2/28/2023 February 28, 2023February 28, 2023 ~ The Cyber Beat ~ Leave a comment China Is Relentlessly Hacking Its NeighborsTikTok Answers Three Big Cybersecurity Fears About the AppU.S. Gov’t Agencies Have 30 Days to Remove TikTok, Canada Follows SuitLastPass Reveals Attackers Stole Password Vault Data by Hacking an Employee’s Home ComputerKrebs: Hackers Claim They Breached T-Mobile More Than 100 Times in 2022How to Set Up Two-Factor Authentication on Your Online ServicesGoogle: Gmail Client-Side Encryption Now Publicly AvailableBitdefender Releases Free Decryptor for MortalKombat Ransomware StrainHacking Attack Prompts Russian Regional Broadcasters to Issue Air Alert Warnings (Again)Dish Network Confirms Ransomware Attack Behind Multi-Day OutageCity of Oregon City Reports Ransomware AttackEvergreen Treatment Services (OR) Data Breach Affects Personal Info of 21,325 PatientsAnonymous Call Informs Sentara Healthcare (VA) of Data BreachLSUs Online Services Restored Tuesday After Network Outage: ‘Not Cyber Event’APT-C-36 Strikes Again: Blind Eagle Hackers Target Key Industries in ColombiaSCARLETEEL Hackers Use Advanced Cloud Skills to Steal Source Code, DataCISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability
2/27/2023 February 28, 2023February 28, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Marshals Service Investigating Ransomware Attack, Data TheftCISA Tells Agencies What to Prioritize to Meet Cybersecurity Log MandateAustralia Plans to Reform Cyber Security Rules, Set up AgencyChina Makes It Even Harder for Data to Leave Its ShoresKrebs: When Low-Tech Hacks Cause High-Impact BreachesResearchers Discover Nearly 200,000 New Mobile Banking Trojan InstallersResearchers Share New Insights Into RIG Exploit Kit Malware’s OperationsChatGPT Is Down Worldwide – OpenAI Working on IssuesA Year After Russia’s Invasion, Cyberdefenses Have Improved Around the WorldMinneapolis Public Schools Still Investigating What Caused ‘Encryption Event’Hacker Leaks Alleged Activision Employee Data on Cybercrime ForumAlvaria (MA) Announces Data Breach Following Hive Ransomware AttackAdvanced Health Media Leaked SSNs Following Recent Data BreachCrum & Forster (NJ) Announces Data BreachNew Exfiltrator-22 Post-Exploitation Kit Linked to LockBit RansomwareRIG Exploit Kit Still Infects Enterprise Users via Internet ExplorerPlugX Trojan Disguised as Legitimate Windows Debugger Tool in Latest AttacksCritical Flaws in WordPress Houzez Theme Exploited to Hijack Websites
2/24-26/2023 February 26, 2023February 26, 2023 ~ The Cyber Beat ~ Leave a comment CISA Calls For Increased Vigilance One Year After Ukraine’s Russian InvasionRussian IT “Brain Drain” Decentralizes CybercrimePentagon Investigating Two-Week Email Server LeakRoyal Mail Appears to Call LockBit’s Ransomware Bluff – Loses Gigabytes of DataNews Corp Says State Hackers Were on Its Network for Two YearsA Basic iPhone Feature Helps Criminals Steal Your Entire Digital LifeKrebs: Who’s Behind the Botnet-Based Service BHProxies?Tesla to Change Camera Settings in Europe Over Privacy FearsEU Commission Bans TikTok on Corporate Devices‘Ethical Hacker’ Among Ransomware Suspects Cuffed by Dutch CopsBitcoin Mining Rig Found Stashed in Massachusetts School CrawlspaceThese Experts Are Racing to Protect AI From Hackers. Time Is Running OutTelus Source Code, Staff Info for Sale on Dark Web ForumDish Network Goes Offline After Likely Cyberattack, Employees Cut OffStanford University Discloses Data Breach Affecting PhD ApplicantsEncino Energy Says ‘No Impact’ Seen After CyberattackCleveland Brothers Holdings Data Breach Affects Thousands of SSNsEmtec (FL) Breach Affects Over 7,000 People Following CyberattackRockler Companies (MN) Data Breach Impacts More than 8,600 IndividualsPureCrypter Malware Hits Gov’t Orgs With Ransomware, Info-StealersChromeLoader Campaign Lures With Malicious VHDs for Popular GamesBrave Browser to Block “Open in App” Prompts, Pool-Party AttacksGoogle Teams Up with Ecosystem Partners to Enhance Security of SoC ProcessorsCybersecurity to Be Least Hit by Layoffs in Economic Downturn
2/23/2023 February 23, 2023February 23, 2023 ~ The Cyber Beat ~ Leave a comment How the Russia-Ukraine War Has Changed CyberspaceUkraine Says Russian Hackers Backdoored Gov’t Websites in 2021Batteries Are Ukraine’s Secret Weapon Against RussiaRussian Authorities Claim Ukraine Hackers Are Behind Fake Missile Strike Alerts in Almost a Dozen CitiesWinorDLL64 Backdoor Linked to Lazarus GroupHow I Broke Into a Bank Account With an AI-Generated VoiceU.S. Regulators Warn Banks to Be on Alert for Crypto-Related Liquidity RisksValve “Honeypot” Used to Ban 40,000 Dota 2 Players Using CheatYou Can’t Trust App Developers’ Privacy Claims on Google PlayForsage DeFi Platform Founders Indicted for $340 Million ScamFTX Fiasco Founder SBF Faces Further Fraud ChargesFTC: Americans Lost $8.8 Billion to Fraud in 2022 After 30% SurgeU.S. Extradites Russian Individual for Allegedly Selling Malicious SoftwareDatacenters in China, Singapore Cracked by Crims Who Then Targeted TenantsLockBit Leaks 44GB of Royal Mail’s Data and Sets Fresh £33 Million RansomVice Society Ransomware Gang Leaked 2K Los Angeles Student Health Records OnlineHutchinson Clinic (PA) Posts Notice of Data Breach Affecting Sensitive Patient InformationClasiopa Hackers Use New Atharvan Malware in Targeted AttacksHackers Using Trojanized macOS Apps to Deploy Evasive Cryptocurrency Mining MalwarePython Developers Warned of Trojanized PyPI Packages Mimicking Popular LibrariesA World of Hurt for Fortinet and Zoho After Users Fail to Install PatchesApple Warns of 3 New Vulnerabilities Affecting iPhone, iPad, and Mac DevicesMicrosoft Urges Exchange Admins to Remove Some Antivirus ExclusionsHow Cybersecurity Executives Make the Case for Continued Tech Investments in a Tough Economy
2/22/2023 February 22, 2023February 22, 2023 ~ The Cyber Beat ~ Leave a comment Hackers Use Fake ChatGPT Apps to Push Windows, Android Malware and Send Victims to Phishing PagesUkraine Suffered More Wiper Malware in 2022 Than Anywhere, EverGcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan ClientOpen Source Flaws Found in 84% of CodebasesNSA Shares Guidance on How to Secure Your Home Network2023 Budget Conversations: Prioritizing Cybersecurity During Economic DownturnGoogle Paid $12 Million in Bug Bounties to Security ResearchersHydrochasma Group Targets Asian Medical and Shipping SectorsNew S1deload Stealer Malware Hijacks Youtube, Facebook AccountsCyberattack on Food Giant Dole Temporarily Shuts Down North America ProductionAttackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing LinksHackers Now Exploit Critical Fortinet Bug to Backdoor ServersVMware Patches Critical Vulnerability in Carbon Black App Control Product
2/21/2023 February 22, 2023February 22, 2023 ~ The Cyber Beat ~ Leave a comment Researchers Warn of ReverseRAT Backdoor Targeting Indian Government AgenciesA New Kind of Bug Spells Trouble for iOS and macOS SecurityHackers Exploit Privilege Escalation Flaw on Windows Backup ServiceGoogle Will Boost Android Security Through Firmware HardeningAccidental WhatsApp Account Takeovers? It’s a ThingAT&T Seeks to Shed Cybersecurity DivisionSublime Nabs $9.8M for Anti-Phishing Email Security Platform Built on Collective, Crowdsourced RulesThree City Fund Managers Jailed for $8m FraudSensitive U.S. Military Emails Spill Online via Exposed ServerRussian State TV ‘Hit by Cyber Attack’ During Putin’s SpeechActivision Confirms Data Breach Exposing Employee and Game InfoVirgin Media TV Hack May Cause Disruption to Some ProgrammingSophisticated MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices DailyExploit Released for Critical Fortinet RCE Flaws, Patch NowWhy Security Culture Is Key To Cybersecurity ResilienceCyberthreats, Regulations Mount for Financial Industry
2/20/2023 February 20, 2023February 21, 2023 ~ The Cyber Beat ~ Leave a comment Here’s How to Secure Your Twitter Account Without Paying for BlueDNA Testing Biz Vows to Improve Infosec After Criminals Break Into Database It Forgot It HadMajority of Ransomware Attacks Last Year Exploited Old BugsHardBit Ransomware Wants Insurance Details to Set the Perfect PriceMicrosoft AI Chatbot Threatens to Expose Personal Info and Ruin a User’s ReputationSpanish Court Authorises Extradition to U.S. Of Briton Who Allegedly Hacked Biden, ObamaInglis Retires as National Cyber Director Ahead of Biden’s Cybersecurity EOCoinbase Cyberattack Targeted Employees With Fake SMS AlertEureka Casino Resort (NV) Announces Data Breach Impacting Nearly 230k IndividualsCentraState Healthcare System Announces Data Breach Impacting as Many as 617k PatientsLehigh Valley Health Network (PA) Hit by CyberattackO’Neal Industries Reports Recent Data BreachTom James Company (TN) Files Notice of Data Breach Affecting 8,656 IndividualsNew Stealc Malware Emerges With a Wide Set of Stealing Capabilities
2/17-19/2023 February 19, 2023February 19, 2023 ~ The Cyber Beat ~ Leave a comment EU Cybersecurity Agency Warns Against Chinese APTsGoogle Report Reveals Russia’s Elaborate Cyber Strategy in Ukraine‘Russian Hacktivists’ Brag of Flooding German Airport SitesExperts Warn of RambleOn Android Malware Targeting South Korean JournalistsArmenia and Azerbaijan Hackers Use OxtaRAT to Monitor ConflictCloud Infrastructure Used By WIP26 For Espionage Attacks on TelcosKrebs: New Protections for Food Benefits Stolen by SkimmersSamsung Has Created a Zero-Click Antivirus for MessagesHow to Unlock Your iPhone With a Security KeyTwitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers OnlyEuropol Busts ‘CEO Fraud’ Gang That Stole €38M in a Few DaysNorwegian Police Recover $5.8M Crypto From Massive Axie Infinity HackFBI Says It Has ‘Contained’ Cyber Incident on Bureau’s Computer NetworkHackers Ran Amok Inside GoDaddy for Nearly 3 YearsData Leak Hits Thousands of Liverpool NHS WorkersMKS Instruments (MA) Data Breach Affects Current and Former EmployeesPaul Smith’s College (NY) Data Breach Impacts Over 10k IndividualsSuffolk County, N.Y., Restores Systems After September CyberattackNew WhiskerSpy Malware Delivered via Trojanized Codec InstallerCritical RCE Vulnerability Discovered in ClamAV Open Source Antivirus SoftwareFortinet Issues Patches for 40 Flaws Affecting FortiWeb, FortiOS, FortiNAC, and FortiProxyAppSec Threats Deserve Their Own Incident Response PlanHere’s the 12 Best Ways to Avoid Being Scammed OnlineThe Five Important Moments In History That Shaped The Modern Cybersecurity Landscape
2/16/2023 February 16, 2023February 16, 2023 ~ The Cyber Beat ~ Leave a comment DOJ, Commerce Department Strike Force to Fight Technology Threats From AdversariesESXiArgs Ransomware Hits Over 500 New Targets in European CountriesMicrosoft Exchange ProxyShell Flaws Exploited in New Crypto-Mining AttackNew Mirai Malware Variant Infects Linux Devices to Build DDoS BotnetCISA Warns of Windows and iOS Bugs Exploited as Zero-DaysPrivacy Regulators Step Up Oversight of AI Use in EuropeBEC Groups Target Firms With Multilingual Impersonation AttacksHackers Leverage PayPal to Send Malicious InvoicesCrypto Buyers Beware: 1 in 4 New Tokens of Any Value Is a ScamProtecting More With What You Have: Cybersecurity Resilience In 2023New Threat Actor WIP26 Targeting Telecom Service Providers in the Middle EastBurton Snowboards Cancels Online Orders After ‘Cyber Incident’German Airport Websites Hit by Suspected Cyber AttackScandinavian Airlines Says Cyberattack Caused Passenger Data LeakAtlassian Says Recent Data Leak Stems From Third-Party Vendor HackHackers Using Google Ads to Spread FatalRAT Malware Disguised as Popular AppsHackers Start Using Havoc Post-Exploitation Framework in AttacksHackers Backdoor Microsoft IIS Servers With New Frebniis MalwareResearchers Warn of Critical Security Bugs in Schneider Electric Modicon PLCs
2/15/2023 February 15, 2023February 15, 2023 ~ The Cyber Beat ~ Leave a comment North Korea’s APT37 Targeting Southern Counterpart with New M2RAT MalwareU.S. Border Patrol Is Finally Able to Check E-Passport DataOakland Declares Emergency After Ransomware AttackMajor Global Chipmaking Supplier ASML Claims an Employee Stole Manufacturing SecretsMade in America, Stolen by China: We Need Cybersecurity Minimum StandardsGitHub Copilot Update Stops AI Model From Revealing SecretsThe Ohio Train Derailment Created a Perfect TikTok StormSevered Cable Forces Lufthansa to Cancel More Than 140 FlightsCyber Insurers Unlikely to Offer Higher Coverage Limits Despite Better ConditionsRussian Hacker Convicted of $90 Million Hack-To-Trade ChargesIndian SideWinder APT Attacks Regional Targets in New CampaignLockBit and Royal Mail Ransomware Negotiation Leaked by LockBitEmsisoft Says Hackers Are Spoofing Its Certs to Breach NetworksMeriplex Communications Data Breach Affects Malaga Bank CustomersCompSource Mutual Insurance Company Data Breach Affects Thousands of ClaimantsSuccession Wealth Targeted by Cyber-AttackHyundai, Kia Patch Bug Allowing Car Thefts With a USB CableCitrix Fixes Severe Flaws in Workspace, Virtual Apps and DesktopsIntel Patches up SGX Best It Can After Another Load of Security Holes Found
2/14/2023 February 15, 2023February 15, 2023 ~ The Cyber Beat ~ Leave a comment Russian-Linked Malware Was Close to Putting U.S. Electric, Gas Facilities ‘Offline’ Last Year…This Russia-Linked Hack Is Worse Than We KnewThe More You Look for Spy Balloons, the More UFOs You’ll FindChinese Hackers Infiltrate South American Diplomatic NetworksChanging Leaders? You May Be a Target of HackersHow Companies Can Minimize the Cybersecurity Risk From Their Tech VendorsEurostar Forces ‘Password Resets’ — Then Fails and Locks Users OutMicrosoft: Exchange Server 2013 Reaches End of Support in AprilCyber-Physical System Vulns Disclosures Reach Peak, While Internal Disclosures Up 80%Google Launches First Android Beta for Ad-Tracking OverhaulHealthcare Giant Community Health Systems Reports First Data Breach in GoAnywhere HacksAirline SAS Network Hit by Hackers, Says App Was CompromisedReventics, an Omega Healthcare Company, Announces Data Breach Following CyberattackMassive AdSense Fraud Campaign Uncovered – 10,000+ WordPress Sites InfectedRedEyes Hackers Use New Malware to Steal Data From Windows, PhonesNPM Packages Posing as Speed Testers Install Crypto Miners InsteadNew ‘MortalKombat’ Ransomware Targets Systems in the U.S.New Stealthy ‘Beep’ Malware Focuses Heavily on Evading DetectionEmbattled VMware ESXi Hypervisor Flaw Exploitable in Myriad WaysKrebs: Microsoft Patch Tuesday, February 2023 Edition
2/13/2023 February 14, 2023February 14, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Navy Recovers ‘Significant’ Portion of Chinese Spy Balloon off South CarolinaAfter Shooting Down Flying Objects, U.S. And Canada Have More Theories Than AnswersChinese Tonto Team Hackers’ Second Attempt to Target Cybersecurity Firm Group-IB FailsLockBit’s Royal Mail Ransom Deadline Flies By. No Data ReleasedMajority of Firms Make Cybersecurity Decisions Without Attacker InsightHow To Protect Against AI-Based Email Security Threat VectorsMedical-Device Makers Face Push to Protect Their Wares From HacksPig Butchering Scams Are Evolving FastLazarus Hackers Use New Mixer to Hide $100 Million in Stolen CryptoSpain, U.S. Dismantle Phishing Gang That Stole $5 Million in a YearNamecheap Customers Flooded with Phishing EmailsPepsi Bottling Ventures Suffers Data Breach After Malware AttackGarrison Women’s Health (NH) Notifies Patients of Data BreachEmployee Social Security Numbers Exposed in Bridgewater-Raritan School District (NJ)Rise Interactive Media & Analytics Third-Party Breach Affects Edgepark Medical SuppliesHackers Create Malicious Dota 2 Game Modes to Secretly Access Players’ Systems451 PyPI Packages Install Chrome Extensions to Steal CryptoCloudflare Blocks Record-Breaking 71 Million RPS DDoS AttackApple Fixes New WebKit Zero-Day Exploited to Hack iPhones, MacsUnciphered Reveals Now-Patched Vulnerability in OneKey Wallet
2/10-12/2023 February 12, 2023February 12, 2023 ~ The Cyber Beat ~ Leave a comment Former Diplomat Claims to Have SNP MP’s Hacked EmailsNorth Korean Hackers Are Attacking U.S. HospitalsU.S. Teases More China Tech Sanctions, This Time to Deflate Balloon-MakersFrom Huawei to TikTok, Chinese Tech Giants Face Scrutiny Amid Spying ConcernsCyberattack on ION Derivatives Unit Had Ripple Effects on Financial MarketsRefund and Invoice Scams Surge in Q4Reddit Hack Shows Limits of MFA, Strengths of Security TrainingRomance Scammers Could Cause Unhappy Valentine’s DayAttacker Allure: A Look at the Super Bowl’s Operational Cyber-RisksEverything Is HackableHow to Manage Third-Party Cybersecurity Risks That Are Too Costly to IgnoreMicrosoft Winget Package Manager Failing From Expired SSL CertificatePasskeys From Apple, Google & Microsoft May Soon Replace Your Passwords as Passwords Are Continually ThreatenedHow to Make Sure You’re Not Accidentally Sharing Your LocationHow to Delete Yourself From the InternetRansomware Crooks Steal 3M+ Patients’ Medical Records, Personal Info From Multiple California Medical GroupsCity of Oakland Systems Offline After Ransomware AttackA10 Networks Confirms Data Breach After Play Ransomware AttackVice Society Ransomware Attack Confirmed by Mount Saint Mary CollegeClop Ransomware Claims it Breached 130 Orgs Using GoAnywhere Zero-DayIsrael’s Technion University Hacked; Cyber Authority Trying to AssistKimmel Center, Philadelphia Orchestra Websites Hit by Cyber AttackIndian Social Media App Slick Exposed Childrens’ User DataDotHouse Health (MA) Announces Data Breach Impacting 10k PatientsEdmonds School District (WA) Data Breach Exposed Sensitive InformationDevs Targeted by W4SP Stealer Malware in Malicious PyPi PackagesMalicious Npm Package Uses Typosquatting, Downloads MalwareCISA Warns of Active Attacks Exploiting Fortra MFT, TerraMaster NAS, and Intel Driver Flaws
2/9/2023 February 9, 2023February 9, 2023 ~ The Cyber Beat ~ Leave a comment Russia’s Ransomware Gangs Are Being Named and Shamed…Krebs: U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking GroupAustralia to Remove Chinese Surveillance Cameras Amid Security FearsNew ESXiArgs Ransomware Version Prevents VMware ESXi RecoveryHacker Develops New ‘Screenshotter’ Malware to Find High-Value TargetsPayPal and Twitter Abused in Turkey Relief Donation ScamsCybersecurity—Value Driven From SafetyInsurers Say Cyberattack That Hit Merck Was Warlike Act, Not Covered1Password Is Trying For Zero PasswordsCodebreakers Decipher Mary, Queen of Scots’ Secret Letters 436 Years After Her ExecutionLargest Canadian Bookstore Indigo Shuts Down Site After CyberattackReddit Cyberattack Let Hackers Steal Source Code and Internal DataMunster Technological University Says IT Breach Caused by Ransomware AttackAtlantic General Hospital (MD) System Still Down Following Ransomware AttackNewsPenguin Threat Actor Emerges with Malicious Campaign Targeting Pakistani EntitiesGootkit Malware Adopts New Tactics to Attack Healthcare and Finance FirmsHackers Use Fake Crypto Job Offers to Push Info-Stealing MalwareMalicious Google Ads Sneak AWS Phishing Sites Into Search ResultsOpenSSL Fixes Multiple New Security Flaws with Latest Update
2/8/2023 February 9, 2023February 9, 2023 ~ The Cyber Beat ~ Leave a comment Russian Hackers Using Graphiron Malware to Steal Data from UkraineCISA Releases Recovery Script for ESXiArgs Ransomware VictimsThe State of the Union Was Light on Cybersecurity, Related TopicsWhite House Cyber Adviser to Retire Next WeekNIST Standardizes Ascon Cryptographic Algorithm for IoT and Other Lightweight DevicesRegulator Halts AI Chatbot Over GDPR ConcernsWhy ChatGPT Isn’t a Death Sentence for Cyber DefendersHow the US Can Stop Data Brokers’ Worst Practices—Right NowAndroid 14 to Block Malware From Abusing Sensitive PermissionsWeee! Grocery Service Confirms Data Breach, 1.1 Million AffectedDrug Distributor AmerisourceBergen Confirms Security BreachMoney Lover For Android & iOS Leaked Email Addresses, TransactionsStroke Scan Files Notice of Data Breach Affecting 50k ConsumersTor and I2P Networks Hit by Wave of Ongoing DDoS AttacksTMH Employee: Remote Workers Forced to Use PTO During Cybersecurity IncidentMalicious Dota 2 Game Mods Infected Players With MalwareSonicWall Warns Web Content Filtering Is Broken on Windows 11 22H2
2/7/2023 February 8, 2023February 8, 2023 ~ The Cyber Beat ~ Leave a comment SNP MP Stewart McDonald’s Emails Hacked by Russian GroupMicrosoft to Rival Google With New AI-Powered Bing Search14 Innovation Trends With Exponential Growth Potential: Ark’s Big Ideas 2023Cybersecurity Teams: The Defender’s Dilemma Is a LieThree Common Ways Cybersecurity Teams Waste Money—And What To Do InsteadMore Than 2,000 Cybersecurity Patent Applications Filed Since 2010Kaspersky Briefing: ChatGPT and the Language of CybersecurityKrebsOnSecurity in Upcoming Hulu Series on Ashley Madison BreachRussian Man Pleads Guilty to Laundering Ryuk Ransomware MoneyFlorida State Court System, U.S., EU Universities Hit by Ransomware OutbreakUK Metal Engineering Firm Vesuvius Hit by Cyber-AttackRegal Medical Group Notifies Patients of Recent Data BreachResearcher Breaches Toyota Supplier Portal With Info on 14,000 PartnersOver 12% Of Analyzed Online Stores Expose Private Data, BackupsMedusa Botnet Returns as a Mirai-Based Variant With Ransomware StingNew QakNote Attacks Push QBot Malware via Microsoft OneNote FilesHackers Exploit Vulnerabilities in Sunlogin to Deploy Sliver C2 Framework
2/6/2023 February 7, 2023February 7, 2023 ~ The Cyber Beat ~ Leave a comment Embarrassment as U.S. Cyber Ambassador’s Twitter Account Is HackedNo Evidence Global Ransomware Hack Was by State Entity, Italy SaysVMware Finds No Evidence of 0-Day in Ongoing ESXiArgs Ransomware SpreeLockBit Ransomware Gang Claims Royal Mail Cyberattack‘Phishing-As-A-Service’ Kits Are Driving an Uptick in Theft: One Business Owner’s StoryThree U.S. Data Breaches Show Varied Healthcare Exposure RisksCorporate Boards Struggle to Understand Cybersecurity and Digital TransformationInside Safe City, Moscow’s AI Surveillance DystopiaGoogle Unveils Bard, its Rival to ChatGPTMicrosoft Authenticator Drops Support for Apple WatchDrugs Labs Busted After Encrypted Chat App TakedownProminent UK Cybersecurity Stock Darktrace Is Under Attack From Short SellersGuLoader Malware Using Malicious NSIS Executables to Target E-Commerce IndustryMint Mobile Gets Affected by T-Mobile Recent Data BreachSharp HealthCare (CA) Notifies Nearly 63,000 Patients of Data BreachMotto Mortgage (CO) Files Notice of Recent Data Breach, Exposing Consumers SSNsHidalgo County (TX) Adult Probation Office Hit by Ransomware AttackLinux Variant of Clop Ransomware Spotted, But Uses Faulty Encryption AlgorithmHackers Backdoor Windows Devices in Sliver and BYOVD AttacksExploit Released for Actively Exploited GoAnywhere MFT Zero-Day…Actively Exploited GoAnywhere MFT Zero-Day Gets Emergency PatchOpenSSH Releases Patch for New Pre-Auth Double Free VulnerabilityThree Ways To Stop Playing Cybersecurity Whac-A-Mole
2/3-5/2023 February 6, 2023February 6, 2023 ~ The Cyber Beat ~ Leave a comment Suspected Chinese Spy Balloon Shot Down off South Carolina CoastBermuda Hit by Major Internet and Power OutageNew Credential-Stealing Campaign By APT34 Targets Middle East FirmsGoogling for Software Downloads Is Extra Risky Right NowThe Biggest Risks in Procrastinating on iPhone, Android Software UpdatesAirbnb Is Making a Simple, but Big Booking Change Bringing It Closer to Hotel Check-inFormer Twitter Employees to Testify at House Hearing on Hunter BidenICO Relaxes Breach Reporting for Comms ProvidersNY Attorney General Forces Spyware Vendor to Alert VictimsHave We Learnt Nothing From SolarWinds Supply Chain Attacks? Not Yet It AppearsDashlane Password Manager Open-Sourced Its Android and iOS AppsKrebs: Finland’s Most-Wanted Hacker Nabbed in FranceDeveloper Pleads Guilty to Hacking His Own Company After Pretending to Investigate HimselfU.S. Man Charged in $110m Crypto Trading SchemeCyber-Attack Results in More Than $800K Stolen From Houston Business, Lawsuit FiledIranian OilRig Hackers Using New Backdoor to Exfiltrate Data from Govt. OrganizationsIran Crew Stole Charlie Hebdo Database, Says MicrosoftTruthFinder, Instant Checkmate Confirm Data Breach Affecting 20M CustomersTallahassee Memorial HealthCare Takes IT Systems Offline After CyberattackMultiple Wayne County (MI) Police Agencies Targeted in Ransomware AttacksUniversity of Zurich Confirms ‘Serious Cyberattack’More Than 11,000 Employees, Students and Former Staff Affected by Cyber Attack, QUT SaysPixPirate: New Android Banking Trojan Targeting Brazilian Financial InstitutionsGoogle Ads Push ‘Virtualized’ Malware Made for Antivirus EvasionPost-Macro World Sees Rise in Microsoft OneNote Documents Delivering MalwareMassive ESXiArgs Ransomware Attack Targets VMware ESXi Servers WorldwideLinux Version of Royal Ransomware Targets VMware ESXi ServersHackers Actively Exploiting Zero-Day in Fortra’s GoAnywhere MFTAtlassian Patches Critical Authentication Flaw in Jira Software
2/2/2023 February 2, 2023February 2, 2023 ~ The Cyber Beat ~ Leave a comment New Russian-Backed Gamaredon’s Spyware Variants Targeting Ukrainian AuthoritiesRussia-Ukraine War Has Improved U.S. Cyber Cooperation, Says Key OfficialAnker’s Eufy Admits Unencrypted Videos Could Be Accessed, Plans OverhaulThreat Actors Use ClickFunnels to Bypass Security ServicesAPT Groups Use Ransomware TTPs as Cover for Intelligence Gathering and SabotageNetflix’s US Password-Sharing Crackdown Isn’t Happening—YetFormer Ubiquiti Dev Pleads Guilty to Trying to Extort His EmployerDiscrepancies Discovered in Vulnerability Severity RatingsRising ‘Firebrick Ostrich’ BEC Group Launches Industrial-Scale CyberattacksNorth Korean Hackers Exploit Unpatched Zimbra Devices in ‘No Pineapple’ CampaignLazarus Group Attack Identified After Operational Security FailLockBit Ransomware Attack on Data Firm Ion Could Take Days to FixSuper Bock Says ‘Cyber’ Nasty ‘Disrupting Computer Services’Australia’s Black and White Cabs Booking Service Offline After Cyber AttackStealthy HeadCrab Malware Compromised Over 1,200 Redis ServersHackers Weaponize Microsoft Visual Studio Add-Ins to Push MalwareMalvertising Attacks Are Distributing .Net Malware LoadersCisco Fixes Bug Allowing Backdoor Persistence Between Reboots
2/1/2023 February 1, 2023February 1, 2023 ~ The Cyber Beat ~ Leave a comment New DDoS-As-A-Service Platform ‘Passion’ Used in Recent Attacks on HospitalsAlmost all Organizations are Working with Recently Breached VendorsCrypto Scam Apps Infiltrate Apple App Store and Google PlayOver 1,800 Android Phishing Forms for Sale on Cybercrime MarketExperts Warn of ‘Ice Breaker’ Cyberattacks Targeting Gaming and Gambling IndustryGoogle Boosts Bounties for Open Source Flaws Found via FuzzingEnter the Hunter Satellites Preparing for Space WarEU Tightens Oversight of Data-Privacy Regulators to Speed Up DecisionsCybersecurity Firm RAPID7 Explores SaleArnold Clark Customer Personal Data ‘Stolen in Cyber Attack’…Claimed by Play RansomwareGoogle Fi Data Breach Let Hackers Carry Out Sim Swap AttacksFIA Assessing Impact of Cyber Attack on Financial Data Firm IONSensitive Data Stolen in Okanagan College Attack Posted to Dark Web Says Vice SocietyLockBit Ransomware Goes ‘Green,’ Uses New Conti-Based EncryptorNew Nevada Ransomware Targets Windows and VMware ESXi SystemsResearchers Uncover New Bugs in Popular ImageMagick Image Processing Utility
1/31/2023 February 1, 2023February 1, 2023 ~ The Cyber Beat ~ Leave a comment Russian-Backed Hackers ‘Killnet’ Actively Targeting U.S. Health Care Sector, HHS Warns…The List So FarNew Report Reveals NikoWiper Malware That Targeted Ukraine Energy SectorU.S., Middle Eastern Allies Include Cyber Collaboration in Abraham AccordsMicrosoft: Over 100 Threat Actors Deploy Ransomware in AttacksMicrosoft Disables Verified Partner Accounts Used for OAuth PhishingMicrosoft Upgrades Defender to Lock Down Linux Gear for Its Own GoodYou Really Need to Update Firefox and Android Right NowOpenAI Releases Tool to Detect AI-Written TextGoogle Fi Customers Caught Up in Recent T-Mobile Data BreachNantucket Schools Close After Ransomware AttackTucson Unified School District Hit by Cyber AttackDocuSign Brand Impersonation Attack Bypasses Security Measures, Targets Over 10,000PoS Malware Can Block Contactless Payments to Steal Credit CardsNew Sh1mmer ChromeBook Exploit Unenrolls Managed DevicesExploit Released for Critical VMware vRealize RCE VulnerabilityOver 29,000 QNAP Devices Unpatched Against New Critical FlawFirmware Flaws Could Spell ‘Lights Out’ for Servers