leave a comment Federal Government Considers Sharing Costs for ‘Catastrophic’ Cyber IncidentsNew U.S. Privacy Protections Help Companies Struggling With Legal Limbo In Europe…May Not Satisfy EuropeKrebs: Big U.S. Banks Are Stiffing Account Takeover Victims (Report)Facebook Warns 1 Million Users Whose Logins Were Stolen by Scam Mobile AppsCallback Phishing Attacks Evolve Their Social Engineering TacticsHackers Can Use ‘App Mode’ in Chromium Browsers’ for Stealth Phishing AttacksWhen Are We Gonna Stop Calling It Ransomware? It’s Just Data Kidnapping NowCybersecurity Will Account for Nearly One-Quarter of AI Software Market Through 2025Boston Dynamics: We Won’t Weaponize Our Robots and neither Should Our CustomersDarkweb Market BidenCash Gives Away 1.2 Million Credit Cards for Free2K Games Warns Users Their Stolen Data Is Now up for Sale OnlineOver 12,000 Wisconsin Medicaid Members Had Their Personal Data ExposedADATA Denies RansomHouse Cyberattack, Says Leaked Data From 2021 BreachBinance Hackers Make Off With $100 MillionBrazil’s BRB Bank Pays 50 BTC After Being Targeted by a Ransomware AttackLofyGang Group Linked to Recent Software Supply Chain AttacksFake Adult Sites Push Data Wipers Disguised as RansomwareSolana Phantom Security Update NFTs Push Password-Stealing MalwareHackers Exploiting Unpatched RCE Flaw in Zimbra Collaboration SuiteFortinet Warns of New Auth Bypass Flaw Affecting FortiGate and FortiProxyMicrosoft: Windows 11 22H2 Causes File Copy Performance Hit
10/6/2022 October 7, 2022October 7, 2022 ~ The Cyber Beat ~ Leave a comment FBI Warns of Disinformation Threats Before 2022 Midterm ElectionsU.S. Gov’t Shares Top Flaws Exploited by Chinese Hackers Since 2020A Swatting Spree Is Terrorizing Schools Across the U.S.Krebs: Glut of Fake LinkedIn Profiles Pits HR Against the BotsCybersecurity Leaders Are Having Trouble Keeping Companies Secure: There’s No Easy SolutionDisabling These Windows 11 Security Features Could Improve Gaming PerformanceBlizzard Scales Back Overwatch 2’s Controversial Phone Number RequirementMusk Requests Stay In Twitter TrialMeta Sues App Dev for Stealing Over 1 Million WhatsApp Accounts19-Year-Old Teen Arrested for Using Leaked Optus Breach Data in SMS ScamHacker Steals $566 Million Worth of Crypto From Binance BridgeIndianapolis Housing Agency’s Server Hacked by Cyber ThievesSaskatoon Gynecology Clinic Hit With Ransomware AttackHartnell College Network Outage May Be From Cyberattack16,000 Traffic Charges ‘Dismissed’ — By Mistake — After NC Courts Computer ProblemEternity Group Hackers Offering New LilithBot Malware as a Service to CybercriminalsLinux Kernel 5.19.12 Bug Could Damage Intel Laptop DisplaysDetails Released for Recently Patched new macOS Archive Utility VulnerabilityAustralia Unveils Privacy Rule Changes After Optus Data Breach
10/5/2022 October 5, 2022October 5, 2022 ~ The Cyber Beat ~ Leave a comment Malicious Cyber Activity Unlikely to Disrupt Voting, FBI SaysHacktivists Seek to Aid Iran Protests With Cyberattacks and Tips on How to Bypass Internet CensorshipFBI, CISA, and NSA Reveal How Hackers Targeted a Defense Industrial Base OrganizationColorado.gov Downed in ‘Suspected Foreign’ Cyber AttackCity of Houston Website Possibly Hacked With Posts About Russian Mail Order Brides, Essay WritersLloyd’s of London Investigates Possible Cyber AttackRise in Cyberattacks Stretches and Stresses DefendersThe Insecurities of Cybersecurity SuccessAvast Releases Free Decryptor for Hades Ransomware VariantsRansomware: This Is How Half of Attacks Begin, and This Is How You Can Stop ThemFormer Uber Security Chief Joe Sullivan Found Guilty of Obstructing FTC ProbeSeattle Hacker Gets Probation for $250M Capital One Data Breach…DOJ ‘Very Disappointed’ With Probation Sentence for Capital One Hacker Paige ThompsonStaff at Security Firm G4S on Alert After Tax Numbers and Bank Details Posted Online Following HackCity of Tucson Discloses Data Breach Affecting Over 125,000 PeopleFamily Medical (TX) Reports Informs 234K Patients of Possible Data CompromiseChase UK’s App-Only Bank Hit With 24-Hour Ongoing OutageDouglas County (NE) 911 Impacted by Ransomware CryptovirusGrain Valley School District (MO) Investigates CyberattackChemonics International Files Official Notice of Data BreachBlackByte Ransomware Abuses Legit Driver to Disable Security ProductsExperts Warn of New RatMilad Android Spyware Targeting Enterprise DevicesMicrosoft Investigates Windows 11 22H2 Remote Desktop IssuesHundreds of Microsoft SQL Servers Backdoored With New MalwareMicrosoft Updates Mitigation for ProxyNotShell Exchange Zero Days
10/4/2022 October 4, 2022October 5, 2022 ~ The Cyber Beat ~ Leave a comment Vladimir Putin’s Speech Contains the Off-Ramp to the War in Ukraine…This Is How the War Could End…Russian Hackers Take Aim at Kremlin Targets?New Democrat Coalition Backs Privacy BillCyber Bill to Fund Minority, Community College ProgramsMusk Revives $44 Billion Twitter Bid, Aiming to Avoid Trial…Shares Surge 22%Mastercard Pushes Deeper Into Crypto With New Tool for Combating FraudBEC Scammer Gets 25-Year Jail Sentence for Stealing Over $9.5 MillionNetwalker Ransomware Affiliate Sentenced to 20 Years in PrisonRussian Hacker Arrested at Airport in India for Reportedly Helping Students Cheat in JEE-Main ExamJapanese Sushi Chain Boss Resigns Amid Accusation of Improper Data AccessSomeone Is Tricking Chinese YouTube Users With a Spyware Version of the Tor BrowserAustralia’s Telstra Hit by Data Breach, Two Weeks After Attack on Optus…Optus Confirms 2.1 Million ID Numbers Exposed in Data BreachStudent, Teacher Data Largely Unaffected in Los Angeles Schools HackCommonSpirit IT Security Incident Disrupts Hospital OperationsAnthem MaineHealth Suffers Third-Party Data Breach from Choice Health, 13K ImpactedHackers Are Breaching Scam Sites to Hijack Crypto TransactionsFBI Warns of “Pig Butchering” Cryptocurrency Investment SchemesFBI: Beware of Fake Batteries, Here’s What to Watch Out ForResearchers Report Supply Chain Vulnerability in Packagist PHP Repository
10/3/2022 October 3, 2022October 4, 2022 ~ The Cyber Beat ~ Leave a comment NATO Leader on Ukraine’s Fast-Track Into Alliance: Membership ‘Has to Be Taken by Consensus’CISA Directs Federal Agencies to Improve Cybersecurity Asset Visibility and Vulnerability DetectionThe Founder of ‘Black Girls in Cyber’ Sees Lots More Work to DoNational Cybersecurity Awareness Program 18 Years On: Don’t Click ThatSmall Utilities Must Master CybersecurityHow Ransomware Is Causing Chaos in American SchoolsThe High Cost of Living Your Life OnlineFrom Today, America and UK Follow New Rules on How They Can Demand Your Data From Each OtherHealthcare Company Owners Get Jail Time for $7m Fraud SchemeTransit Swap Exploiter Returns Large Chunk of $28.9M HackRussian Retail Chain Digital Network System (DNS) Confirms Hack After Data Leaked OnlineFerrari Says Internal Documents Online, but No Evidence of Cyber AttackfocusIT (AZ) Files Official Notice of Data Breach of Compromised Customer InfoPhishing Campaigns Target KFC, McDonald’s in Saudi Arabia, UAE, SingaporeWeb Browser App Mode Can Be Abused to Make Desktop Phishing PagesResearchers Link Cheerscrypt Linux-Based Ransomware to Chinese Hackers Emperor DragonflyComm100 Chat Provider Hijacked to Spread Malware in Supply Chain AttackFake Microsoft Exchange ProxyNotShell Exploits for Sale on GitHubMicrosoft Exchange Server Zero-Day Mitigation Can Be Bypassed
9/30-10/2/2022 October 2, 2022October 2, 2022 ~ The Cyber Beat ~ Leave a comment Putin Announces Annexation of Ukrainian Regions in Defiance of International Law…Ukrainian Troops Fight to Take Full Control of Lyman, as Russians Attempt to WithdrawUkraine Bids to Join NATO Despite Long Odds…9 NATO Members Urge Support for Ukraine After Annexation…Lawmakers Split on Ukraine’s New NATO Bid…Surprise to Biden…U.S. And Turkish Officials Discuss Ukraine and NATO in Unannounced MeetingRussians Dodging Mobilization Behind Flourishing Scam MarketThe FBI Says It Caught an Ex-NSA Employee Trying to Sell Top-Secret Intelligence Documents to Foreign GovernmentsNational Archives Says Some Trump Administration Records Are Still MissingU.S. Faces Election Worker Shortage Ahead of Midterms Due to Rise in ThreatsKrebs: Fake CISO Profiles on LinkedIn Target Fortune 500sHeightened Cyber Threat Brings CIOs, CISOs CloserScarborough: Plan to Make Town Cyber Security Centre of ExcellenceGermany Arrests Hacker for Stealing €4 Million via Phishing AttacksOptus Breach Victims Will Get “Supercharged” Fraud ProtectionChrome’s New Ad-Blocker-Limiting Extension Platform Will Launch in 2023Krebs: Two New Microsoft 0-Day Flaws in Exchange Server…State-Sponsored Hackers Likely Exploited MS Exchange 0-Days Against ~10 Organizations…Microsoft ConfirmsMexican President Confirms ‘Guacamaya’ Hack Targeting Regional Militaries…Hack Puts Latin American Security Agencies on EdgeRansomware Gang Leaks Data Stolen From LAUSD School System…LAUSD Creates Hotline After Stolen Data Posted by Ransomware GroupShangri-La Hacked & Guest Information At Select Hotels ExposedNorthern California Fertility Medical Center Breach Leaks Patients’ Health InfoWilliam Carey University (MS) Comes Under Ransomware AttackFake U.S. Gov’t Job Offers Push Cobalt Strike in Phishing AttacksLazarus Hackers Abuse Dell Driver Bug Using New FudModule RootkitHackers Backdoor Pirated Windows OS With Cryptominer and Xtreme RATCISA Warns of Hackers Exploiting Critical Atlassian Bitbucket Server VulnerabilityMicrosoft to Let Office 365 Users Report Teams Phishing MessagesWhite House: A Proclamation on Cybersecurity Awareness Month, 2022