3/30/2023

The U.S. Is Sending Money to Countries Devastated by Cyberattacks

Winter Vivern Hackers Exploit Zimbra Flaw to Steal NATO Emails

Leaked Documents Offer Fascinating Insights Into Russian Cyber Warfare

FDA Will Refuse New Medical Devices for Cybersecurity Reasons on Oct. 1

Huge Microsoft Azure Exploit Allowed Users to Manipulate Bing Search Results and Access Outlook Email Accounts

Over 70% of Employees Keep Work Passwords on Personal Devices

U.S. Court Sanctions Google in Privacy Case, Company’s Second Legal Setback in Days

Ukrainian Cyberpolice Busts Fraud Gang That Stole $4.3 Million
Chinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG Backdoor

Bright Horizons Notifies Current and Former Employees of Recent Data Breach

Majestic Care Files Notice of Data Breach Affecting Current and Former Residents and Staff

The Health Plan of San Mateo (CA) Data Breach Leaked Personal Info of 11,894 Individuals

AlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud Services

Realtek and Cacti Flaws Now Actively Exploited by Malware Botnets

CISA Orders Agencies to Patch Bugs Exploited to Drop Spyware

Microsoft OneNote Will Block 120 Dangerous File Extensions

3/29/2023

Google Warns Against Commercial Spyware Exploiting Zero-Days

Elon Musk and Others Urge AI Pause, Citing ‘Risks to Society’

Smart Mobility has a Blindspot When it Comes to API Security

In Walmart’s Cyber Risk Formula, Every Bug Has a Backstory

Microsoft Defender Shoots Down Legit URLs as Malicious

FTX Cryptovillain Sam Bankman-Fried Charged With Bribing Chinese Officials

Man Behind Hack-for-Hire Campaign That Targeted Environmental Activists Is Keeping His Mouth Shut
SafeMoon ‘Burn’ Bug Abused to Drain $8.9 Million From Liquidity Pool

UC San Diego Health Data Breach After a Vendor’s Unauthorized Use of Tracking Technologies

U.S. Wellness (MD) Data Breach Affects 11,459 Patients’ Protected Health Information

Data Stolen From Washington County (FL) Sheriff’s Office Leaked by LockBit Ransomware Group

Cybersecurity Firms Warn of 3CX Desktop App Supply Chain Attack

Cybercriminals Set Sights on Critical IBM File Transfer Bug

QNAP Warns Customers to Patch Linux Sudo Flaw in NAS Devices

3/28/2023

Newly Exposed APT43 Hacking Group Targeting U.S. Orgs Since 2018

North Korea Is Now Mining Crypto to Launder Its Stolen Loot

Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence

Krebs: UK Sets Up Fake Booter Sites To Muddy DDoS Market

Microsoft Security Copilot Is a New GPT-4 AI Assistant for Cybersecurity

Cybersecurity Workers Demand Higher Salaries

Millions of Pen Tests Show Companies’ Security Postures Are Getting Worse

The Pervasive Threat Of Ransomware And Its Misconceptions
Latitude Financial Data Breach Now Impacts 14 Million Customers

Modesto Hit by Apparent Snatch Ransomware Attack

Oklahoma City University Notifies Students and Employees of Data Breach

Central National Bank (TX) Data Breach Affects an Unknown Number of Customers

Children’s Data Feared Stolen in Fortra Ransomware Attack

Trojanized Tor Browsers Target Russians With Crypto-Stealing Malware

Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe

WiFi Protocol Flaw Allows Attackers to Hijack Network Traffic

3/27/2023

President Joe Biden Says U.S. Can’t Buy Spyware That Other Countries Have Used Against It

Twitter Says Parts of Its Source Code Were Leaked Online

Trying to Find the Culprit

They Posted Porn on Twitter: German Authorities Called the Cops

FTC Bans Scammy Companies From ‘Calling About Your Car’s Extended Warranty’

Exchange Online to Block Emails From Vulnerable On-Prem Servers

The Integral Role of Human Resources Departments in Cybersecurity

This Cybersecurity CTO Shares 5 Tips To Better Protect Your Customers

What Automation Means For Cybersecurity—And Your Business

Hackers Earn $1,035,000 for 27 Zero-Days Exploited at Pwn2Own Vancouver
Crown Resorts Says Ransomware Group Claims Accessing Some of Its Files

Clop Keeps Racking Up Ransomware Victims With GoAnywhere Flaw

Associates in Dermatology (VA) Breach Stems from Ransomware Attack at VPN Solutions

Sun Pharma (India) Admits Business Affected Due to March 2 Ransomware Attack

NCB Management Services (PA) Data Breach Affects Nearly a Half-Million Consumers

Atlantic Dialysis Management Services (NY) Breach of Patient Info

Florida Medical Clinic Notifies Nearly 95,000 People of Recent Data Breach

Three Variants of IcedID Malware Discovered

New MacStealer Targets Catalina, Newer MacOS Versions

Apple Fixes Recently Disclosed WebKit Zero-Day on Older iPhones

3/24-26/2023

CISA Unveils Ransomware Notification Initiative

UK National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch Cybercriminals

Uncle Sam Reveals It Sent Cyber-Soldiers to Albania to Hunt for Iranian Threats

‘Bitter’ Espionage Hackers Target Chinese Nuclear Energy Orgs

IRS Phishing Emails Used to Distribute Emotet

ChatGPT’s History Bug May Have Also Exposed Payment Info, Says OpenAI

Open-Source Bug

Australian Police Arrest Four BEC Actors Who Stole $1.7 Million

FBI: Business Email Compromise Tactics Used to Defraud U.S. Vendors

FBI Confirms Access to Breached Cybercrime Forum Database

India Shut Down Cell Service for 27 Million During a Manhunt

GitHub Swiftly Replaces Exposed RSA SSH Key to Protect Git Operations

The Strongest Protection for Your Online Accounts? This Little Key
Procter & Gamble Confirms Data Theft via GoAnywhere Zero-Day

New Dark Power Ransomware Claims 10 Victims in Its First Month

Kroger Postal Prescription Services Breach Impacts 82,466 Consumers

Maersk Says Posted Data Is Not Current and Not From Attack by Hackers

Wisconsin Court System Affected by DDoS Incident

Washington County (FL) Sheriff’s Office Back to Normal After Cyber Attack

Russia’s Rostec Allegedly Can De-Anonymize Telegram Users

Inaudible Ultrasound Attack Can Stealthily Control Your Phone, Smart Speaker

Microsoft Pushes OOB Security Updates for Windows Snipping Tool Flaw

Microsoft Teams, Virtualbox, Tesla Zero-Days Exploited at Pwn2Own

Windows, Ubuntu, and VMWare Workstation Hacked on Last Day of Pwn2Own

Fortra Told Breached Companies Their Data Was Safe

3/23/2023

TikTok Congressional Hearing: CEO Shou Zi Chew Grilled by U.S. Lawmakers

TikTok Paid for Influencers to Attend the Pro-TikTok Rally in DC

Are Chinese Tech Firms a Security Risk?

Krebs: Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Stanford Pulls Down ChatGPT Clone After Safety Concerns

Journalist Plugs in Unknown USB Drive Mailed to Him—It Exploded in His Face

Windows 11, Tesla, Ubuntu, and macOS Hacked at Pwn2Own 2023

CloudPanel Installations Use the Same SSL Certificate Private Key

New CISA Tool Detects Hacking Activity in Microsoft Cloud Services

How to Use ChatGPT to Write Code

Epidemic of Insecure Storage, Backup Devices Is a Windfall for Cybercriminals

MITRE Rolls Out Cloud-Based Prototype for Supply Chain Security

Kids Tech Camp iD Tech Still Silent Weeks After Data Breach
City of Toronto Confirms Data Theft, Clop Claims Responsibility

Attorneys Say Private Information Exposed to Public in NC Courts Overhaul

Ottawa County (OH) Officials Working to Restore Network After Ransomware Attack

Shoreline College (WA) Website Hacked; Officials Investigating

Tri Counties Bank in Chico (CA) Suffers Data Breach After February Cyber Attack

China-Aligned “Operation Tainted Love” Targets Middle East Telecom Providers

German and South Korean Agencies Warn of Kimsuky’s Expanding Cyber Attack Tactics

Python Info-Stealing Malware Uses Unicode to Evade Detection

SharePoint Phishing Scam Targets 1600 Across U.S., Europe

BlackGuard Stealer Now Targets 57 Crypto Wallets, Extensions

Exploit Released for Veeam Bug Allowing Cleartext Credential Theft

WordPress Force Patching WooCommerce Plugin with 500K Installs

Microsoft Fixes Acropalypse Privacy Bug in Windows 11 Snipping Tool

3/22/2023

The TikTok CEO’s Face-Off With Congress Is Doomed

Cyberterrorism Tops List of Threats to U.S. Vital Interests: Gallup

Unknown Actors Deploy Malware to Steal Data in Occupied Regions of Ukraine

North Korean Hackers Using Chrome Extensions to Steal Gmail Emails

German Political Parties Accused of Microtargeting Voters on Facebook

Facebook Accounts Hijacked by New Malicious Trojanized Version of ChatGPT Chrome Extension

ChatGPT-Owner OpenAI Fixes ‘Significant Issue’ Exposing User Chat Titles

CISA and NSA Enhance Security Framework With New IAM Guide

Beloved Hacking Veteran Kelly ‘Aloria’ Lum Passes Away at 41
Dole Discloses Employee Data Breach After Ransomware Attack

Convergent Outsourcing (WA) Files Notice of Data Breach That Leaked Consumers’ SSNs

Sunland Asphalt and Construction (AZ) Data Breach Affects 7,884 Individuals’ Personal Info

$36M BEC Fraud Attempt Narrowly Thwarted by AI Technology

Hackers Inject Credit Card Stealers Into Payment Processing Modules

New Android Banking Trojan ‘Nexus’ Promoted As MaaS

NAPLISTENER: New Malware in REF2924 Group’s Arsenal for Bypassing Detection

ScarCruft’s Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques

PoC Exploits Released for Netgear Orbi Router Vulnerabilities

3/21/2023

Putin to Staffers: Throw Out Your iPhones, or ‘Give It to the Kids’ and Use Russian or Chinese Tech Instead

Google Suspends Top Chinese Shopping App Pinduoduo

CommonMagic Targets Entities in Russo-Ukrainian Conflict Zone

The Scorched-Earth Tactics of Iran’s Cyber Army

Meta Security Manager Was Reportedly Hacked by Greek Intelligence Agency

ChatGPT Bug Temporarily Exposes AI Chat Histories to Other Users

Windows’ Screenshot Tool May Be Saving Stuff You Cropped Out, Too

Adobe Launches Firefly Generative A.I., Which Lets Users Type to Edit Images

European Ports Brace for Cybersecurity Regulation

Breached Hacking Forum Shuts Down, Fears It’s Not ‘Safe’ From FBI
Democratic Rep: At Least 17 Current and Former Members Had Personal Data Exposed in DC Health Link Breach

Clop Ransomware Claims Saks Fifth Avenue, Retailer Says Mock Data Stolen

LockBit Ransomware Gang Now Also Claims City of Oakland Breach

Expert Speaks Out After City of Allen Park (MI) Hit With Ransomware Attack

Over 2400 Fake Pages Found Targeting Job Seekers in Middle East, Africa

New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers

Coinbase Wallet ‘Red Pill’ Flaw Allowed Attacks to Evade Detection

Microsoft: Defender Update Behind Windows LSA Protection Warnings

From Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022

3/20/2023

Vessels Claiming to Be Chinese Warships Are Messing With Passenger Planes

Online Sleuths Untangle the Mystery of the Nord Stream Sabotage

ChatGPT Helped Win a Hackathon

OpenAI CEO Sam Altman Says He’s a ‘Little Bit Scared’ of A.I.

Researchers Shed Light on CatB Ransomware’s Evasion Techniques

Hackers Mostly Targeted Microsoft, Google, Apple Zero-Days in 2022

The Top Five Cybersecurity Concerns

Krebs: Why You Should Opt Out of Sharing Data With Your Mobile Provider
Ferrari Reports Cyber Incident With Ransom Demand; No Impact to Operations

Mispadu Trojan Steals 90,000+ Banking Credentials From Latin American Victims

General Bytes Bitcoin ATMs Hacked Using Zero-Day, $1.5M Stolen

Texas Medical Liability Trust Data Breach Leaked SSNs and Other Sensitive Data

KillNet Group Uses DDoS Attacks Against Azure-Based Healthcare Apps

New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads

Hackers Target .NET Developers with Malicious NuGet Packages

3/17-19/2023

Wave of Stealthy China Cyberattacks Hits U.S., Private Networks, Google Says

Huawei Has Replaced Thousands of U.S.-Banned Parts in Its Products, Founder Says

Google Pixel Exploit Reverses Edited Parts of Screenshots

Google Tells Users of Some Android Phones: Nuke Voice Calling to Avoid Infection

FCC Now Requires Cell Carriers to Block Scam Texts From Sketchy Numbers

I Got Investigated by the Secret Service: Here’s How to Not Be Me

Krebs: Feds Charge NY Man as BreachForums Boss “Pompompurin”

RAT Developer Arrested in Ukraine for Infecting 10,000 PCs With Malware

CIOs Build New Bonds With CISOs
NBA Alerts Fans of a Data Breach Exposing Personal Information

Hitachi Energy Confirms Data Breach After Clop GoAnywhere Attacks

OU Health Confirms Data for 3K Patients Could Have Been Breached After Laptop’s Theft

AllCare Plus Pharmacy (MA) Notified Patients of Data Breach Leaking SSNs and PHI

Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets

New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks

Emotet Malware Now Distributed in Microsoft OneNote Files to Evade Defenses

Microsoft Shares Script to Fix WinRE BitLocker Bypass Flaw

3/16/2023

Senator Warner Wants US Spies to Justify a TikTok Ban

UK Bans TikTok on Government Devices Following U.S. Move

U.S. FTC Asks Social Media, Video Streaming Firms Info on Misleading Ads

Snapchat’s New Parental Control Filters Aim to Protect Minors From Sensitive Content

Courts Side With Big Companies Including Amazon and Experian in Privacy Appeals

Microsoft Support ‘Cracks’ Windows for Customer After Activation Fails

Conti-Based Ransomware ‘Meowcorp’ Gets Free Decryptor

Chinese SilkLoader Malware Sold to Russian Cyber-Criminals

Winter Vivern APT Hackers Use Fake Antivirus Scans to Install Malware
Latitude Cyberattack Leads to Data Theft at Two Service Providers

Trinity Health of New England Employee Email Breach Exposed Patients’ Personal Data

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration

BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion

Convincing Twitter ‘Quote Tweet’ Phone Scam Targets Bank Customers

Fortinet Zero-Day Attacks Linked to Suspected Chinese Hackers

Adobe Acrobat Sign Abused to Push Redline Info-Stealing Malware

Google Finds 18 Baseband Zero-Day Bugs in Samsung Exynos Chipsets

Google Proposes Reducing TLS Cert Life Span to 90 Days

3/15/2023

U.S. Threatens to Ban TikTok if Chinese Founder Doesn’t Sell Ownership Stake

China Sought Control of Submarine Cables to Spy, Says Micronesia

Russian Hackers Preparing New Cyber Assault Against Ukraine – Microsoft Report

This Is the New Leader of Russia’s Infamous Sandworm Hacking Unit

A Spy Wants to Connect With You on LinkedIn

The World’s Real ‘Cybercrime’ Problem

FBI: Ransomware Hit 860 Critical Infrastructure Orgs in 2022

Authorities Take Down Darknet Cryptocurrency ‘Mixing’ Service ‘ChipMixer’

Dangers from Hacks Stretch Beyond Broken Computer Systems

AI-Generated Voice Deepfakes Aren’t Scary Good—Yet

Humans Still More Effective Than ChatGPT at Phishing

Krebs: Two U.S. Men Charged in 2022 Hacking of DEA Portal

Cancer Patient Sues Hospital After Ransomware Gang Leaks Her Nude Medical Photos

NordVPN Open Sources Its Linux VPN Client and Libraries

Mozilla Firefox Gets Built-in Firefox Relay Controls
Tick APT Group Hacked East Asian DLP Software Firm

Hacker Selling Data Allegedly Stolen in U.S. Marshals Service Hack

U.S. Federal Agency Hacked Using Old Telerik Bug to Steal Data

LockBit Ransomware Claims Essendant Attack, Company Says “Network Outage”

Latitude Financial Hacked With 328,000 Customer IDs Feared Stolen

Independent Living Systems (ILS) Warns 4.2 Million People of Data Breach

NorthStar Emergency Medical Services (AR) Data Breach Affects 82,450 Individuals

Lansing Community College Suspends Most Classes for ‘Ongoing Cybersecurity Incident’

New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining

“FakeCalls” Android Malware Targets Financial Firms in South Korea

First-Known Dero Cryptojacking Operation Seen Targeting Kubernetes

CISA Warns of Adobe ColdFusion Bug Exploited as a Zero-Day

Critical Microsoft Outlook Bug PoC Shows How Easy It Is to Exploit

Krebs: Microsoft Patch Tuesday, March 2023 Edition

3/14/2023

D.C. Health Link Hacker Exposes Lawmakers’ Personal Information

UK’s National Cyber Security Centre Reviewing TikTok Risks, Minister Says

MI5 Launches New Agency to Tackle State-Backed Attacks

YoroTrooper Espionage Campaigns Target CIS, EU Countries

DEV-1101 Updates Open Source Phishing Kit

FBI Warns of Spike in ‘Pig Butchering’ Crypto Investment Schemes

Cybercriminals Exploit Silicon Valley Bank (SVB) Collapse to Steal Money and Data

GPT-4 Unveiled: ChatGPT’s Next Big Upgrade Is Here

How Businesses Can Get Ready for AI-Powered Security Threats
Rubrik Confirms Data Theft in GoAnywhere Zero-Day Attack

Beaver Medical Group Files Notice of Data Breach Leaking Patient’s PHI

Bone & Joint (WI) “System Outage” Resulted in Data Breach Affecting Patients & Employees

Merced College (CA) Provides Notice of Data Breach to Students Following Malware Attack

Ring Won’t Say if It Was Hacked After Ransomware Gang Claims Attack

SAP Releases Security Updates Fixing Five Critical Vulnerabilities

Microsoft March 2023 Patch Tuesday Fixes 2 Zero-Days, 83 Flaws

Microsoft Fixes Outlook Zero-Day Used by Russian Hackers Since April 2022

Microsoft Fixes Windows Zero-Day Exploited in Ransomware Attacks

3/13/2023

STALKER 2 Game Developer GSC Game World Hacked by Russian Hacktivists, Data Stolen

Large-scale Cyber Attack Hijacks East Asian Websites for Adult Content Redirects

CISA Joins Forces With Women in Cybersecurity to Break up the Boy’s Club

CISA Now Warns Critical Infrastructure of Ransomware-Vulnerable Devices

Fortinet: New FortiOS Bug Used as Zero-Day to Attack Gov’t Networks

NordVPN Makes its Meshnet Private Tunnel Free for Everyone

Outlook App to Get Built-In Microsoft 365 MFA on Android, iOS

Final Three Sentenced in £70m Money Laundering Case
Zoll Medical Says Intruders Had 1M+ Patient, Staff Records at Their Fingertips

LA Housing Authority Discloses Data Breach After Ransomware Attack

Arizona Department of Economic Security Confirms Data Breach

Hackers Steal $197 Million in Crypto in Euler Finance Attack

LockBit Brags: We’ll Leak Thousands of SpaceX Blueprints Stolen From Supplier

Cyber Attack Affecting Gloucester Museum’s System One Year On

Kali Linux 2023.1 Introduces ‘Purple’ Distro for Defensive Security

Brand Names in Finance, Telecom, Tech Lead Successful Phishing Lures

3/10-12/2023

KamiKakaBot Malware Used in Latest Dark Pink APT Attacks on Southeast Asian Targets

North Korean UNC2970 Hackers Expands Operations with New Malware Families

Ransomware Attacks Have Entered a ‘Heinous’ New Phase

Investment Fraud is Now Biggest Cybercrime Earner

Fake ChatGPT Chrome Extension Hijacking Facebook Accounts for Malicious Advertising

Security Researchers Targeted With New Malware via Job Offers on LinkedIn

AI-Generated YouTube Video Tutorials Spreading Infostealer Malware

TikTok Users Shrug at China Fears: ‘It’s Hard to Care’

Cerebral Admits to Sharing Patient Data With Meta, TikTok, and Google

FBI Once Bought Mobile-Phone Data for Warrantless Tracking: Other Agencies Still Do

Brazil Seizing Flipper Zero Shipments to Prevent Use in Crime

Casper Attack Steals Data Using Air-Gapped Computer’s Internal Speaker

Microsoft OneNote to Get Enhanced Security After Recent Malware Abuse

Blackbaud to Pay $3M for Misleading Ransomware Attack Disclosure

Key Takeaways From The National Cybersecurity Strategy
Mental Health Provider Cerebral Alerts 3.1M People of Data Breach

PeopleGrove Security Lapse Exposed Users’ Personal Information

Codman Square Health Center (MA) Reports Data Breach Following Ransomware Attack

56,000 Affected by DC Health Link Data Breach

Staples-Owned Essendant Facing Multi-Day “Outage,” Orders Frozen

BATLOADER Malware Uses Google Ads to Deliver Vidar Stealer and Ursnif Payloads

Medusa Ransomware Gang Picks up Steam as It Targets Companies Worldwide

New Version of Prometei Botnet Infects Over 10,000 Systems Worldwide

Xenomorph Android Banking Trojan Returns with a New and More Powerful Variant

New GoBruteforcer Malware Targets phpMyAdmin, MySQL, FTP, Postgres

Clop Ransomware Gang Begins Extorting GoAnywhere Zero-Day Victims

Unpatched Zero-Day Bugs in Akuvox Smart Intercoms Allow Remote Eavesdropping

CISA Warns of Actively Exploited Plex Bug After LastPass Breach

CISA Warns of Critical VMware RCE Flaw Exploited in Attacks

3/9/2023

U.S. Congressman Darin LaHood Says the FBI Unlawfully Targeted Him

Fifth of Government Workers Don’t Care if Employer is Hacked

Tehran Targets Female Activists in Espionage Campaign

Rubio Takes Aim At Planned Ford U.S. Battery Plant Using Chinese Technology

Pentagon Unveils Cyber Workforce Strategy to Tackle Labor Shortage

Krebs: Who’s Behind the NetWire Remote Access Trojan?

Google Trashes the Chrome Cleanup Tool

FBI Warns of Cryptocurrency Theft via “Play-To-Earn” Games

TikTok Initiates Project Clover Amid European Data Security Concerns

Inadvertent Data Destruction After a Cyberattack Can Violate EU Privacy Rules

Scammers Are Using AI to Impersonate Your Loved Ones: Here’s What to Watch Out For
Remcos Trojan Returns to Most Wanted Malware List After Ukraine Attacks

AT&T Blames Marketing Bods for Exposing 9M Subscriber Account Records

Microsoft: Business Email Compromise Attacks Can Take Just Hours

Akamai Mitigates Record-Breaking 900Gbps DDoS Attack in Asia

IceFire Ransomware Now Encrypts Both Linux and Windows Systems

8220 Gang Behind ScrubCrypt Attack Targeting Oracle Weblogic Server

Hackers Exploiting Remote Desktop Software Flaws to Deploy PlugX Malware

Suspected Chinese Cyber Spies Target Unpatched SonicWall Devices

GitHub Makes 2FA Mandatory Next Week for Active Developers

How to Jump-Start Your Cybersecurity Career

3/8/2023

FBI Investigates Data Breach Impacting U.S. House Members and Staff

The FBI Just Admitted It Bought U.S. Location Data

The U.S. Air Force Is Moving Fast on AI-Piloted Fighter Jets

Boeing Signs off Anti-Jamming Tech That Keeps Satellites Online

China Says It’s ‘Puzzled’ After Report Germany Might Ban Huawei From Parts of 5G Mobile Network

Dutch Responds to U.S. China Policy With a Plan to Curb Semiconductor Tech Exports

Australia Demands Russia Crack Down on Cyber Criminals

DuckDuckGo Launches AI-Powered Search Query Answering Tool

Microsoft Enables LSA Protection by Default in Windows Canary Build

Eurovision 2023: Hotel Phishing Scam Targets Song Contest Fans

Krebs: Sued by Meta, Freenom Halts Domain Registrations
Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw

Commonwealth Bank of Australia’s Indonesian Arm Hit by Cyber Attack

Ransomware Gang Posts Video of Data Stolen From Minneapolis Schools

City of Waynesboro (VA) Targeted in Cyber Attack

Northeast Surgical Group (MI) Notifies 15K Patients of Data Breach

Jenkins Security Alert: New Security Flaws Could Allow Code Execution Attacks

Bitwarden Flaw Can Let Hackers Steal Passwords Using iframes

Fortinet Warns of New Critical Unauthenticated RCE Vulnerability

Veeam Fixes Bug That Lets Hackers Breach Backup Infrastructure

CISA’s KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems

3/7/2023

Cyber Command Chief: Election Interference Is Not Going Away

Watchdog Says U.S. Cyber Agency Lacks a Plan for Communicating During Major Hacks

Russia’s Cyber Tactics in Ukraine Shift to Focus on Espionage

Russian Disinformation Campaign Records High-Profile Individuals on Camera

How to Tell if Your Laptop Camera Has Been Hacked and Someone Is Spying on You

White House Backs Senate Bill to Boost U.S. Ability to Ban TikTok

Shein App Accessed Clipboard Data on Android Devices

The Daring Ruse That Exposed China’s Campaign to Steal American Secrets

How Denmark’s Welfare State Became a Surveillance Nightmare

Twitter Just Let Its Privacy- And Security-Protecting Tor Service Expire

Next-Gen Mobile Internet — 6G — Will Launch in 2030, Telecom Bosses Say, Even as 5G Adoption Remains Low

LastPass Hack: Engineer’s Failure to Update Plex Software Led to Massive Data Breach

Pro-Putin Scammers Trick Politicians and Celebrities Into Low-Tech Hoax Video Calls

The Rise of Zero-Trust Cybersecurity in a Multicloud World
Sharp Panda Target Southeast Asia in Espionage Campaign Expansion: ‘Radio Silence’ Mode to Evade Detection

Acer Confirms Breach After 160GB of Data for Sale on Hacking Forum

Brazilian Conglomerate Andrade Gutierrez Suffers 3TB Data Breach

Ransomware Attack Against Barcelona Hospital Disrupts Operations

Houston Healthcare (GA) Falls Victim to Cybersecurity Attack

Minneapolis Public Schools Says Hackers Behind Alleged Attack Posted Some Data Online

Northern Essex Community College (MA) Closed for 5th Day Due to Cyberattack

1st Franklin Financial Corporation (GA) Notifies Customers of Recent Data Breach

Transparent Tribe Hackers Distribute CapraRAT via Trojanized Messaging Apps

SYS01stealer: New Threat Using Facebook Ads to Target Critical Infrastructure Firms

Emotet Malware Attacks Return After Three-Month Break

Android March 2023 Update Fixes Two Critical Code Execution Flaws

Microsoft Excel Now Blocking Untrusted XLL Add-Ins by Default

3/6/2023

U.S. Government to Explore Cyber Insurance Backstop

New Class of Lawmakers Look To Dig In on Cybersecurity

Faced With Likelihood of Ransomware Attacks, Businesses Still Choosing to Pay Up

Where Are the Women in Cyber Security? On the Dark Side, Study Suggests

Cybersecurity Trends & Statistics For 2023: Attack Surface And Hacker Capabilities Grow

NIST’s Quantum-Proof Algorithm Has a Bug, Analysts Say

Rotterdam: This Algorithm Could Ruin Your Life

Inside the Suspicion Machine

German and Ukrainian Police Raid Alleged Cybercrime ‘DoppelPaymer’ Gang With Help From FBI
Vice Society Ransomware Group Claims Hamburg University of Applied Sciences as Latest Victim

Denver Public Schools Data Breach Includes SSNs, Bank Info

Henrico Doctors’ Hospital (VA) Notifies Patients of Data Breach

Acer Data Breach? Hacker Claims to Sell 160GB Trove of Stolen Data

Sandbox Blockchain Game Breached to Send Emails Linking to Malware

New HiatusRAT Malware Targets Business-Grade Routers to Covertly Spy on Victims

Old Windows ‘Mock Folders’ UAC Bypass Used to Drop Malware

Proof-of-Concept Released for Critical Microsoft Word RCE Bug

3/3-5/2023

EPA to Make States Evaluate Public Water Systems’ Cybersecurity

U.S. Cybersecurity Agency Raises Alarm Over Royal Ransomware’s Deadly Capabilities

Krebs: Highlights from the New U.S. Cybersecurity Strategy

BidenCash Market Leaks Over 2 Million Stolen Credit Cards for Free

TPM 2.0 Library Vulnerabilities May Affect Billions of IoT Devices

Brave Search Launches AI-Powered Summarizer in Search Results

A Privacy Hero’s Final Wish: An Institute to Redirect AI’s Future

FTC to Ban BetterHelp From Sharing Mental Health Data With Advertisers

Secret Service, ICE Break the Law Over and Over With Fake Cell Tower Spying
Play Ransomware Claims Disruptive Attack on City of Oakland

Play Ransomware Gang Leaks Data Stolen From City of Oakland

Personal Data Exposed in Cyber Attack on Modesto (CA) PD

Indigo Books Refuses LockBit Ransomware Demand

Indian Startup Yes Madam Exposed Sensitive Data of Customers and Gig Workers

Aloha Nursing Rehab Centre Reports 2022 Data Breach Affecting More Than 20k Patients

Veris Residential (NJ) Notifies Victims of Recent Data Breach

New FiXS ATM Malware Targeting Mexican Banks

Microsoft Releases Windows Security Updates for Intel CPU Flaws

How to Prevent Microsoft OneNote Files From Infecting Windows With Malware

3/2/2023

Biden Administration Unveils Long-Awaited National Cyber Strategy

Aims to Shift Cybersecurity Burden From Individuals and Small Businesses to Tech Providers

Cisco Chief Says Tech Products Must Be Made More Secure

CISA Releases Free ‘Decider’ Tool to Help with MITRE ATT&CK Mapping

Dashlane to Support New Third-Party Passkey Sync Feature in Android 14

Stop Using Your 4-Digit iPhone Passcode in Public. Do This Instead

Forget ChatGPT, the Most Overhyped Security Tool Is Technology Itself, Wiz Warns

Australian Woman Arrested for Email Bombing a Government Office
WH Smith Discloses Cyber-Attack, Company Data Theft

Chick-Fil-A Confirms Accounts Hacked in Months-Long “Automated” Attack

Hackers Steal Gun Owners’ Data From Firearm Auction Website GunAuction.com

Chinese ‘Mustang Panda’ Hackers Use New Custom Backdoor to Evade Detection

Lucky Mouse: SysUpdate Malware Strikes Again with Linux Version and New Evasion Tactics

Experts Identify ‘Colour-Blind’ Fully-Featured Info Stealer and Trojan in Python Package on PyPI

API Security Flaw Found in Booking.com Allowed Full Account Takeover

This Hacker Tool Can Pinpoint a DJI Drone Operator’s Location

3/1/2023

Russia Bans Foreign Messaging Apps in Government Organizations

Cybercriminals Targeting Law Firms with GootLoader and FakeUpdates Malware

Parallax RAT Targeting Cryptocurrency Firms with Sophisticated Injection Techniques

Budweiser Maker Simplifies How It Assesses Privacy and Cyber Risks

GitHub’s Secret Scanning Alerts Now Available for All Public Repos

Microsoft Exchange Online Outage Blocks Access to Mailboxes Worldwide

ChatGPT: What the New York Times and Others Are Getting Terribly Wrong About It

Hacked Washington Law Firm Covington & Burling Fights SEC Subpoena in Effort to Protect Attorney-Client Privilege

Why Overcoming The Cybersecurity Labor Shortage Matters To Company Success
West Virginia University Alerted of Data Breach, Involves ‘Limited’ Amount of Personal Information Available

Southeastern Louisiana University ‘Likely’ Suffered Cyber Attack

Hatch Bank Announces Third-Party Data Breach at Cybersecurity Firm, Fortra

Crystal Bay Casino Notifies 86,291 Individuals of Recent Data Breach

Trezor Warns of Massive Crypto Wallet Phishing Campaign

Iron Tiger Hackers Create Linux Version of Their Custom Malware

BlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11

Cisco Patches Critical Web UI RCE Flaw in Multiple IP Phones

Aruba Networks Fixes Six Critical Vulnerabilities in ArubaOS