5/31/2023 May 31, 2023May 31, 2023 ~ The Cyber Beat ~ Leave a comment Dark Pink APT Group Expands Tooling and TargetsMillions of PC Gigabyte Motherboards Were Sold With a Firmware BackdoorKrebs: Discord Admins Hacked by Malicious BookmarksSalesforce ‘Ghost Sites’ Expose Sensitive Corporate DataTerminator Antivirus Killer Is a Vulnerable Windows Driver in DisguiseAmazon’s Ring Agrees to Pay $5.8 Million to Settle FTC Spying SuitA.I. Poses Human Extinction Risk on Par With Nuclear War, Sam Altman and Other Tech Leaders WarnPentagon Cyber Policy Cites Learnings from Ukraine WarBipartisan Lawmakers Introduce Bill to Expand Cyber Partnership With Nations in Abraham AccordsInvestment May Be Down, but Cybersecurity Remains a Hot SectorCan Cloud Services Encourage Better Login Security? Netflix’s Accidental ModelToyota Finds More Misconfigured Servers Leaking Customer InfoCapita Hack-Related Breaches Now Reported by Nearly 90 OrgsMountain View Hospital and Idaho Falls Community Hospital Hit by Cyberattack, Closing Some ClinicsOnix Group (PA) Announces Data Breach Following Ransomware AttackStealthy SeroXen RAT Malware Increasingly Used to Target GamersCybercriminals Targeting Apache NiFi Instances for Cryptocurrency MiningHackers Exploit Critical Zyxel Firewall Flaw in Ongoing AttacksWordPress Force Installs Critical Jetpack Patch on 5 Million SitesXFS Bug in Linux Kernel 6.3.3 Coincides With SGI Code ComebackKali Linux 2023.2 Released With 13 New Tools, Pre-Built HyperV Image
5/30/2023 May 30, 2023May 30, 2023 ~ The Cyber Beat ~ Leave a comment Human Error Fuels Industrial APT Attacks, Kaspersky ReportsAlleged Russian Spy Whale ‘Hvaldimir’ Turned Up in Sweden. Why?Nigerian Cybercrime Ring’s Phishing Tactics ExposedRansomware Gangs Adopting Business-like Practices to Boost ProfitsDark Web Data Leak Exposes RaidForums MembersCAPTCHA-Breaking Services with Human Solvers Helping Cybercriminals Defeat SecurityHackers Win $105,000 for Reporting Critical Security Flaws in Sonos One Speakers19 Threats To Customers’ Personal Info Companies Shouldn’t IgnoreFBI Warns Gmail and Outlook Users Over ‘Infection Message’ That Can Break ComputersAlabama Digital Road Sign Hacked to Display White Supremacist MessagesRomCom Malware Spread via Google Ads for ChatGPT, Gimp, MoreEnzo Biochem Says Ransomware Attack Exposed Patient Info, Social Security NumbersMedInForm Announces Data Breach Affecting Cleveland Clinic Patients’ SSNsClarke County Hospital (IA) Notifies Over 28k Patients of Recent Data BreachDogeRAT Malware Impersonates BFSI, Entertainment, E-commerce AppsAndroid Apps With Spyware Installed 421 Million Times From Google PlayWordPress Plugin ‘Gravity Forms’ Vulnerable to PHP Object InjectionBarracuda Zero-Day Abused Since 2022 to Drop New Malware, Steal DataMicrosoft Finds macOS Bug That Lets Hackers Bypass Sip Root Restrictions
5/29/2023 May 30, 2023May 30, 2023 ~ The Cyber Beat ~ Leave a comment China Cyberattacked The U.S.: Corporations Are On The Front LinesAceCryptor: Cybercriminals’ Powerful Weapon, Detected in 240K+ AttacksNew Mirai Botnet Variant Campaigns are Targeting IoT DevicesTop Cyberattacks Revealed in New Threat Intelligence ReportNorth Korean Lazarus Hackers Target Windows IIS Web Servers for Initial AccessMCNA Dental Data Breach Impacts 8.9 Million People After Ransomware AttackFlash Loan Attack on Jimbos Protocol Steals Over $7.5 MillionNew GobRAT Remote Access Trojan Targeting Linux Routers in Japan
5/26-28/2023 May 29, 2023May 29, 2023 ~ The Cyber Beat ~ Leave a comment Italy’s Industry Ministry Reports ‘Heavy’ CyberattackSenegalese Government Websites Hit With Cyber AttackIsraeli Cyber Company NSO Group Has New Ownership After U.S. BlacklistPortugal Moves Closer to Banning Chinese Suppliers From 5GKrebs: Phishing Domains Tanked After Meta Sued FreenomMozilla Stops Firefox Fullscreen VPN Ads After User OutragePyPi Announces Mandatory Use of 2FA for All Software PublishersHot Pixels Attack Checks CPU Temp, Power Changes to Steal DataClever ‘File Archiver in the Browser’ Phishing Trick Uses Zip DomainsWill Apple’s Reality Pro Signal the Beginning of the Immersive Internet?Tesla Whistleblower Leaks 100GB of Data, Revealing Safety Complaints…Dutch Watchdog Looking Into Alleged Tesla Data BreachEmby Shuts Down User Media Servers Hacked in Recent AttackU.S. Gov’t Contractor ABB Confirms Ransomware Attack, Data TheftBlackByte Ransomware Claims City of Augusta (GA) CyberattackAlbany ENT & Allergy Services (NY) Notified Patients of SSN Data BreachQBot Malware Abuses Windows WordPad Exe to Infect DevicesNew Stealthy Bandit Stealer Targeting Web Browsers and Cryptocurrency WalletsSevere Flaw in Google Cloud’s Cloud SQL Service Exposed Confidential DataCISA Warns Gov’t Agencies of Recently Patched Barracuda Zero-Day
5/25/2023 May 25, 2023May 29, 2023 ~ The Cyber Beat ~ Leave a comment Chinese State-Sponsored Hackers ‘Volt Typhoon’ Infiltrated U.S. Naval Infrastructure, Secretary of the Navy Says…U.S. State Department Warns China Could Hack Infrastructure, Including Pipelines, Rail SystemsChina Hits Back After Microsoft Says State-Sponsored Group Hacked Critical Us InfrastructureReuters: Kenyan Official Dismisses Reuters Report on Chinese Hack as ‘Propaganda’Spotted: Suspected Russian Malware ‘CosmicEnergy’ Designed to Disrupt Euro, Asia Energy GridsBrazilian Hackers ‘Operation Magalenha’ Targeting Users of Over 30 Portuguese BanksThe Security Hole at the Heart of ChatGPT and BingCybersecurity Chiefs Navigate AI Risks and Potential RewardsAdvanced Phishing Attacks Surge 356% in 2022Microsoft 365 Phishing Attacks Use Encrypted RPMSG MessagesA Popular Password Hashing Algorithm Starts Its Long GoodbyeBuilding an Effective Cybersecurity Training ProgramFour Ways To Improve Cybersecurity For Your BusinessCISO Criminalization, Vague Cyber Disclosure Rules Create Angst for Security TeamsNetflix’s Password-Sharing Ban Offers Security & Account Safety UpsidesRussian Electronics Giant Pult.ru Hit by Data LeakFresh Del Monte Produce Notifies Employees of Recent Data BreachPopulus Financial Group, Inc. Files Notice of Data Breach Affecting 51,858 IndividualsFreedom Mortgage (FL) Notifies Consumers That a Data Breach Compromised Their Social Security NumbersCredit Union of Southern California Data Breach Following Compromised Employee Email AccountScandinavian Airlines Hit By Cyber Attack As Hackers Demand $175,000Augusta (GA) City Services Suffer as Cyber-Attack Keeps Computers OffDark Frost Botnet Launches Devastating DDoS Attacks on Gaming IndustryBuhti Ransomware Gang Switches Tactics, Utilizes Leaked LockBit and Babuk CodePredator: Looking under the hood of Intellexa’s Android spywareExpo Framework API Flaw Reveals User Data in Online ServicesHackers Target 1.5M WordPress Sites With Cookie Consent Plugin ExploitZyxel Issues Critical Security Patches for Firewall and VPN ProductsD-Link Fixes Auth Bypass and RCE Flaws in D-View 8 Software
5/24/2023 May 24, 2023May 24, 2023 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Attacked Kenyan Government as Debt Strains GrewChinese Hackers ‘Volt Typhoon’ Breach U.S. Critical Infrastructure in Stealthy AttacksLazarus Group Targeting Microsoft Web Servers to Launch Espionage MalwareIranian Hackers ‘Agrius’ Use New Moneybird Ransomware to Attack Israeli OrgsCyber Attacks Strike Ukraine’s State Bodies in Espionage Operation50% of UK CEOs See Cyber as a Bigger Business Risk than the EconomyPalo Alto Networks CEO Nikesh Arora Calls Generative A.I. a Boon for Customer Satisfaction and Company Efficiency…A.I. Poses Existential Risk of People Being ‘Harmed or Killed,’ Ex-google CEO Eric Schmidt SaysPhilly Inquirer Says Cuba Ransomware Gang’s Data Leak Claims Are Fake NewsReliance’s Zivame Customers Say Their Accounts Were HackedHarvard Pilgrim Says Patient Information May Have Been Stolen During Cyber AttackPeachtree Orthopedics (GA) Data Breach Potentially Compromised Patients’ Social Security NumbersData Stealing Malware Discovered in Popular Android Screen Recorder AppLegion Malware Upgraded to Target SSH Servers and AWS CredentialsNew PowerExchange Malware Backdoors Microsoft Exchange ServersBarracuda Warns of Email Gateways Breached via Zero-Day FlawGitLab ‘Strongly Recommends’ Patching Max Severity Flaw ASAPWhy Aren’t Venture Capitalists Flocking to Fund Cybersecurity Startups?
5/23/2023 May 23, 2023May 23, 2023 ~ The Cyber Beat ~ Leave a comment Biden Nominates Air Force Lieutenant General Timothy Haugh to Lead NSA, Cyber CommandTreasury Sanctions Cyber Actors Tied to North KoreaNorth Korean Kimsuky Hackers Strike Again with Advanced Reconnaissance MalwareTikTok to Let Oracle View Source Code, Algorithm, and Content ModerationChinese Labs Are Selling Fentanyl Ingredients for Millions in CryptoAds for Lucrative Jobs in Asia Fail to Mention Chance of Slavery as Crypto-ScammerKrebs: Interview With a Crypto Scam Investment SpammerIT Employee Impersonates Ransomware Gang to Extort EmployerPalo Alto Lifts Annual Forecasts on Resilient Cybersecurity SpendingWhere to Focus Your Company’s Limited Cybersecurity BudgetIgnoring Cybersecurity Is Intellectually DishonestGoldenJackal Targets Diplomatic Entities in Middle East, South AsiaNew WinTapix.sys Malware Engages in Multi-Stage Attack Across Middle EastCuba Ransomware Claims Cyberattack on Philadelphia InquirerSallie Mae Notified Individuals of Recent Data Breach Involving Bank Account InformationApria Healthcare Breach Affects Up to 1.8 Million IndividualsDorchester School (UK) IT System Held to Ransom in Cyber AttackSuzuki Motorcycle India Temporarily Shuts Production Following a Cyber AttackFata Morgana Watering Hole Attack Targets Shipping, Logistics FirmsSuperMailer Abuse Bypasses Email Security for Super-Sized Credential TheftNew AhRat Android Malware Hidden in App With 50,000 Installs
5/22/2023 May 23, 2023May 23, 2023 ~ The Cyber Beat ~ Leave a comment Lawmakers, Experts Fear Key Cyber Vacancy Leaves U.S. Vulnerable to AttacksTikTok Sues to Stop Montana From Enforcing Its “Unconstitutional” BanChina Issues Ban on U.S. Chipmaker ProductsSecurity Chiefs Trim the Fat as Budgets BiteCybersecurity Firms’ Earnings Set to Benefit From Growing Threat of HacksHow Con Artists Use AI, Apps, Social Engineering to Target Parents, Grandparents for TheftPentagon Explosion Hoax Goes Viral After Verified Twitter Accounts PushBuyer Beware: Some Sandisk Extreme SSDs Are Wiping People’s DataLeaked EU Document Shows Spain Wants to Ban End-to-End EncryptionMeta Fined a Record $1.3 Billion Over EU User Data Transfers to the U.S.Google Settles Location Tracking Lawsuit for Only $39.9MUK Fraudster Behind iSpoof Scam Receives 13-Year Jail Term for Cyber CrimesBad Magic’s Extended Reign in Cyber Espionage Goes Back Over a DecadeIndonesian Cybercriminals Exploit AWS for Profitable Crypto Mining OperationsDish Says Ransomware Gang Stole Almost 300,000 Employee RecordsGerman Arms Company Rheinmetall Confirms Black Basta Ransomware Group Behind CyberattackConstellation Software Inc. Experiences Data Breach Following CyberattackGentex Corporation Confirms Ransomware Attack, Raising Questions Over Possible Data BreachCrypto Phishing Service Inferno Drainer Defrauds Thousands of VictimsMalicious Windows Kernel Drivers Used in BlackCat Ransomware AttacksCISA Orders Gov’t Agencies to Patch iPhone Bugs Exploited in AttacksGoogle Launches Bug Bounty Program for Its Android ApplicationsIBM’s Polar Buy Creates Focus on a New ‘Shadow Data’ Cloud Security Area
5/19-21/2023 May 22, 2023May 22, 2023 ~ The Cyber Beat ~ Leave a comment 13-Year-Old Makes History With Computer Science and Cybersecurity DegreesThe Real Risks in Google’s New .Zip and .Mov DomainsExperts Warn of Voice Cloning-as-a-ServiceMicrosoft Warns of Increase in Business Email Compromise AttacksCloned CapCut Websites Push Information Stealing MalwareAndroid Phones Are Vulnerable to Fingerprint Brute-Force AttacksThe Underground History of Russia’s Most Ingenious Hacker Group ‘Turla’How Montana Could Enforce a TikTok BanA TikTok ‘Car Theft’ Challenge Is Costing Hyundai $200 MillionMeet ‘Jack’ from Romania! Mastermind Behind Golden Chickens MalwareRussian IT Guy Sent to Labor Camp for DDoSing Kremlin WebsitesAmericans to Get One-Time $5,000 Max Payment From Maxim Healthcare Breach SettlementPyPI Repository Under Attack: User Sign-Ups and Package Uploads Temporarily HaltedAsus Routers Knocked Offline Worldwide by Bad Security UpdateFlorida Baptist Convention Loses Over $700K in Cyber Attack, Investigation UnderwayThreat of Confidential Data Release in Dallas Ransomware AttackDish Network Likely Paid Ransom After Recent Ransomware AttackLuxottica Confirms 2021 Data Breach After Info of 70M Leaks OnlineNotorious Cyber Gang FIN7 Returns With Cl0p Ransomware in New Wave of AttacksCommonMagic Malware Implants Linked to New CloudWizard FrameworkDeveloper Alert: NPM Packages for Node.js Hiding Dangerous TurkoRat MalwareCISA Warns of Samsung ASLR Bypass Flaw Exploited in AttacksData Siloes: Overcoming the Greatest Challenge in SecOps
5/18/2023 May 19, 2023May 19, 2023 ~ The Cyber Beat ~ Leave a comment IRS Deploys Cyber Attachés to Fight Cybercrime AbroadCyber Warfare Escalates Amid China-Taiwan TensionsMontana Becomes the First State to Ban TikTokApple’s App Store Blocks $2B in Fraudulent TransactionsGoogle May Delete Your Old Accounts: Here’s How to Stop ItMost Companies Can’t Handle Cybersecurity AloneRadiology Group Sues Broker Over Lapsed Cyber Insurance PolicyDarknet Carding Kingpin Pleads Guilty: Sold Financial Info of Tens of ThousandsWisconsin Teen Bragged ‘Fraud Is Fun’ Before Allegedly Hacking Sports Betting Site, Stealing $600KLayerZero Launches Record-Breaking $15M Crypto Bug Bounty ProgramCybercrime Syndicate ‘Lemon Group’ Pre-Infected Over 8.9 Million Android Phones WorldwideSeveral Louisiana Agencies Crippled by Network OutageUHS of Delaware Files Notice of Third-Party Data BreachNorthwest Health-La Porte (IN) Reports Data Breach After Unauthorized Access to Patient RecordsGreat Expressions Dental Centers (MI) Notify Patients of Data Breach Following Cyberattack8220 Gang Exploiting Oracle WebLogic Flaw to Hijack Servers and Mine CryptocurrencyHackers Target Vulnerable WordPress Elementor Plugin After PoC ReleasedKeePass Exploit Helps Retrieve Cleartext Master Password, Fix Coming SoonApple Fixes Three New Zero-Days Exploited to Hack iPhones, Macs
5/17/2023 May 17, 2023May 17, 2023 ~ The Cyber Beat ~ Leave a comment Russian Computer Breached DC Metro SystemCongressional Employees Exposed in Transit Benefit Program BreachTemu Accused of Data Risks After Sister App Was Suspended for MalwareNSO Group Spends Millions Lobbying U.S. GovernmentThe Post Office Is Spying on the Mail: Senators Want to Stop ItChatGPT Scams Are Infiltrating the App Store and Google PlaySocial Engineering Risks Found in Microsoft TeamsDo Hypothetical Risk Disclosures Give Rise to Securities Claims?Cybersecurity Leaders Suffer Burnout as Pressures of the Job IntensifyTalking Security Strategy: Cybersecurity Has a Seat at the Boardroom TableMicrosoft Pulls Defender Update Fixing Windows LSA Protection BugThese Ransomware Victims Are Paying More to Recover DataOilAlpha: Emerging Houthi-linked Cyber Threat Targets Arabian Android UsersScanSource Says Ransomware Attack Behind Multi-Day OutagesLehigh Valley (PA) Notifies 627 Patients Affected by February Ransomware AttackFertility Specialists Medical Group (CA) Experiences Data BreachRansomware Group Adds Academy Mortgage (UT) to Victim ListThe Heritage Group (IN) Notifies Current and Former Employees of Data BreachFranklin County Public Schools (VA) Ransomware Attack Under InvestigationOklahoma Institute of Allergy, Asthma and Immunology Clinic in Edmond Offline after Cyber EventThreat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover‘Strictly Limit’ Remote Desktop – Unless You Like Catching BianLian RansomwareMalasLocker Ransomware Targets Zimbra Servers, Demands Charity DonationMalicious Microsoft VSCode Extensions Steal Passwords, Open Remote ShellsCisco Warns of Critical Switch Bugs With Public Exploit Code
5/16/2023 May 16, 2023May 16, 2023 ~ The Cyber Beat ~ Leave a comment China’s Mustang Panda Hackers Exploit TP-Link Routers for Persistent AttacksCamaro Dragon APT Group Exploits TP-Link Routers With Custom Implant1Password Is Finally Rolling Out Passkey ManagementResearchers Find Security Flaw in Wemo Smart Plug, Belkin Says It Won’t Release a Patch for DeviceNew Zip Domains Sparks Debate Among Cybersecurity ExpertsThe Digital World Is Changing Rapidly: Your Cybersecurity Needs to Keep UpKrebs: Russian Hacker Mikhail Pavolovich Matveev “Wazawaka” Indicted for RansomwareKrebs: Re-Victimization from Police-Auctioned Cell PhonesCops Crack Gang That Used Bots to Book and Resell Immigration AppointmentsLacroix Shuts Three Factories for a Week After Cyber-AttackIndonesia’s Bank Syariah Indonesia Customer Data Safe Amid Reports of BreachConner Strong & Buckelew Recent Data Breach Compromised Employee Email Accounts4,000 VCU Health Patients Were Impacted by Breach…Data Breach at Vendor Credit Control Corporation Impacts Virginia Hospitals and Medical PracticesAsian Health Services (CA) Provides Notice of Recent Data Breach to PatientsCopperStealer Malware Crew Resurfaces with New Rootkit and Phishing Kit ModulesHackers Using Golang Variant of Cobalt Strike to Target Apple macOS SystemsKiddowares ‘Parental Control – Kids Place’ App With 5 Million Downloads Vulnerable to Attacks
5/15/2023 May 16, 2023May 16, 2023 ~ The Cyber Beat ~ Leave a comment Lancefly APT Custom Backdoor ‘Merdoor’ Targets Government and Aviation SectorsNew Ransomware Gang RA Group Hits U.S. and South Korean OrganizationsQilin’s Dark Web Ransomware Targets Critical SectorsThe New Info-Stealing Malware Operations to Watch Out ForHow I Tricked ChatGPT Into Telling Me LiesVirusTotal AI Code Analysis Expands Windows, Linux Script SupportNew Twitter CEO Linda Yaccarino Says She Is Excited to Help to Transform the CompanyEx-Twitter Cyber Chief Lea Kissner Joins Cloud-Security Company LaceworkU.S. Says VoIP Firm XCast Labs Delivered Billions of Scam RobocallsWhatsApp Now Lets You Lock Chats With a Password or FingerprintCybercriminals Who Targeted Ukraine Are Actually Russian Government Hackers, Researchers SayData of 237,000 U.S. Government Employees Breached at Department of TransportationThe Philadelphia Inquirer: The Philadelphia Inquirer’s Operations Continue to Be Disrupted by a Cyber IncidentRansomware Gang Steals Data of 5.8 Million PharMerica PatientsairBaltic Exposes Passenger Info to Others Due to a ‘Technical Error’Whitworth University (WA) Notifies 65,593 Students of Data Breach Involving Their SSNsRenewal by Andersen Notifies 13,464 About Recent Data Breach Involving Consumer SSNsMethodist Family Health Notifying Some Arkansans About a Ransomware AttackNew ‘MichaelKors’ Ransomware-as-a-Service Targeting Linux and VMware ESXi SystemsIntel Says Friday’s Mystery ‘Security Update’ Microcode Isn’t Really a Security Update
5/12-14/2023 May 15, 2023May 15, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Trains Ukrainian Law Enforcement to Pursue Russian Crypto AssetsLawmakers Call on Biden to Nominate New National Cyber DirectorFBI: Bl00dy Ransomware Targets Education Orgs in Papercut AttacksCISA Warns of Critical Ruckus Bug Used to Infect Wi-Fi Access PointsNew Phishing-as-a-Service Platform ‘Greatness’ Lets Cybercriminals Generate Convincing Phishing PagesDebunking Three Myths About RansomwareCard ‘ID Theft’ Fraud Doubled in 2022Hacker Marketplace ‘Genesis Market’ Still Active Despite Police ‘Takedown’ Claim‘Top Three Balkans Drug Kingpins’ Arrested After Cops Crack Their Sky ECC ChatsBrave Unveils New “Forgetful Browsing” Anti-tracking FeatureChatGPT Is About to Revolutionize CybersecurityHow Cybercriminals Adapted to Microsoft Blocking Macros by DefaultMicrosoft Patches Bypass for Recently Fixed Outlook Zero-Click BugToyota Leaked Vehicle Data of 2 Million Customers For 10 YearsDiscord Discloses Data Breach After Support Agent Got HackedMore Than 45,000 Met Opera Customers Exposed in Data BreachCapita Warns Customers They Should Assume Data Was StolenCurry County (OR) Systems Still Down Several Weeks After Ransomware AttackLake County Health Department (IL) Security Breach Exposed Residents’ Health Data, Personal Information‘Suspicious Communication’ Leads Norton Healthcare (KY) To Shut Down NetworkGaston College (NC) Looks into Possible Data Breach Following Recent Ransomware AttackXWorm Malware Exploits Follina Vulnerability in New Wave of AttacksNew Stealthy Variant of Linux Backdoor BPFDoor Emerges from the ShadowsHackers Use Public Exploit to Attack Vulnerable WordPress SitesNetgear Routers’ Flaws Expose Users to Malware, Remote Attacks, and Surveillance
5/11/2023 May 11, 2023May 11, 2023 ~ The Cyber Beat ~ Leave a comment How Congress Is Tackling Disinformation From U.S. AdversariesNSA Chief Paul Nakasone Has Said He Expects to Step Down in Coming MonthsEU Draft Legislation Will Ban AI for Mass Biometric Surveillance and Predictive PolicingCybersecurity Faces a Challenge From Artificial Intelligence’s RiseMillions of Mobile Phones Come Pre-infected With Malware, Say ResearchersTwitter to Launch Encrypted Direct Messages With Voice and Video Chat to Follow, Elon Musk Says…Elon Musk Also Says He Has a New C.E.O. for TwitterEx-Ubiquiti Engineer Behind “Breathtaking” Data Theft Gets 6-Year Prison TermBreach of Mental-Health Records Challenges Nation’s Court SystemNew APT Group Red Stinger Targets Military and Critical Infrastructure in Eastern EuropeMultinational Tech Firm ABB Hit by Black Basta Ransomware AttackTokyo MOU Reports Previously-Undisclosed Cyberattack From 2022Seacom (South Africa) Hit by Cyber AttackChattanooga State Community College (TN) and Mercer University (GA) Respond to CyberattacksBrightly Warns of SchoolDude Data Breach Exposing CredentialsThreat Actors Use Babuk Code to Build Hypervisor RansomwareWordPress Elementor Plugin Bug Let Attackers Hijack Accounts on 1M SitesThe Effects Of Cybercrime On Small Businesses
5/10/2023 May 10, 2023May 10, 2023 ~ The Cyber Beat ~ Leave a comment A Mysterious New Hacker Group Is Lurking in Ukraine’s CyberspaceSophisticated DownEx Malware Campaign Targeting Central Asian GovernmentsNorth Korean Hackers Breached Major Hospital in Seoul to Steal DataYoung Cyber Companies Face Uncertain Economy3 Key Metrics for Cybersecurity Product ManagersThe Industrywide Consequences of Making Security Products InaccessibleNew ‘Greatness’ service simplifies Microsoft 365 phishing attacksWhy Honeytokens Are the Future of Intrusion DetectionNew Ransomware Decryptor Recovers Data From Partially Encrypted FilesGmail Can Now Scan the Dark Web for Your Email AddressUK Man ‘PlugwalkJoe’ Pleads Guilty to Twitter Hack That Compromised Accounts of Joe Biden, Elon MuskCybersecurity Firm Dragos Discloses Cybersecurity Incident, Extortion AttemptAustralia’s TechnologyOne Halts Trading After Being Hit by Cyber AttackMiddleburg (VA) Weathers Cyber AttackBristol Community College (MA) Informs 56,400 Faculty and Students of Recent Data BreachASAS Health (TX) Notifies More Than 25K People of Recent Data BreachTriad Business Bank (NC) Data Breach Compromises 8,000 Social Security NumbersHuron-Superior Catholic District School (ON) Hit by Cyber Attack Discovers Additional Info StolenFake In-Browser Windows Updates Push Aurora Info-Stealer MalwareRapperBot DDoS Malware Adds Cryptojacking as New Revenue StreamExperts Detail New Zero-Click Windows Vulnerability for NTLM Credential TheftKrebs: Microsoft Patch Tuesday, May 2023 Edition
5/9/2023 May 9, 2023May 9, 2023 ~ The Cyber Beat ~ Leave a comment FBI Takes Down Russian ‘Snake’ Computer Malware Network That Attacked NATO Nations, JournalistsBeijing Raids Consultancy, State-Sponsored Media Warns More to ComeThe Team of Sleuths Quietly Hunting Cyberattack-for-Hire ServicesThe Billion-Dollar Ponzi Scheme That Hooked Warren Buffett and the U.S. TreasuryEU Draft Rules Propose Tougher Cybersecurity Labelling Rules for Amazon, Google, MicrosoftGithub Now Auto-Blocks Token and API Key Leaks for All ReposCybersecurity Needs to Be Part of Your Product’s Design from the StartThe Problem of Old Vulnerabilities And What to Do About ItSpanish Police Dismantle Phishing Operation Linked to Crime RingKrebs: Feds Take Down 13 More DDoS-for-Hire ServicesFood Distribution Giant Sysco Warns of Data Breach After CyberattackPRGX Global (GA) Notifies 13,231 Individuals of Recent Data BreachPetaluma Health Center (CA) Files Official Notice of Data Breach Following Recent Cyber-IncidentRoyal Ransomware Expands to Target Linux, VMware ESXiOperation ChattyGoblin: Hackers Targeting Gambling Firms via Chat AppsResearchers Uncover SideWinder’s Latest Server-Based Polymorphism TechniqueNew ‘AndoryaBot’ Botnet Campaign Exploits Ruckus Wireless FlawNew Linux Kernel NetFilter Flaw Gives Attackers Root PrivilegesMicrosoft May 2023 Patch Tuesday Fixes 3 Zero-Days, 38 FlawsMicrosoft Issues Optional Fix for Secure Boot Zero-Day Used by Malware
5/8/2023 May 9, 2023May 9, 2023 ~ The Cyber Beat ~ Leave a comment SideCopy Using Action RAT and AllaKore RAT to Infiltrate Indian OrganizationsQR Codes Used in Fake Parking Tickets, Surveys to Steal Your MoneyTwitter to Remove Idle Accounts, Archive ThemPalantir Soars on Earnings Beat and Prediction of Full-Year ProfitabilityI Asked ChatGPT, Bing, and Bard What Worries Them. Google’s AI Went Terminator on MeFBI Seizes 13 More Domains Linked to DDoS-For-Hire ServicesMicrosoft: Iranian Hacking Groups Join Papercut Attack SpreeMSI Data Breach: Private Code Signing Keys Leaked on the Dark Web1 Million NextGen Patient Records Compromised in Data BreachCatholic Health Third-Party Data Breach at Minimum Data Set Consultants Leaked Patient DataMicrosoft Enforces Number Matching to Fight MFA Fatigue AttacksWhy the ‘Why’ of a Data Breach Matters
5/5-7/2023 May 8, 2023May 8, 2023 ~ The Cyber Beat ~ Leave a comment 2 Years After Colonial Pipeline, U.S. Critical Infrastructure Still Not Ready for RansomwareIn a New Hacking Crime Wave, Much More Personal Data Is Being Held HostageTwitter Says ‘Security Incident’ Exposed Private Circle TweetsRussian ‘Ghost Ships’ Identified Near the Nord Stream BlastsKrebs: $10M Is Yours If You Can Get This Guy to Leave RussiaNew Cactus Ransomware Encrypts Itself to Evade AntivirusMeet Akira — A New Ransomware Operation Targeting the EnterpriseSiemens, SAP Say EU Draft Data Act Puts Trade Secrets at RiskProsecution of Former Uber Security Chief Carries Warnings for Cyber LeadersNew CS:GO Map Bypasses Russia’s Censorship of Ukraine War NewsWestern Digital Says Hackers Stole Customer Data in March CyberattackALPHV Gang Claims Ransomware Attack on Constellation SoftwareMore Swiss Media Groups Affected by Ransomware AttackVeridian Credit Union (IA) Files Notice of Data Breach Affecting 12,996 IndividualsMcPherson Hospital (KS) Notifies Over 19k Patients of Recent Data BreachNew Android Malware ‘FluHorse’ Targeting East Asian Markets with Deceptive TacticsHackers Targeting Italian Corporate Banking Clients with New Web-Inject Toolkit DrIBAN“Kekw” Malware in Python Packages Could Steal Data and Hijack CryptoNew Vulnerability in Popular WordPress Plugin Exposes Over 2 Million Sites to CyberattacksNew Android Updates Fix Kernel Bug Exploited in Spyware Attacks
5/4/2023 May 4, 2023May 4, 2023 ~ The Cyber Beat ~ Leave a comment North Korean Kimsuky Hackers Use New Recon Tool to Find Security GapsTherapy Apps Are Still Failing Their Privacy CheckupsConsumer Group Slams Bank App Fraud FailingsGoogle Launches Cybersecurity Certificates for Entry-Level WorkersFormer Uber Security Chief to Be Sentenced for Federal CrimesThe Legacy of Mt. Gox: Why Bitcoin’s Greatest Hack Still MattersMillions of Patients’ Data Confirmed Stolen After Fortra Mass-HackThe Devastating Business Impacts of a Cyber BreachResearchers Discover 3 Vulnerabilities in Microsoft Azure API Management ServiceRansomware Gang Hijacks Bluefield University’s Alert System to Issue ThreatsData Breach Concerns Arise Amid Montana State University CyberattackHackers Threatening to Release Stolen Data From Crown Princess Mary Cancer Centre in Westmead HospitalBerlin Packaging Files Notice of Data Breach Involving “Human Resources Information”Carvin Software Data Breach Affects 187,360 ConsumersCyber Attack Shuts Down Raleigh (NC) Housing Authority Computer SystemNew Fleckpe Android Malware Installed 600K Times on Google PlayResearchers Uncover New Exploit for PaperCut Vulnerability That Can Bypass DetectionCisco Phone Adapters Vulnerable to RCE Attacks, No Fix Available
5/3/2023 May 3, 2023May 3, 2023 ~ The Cyber Beat ~ Leave a comment Russian Hackers Use Winrar to Wipe Ukraine State Agency’s DataChinese Earth Longzhi Uses “Stack Rumbling” to Disable Security SoftwareCISA Advises FCC Covered List For Risk ManagementMeta Security Analysts Warn of Malicious ChatGPT ImpostersFTC Proposes Ban on Meta Profiting From Minors’ DataDashlane’s Password Manager Goes Zero PasswordGoogle Is Rolling Out Password-Killing Tech to All AccountsGoogle Is Changing Chrome’s Lock Icon Because Nobody Knows What It Means For YouNow Gmail Has Blue Verified Checkmark Icons TooApple and Google Unveil Industry Specification For Unwanted TrackingMeta Expunges Multiple APT, Cybercrime Groups From Facebook, InstagramFacebook Disrupts New NodeStealer Information-Stealing MalwarePolice Dismantles Try2Check Credit Card Verifier Used by Dark Web MarketsSweden Parliament Hit by Denial-Of-Service Cyber AttackCity of Dallas Hit by Royal Ransomware Attack Impacting IT ServicesItalian Water Supplier Serving 500,000 People Hit With Ransomware AttackSwiss CH Media Group Data Published on Dark WebVendor for Aetna Insurance, NationsBenefits Announces Data BreachPayment Software Giant AvidXchange Suffers Its Second Ransomware Attack of 2023Brightline Data Breach Impacts 783K Pediatric Mental Health PatientsRussian Ransomware Gang Clop Suspected in Santa Clara Family Health Plan (CA) AttackKrebs: Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer DataResearcher Hijacks Popular Packagist PHP Packages to Get a JobHackers Start Using Double DLL Sideloading to Evade DetectionHotels at Risk From Bug in Oracle Property Management Software
5/2/2023 May 2, 2023June 1, 2023 ~ The Cyber Beat ~ Leave a comment China Updates Military Conscription Rules With Eye on Space, CyberwarfareNorth Korean APT37 Lures Used to Deploy ROKRAT MalwareBouldSpy Android Spyware: Iranian Government’s Alleged Tool for Spying on Minority GroupsGoogle, Microsoft CEOs Called to AI Meeting at White HouseSamsung Bans Use of AI Like ChatGPT for Employees After Misuse of the ChatbotSolarWinds: The Untold Story of the Boldest Supply-Chain Hack EverMerck’s Insurers On the Hook in $1.4 Billion NotPetya Attack, Court SaysOperation SpecTor: International Police Just Made a Huge Dark Web BustFBI Seizes 9 Crypto Exchanges Used to Launder Ransomware PaymentsCybercrime Groups Find a New Target: Religious InstitutionsBoards Are Having the Wrong Conversations About CybersecurityAustralian Law Firm HWL Ebsworth Hit by Russian-Linked Ransomware AttackLevel Finance Crypto Exchange Hacked After Two Security AuditsAn Anti-Trans Doctor Group Leaked 10,000 Confidential FilesUK Gun Owners May Be Targeted After Rifle Association BreachCharter Foods Notifies 109,194 Individuals of Recent Data BreachHealthPlan Services Files Notice of Data Breach Impacting ThousandsHackers Exploit 5-Year-Old Unpatched Flaw in TBK DVR DevicesResearchers Uncover New BGP Flaws in Popular Internet Routing Protocol SoftwareGoogle Will Remove Secure Website Indicators in Chrome 1171Password Explains Scary Secret Key and Password Change Alerts
5/1/2023 May 2, 2023May 2, 2023 ~ The Cyber Beat ~ Leave a comment Rising Tensions Over Taiwan Prompts U.S. to Take Proactive Approach in CyberspaceThe High-Stakes Scramble to Stop Classified LeaksU.S. Marshals Computer Network Down 10 Weeks After Ransomware HackFBI Focuses on Cybersecurity With $90M Budget RequestCapita: Watchdog Warns Pension Funds Over Data After HackApple’s First iPhone Rapid Security Response Patch Had a Problem, but It’s Fine NowCybersecurity Implications Of Juice Jacking For Businesses…Those Scary Warnings of Juice Jacking in Airports and Hotels? They’re Mostly NonsenseWhite House to Study Employer Tools That Monitor WorkersCorporate ChatGPT Applications Grow Despite Legal ScrutinyT-Mobile Discloses Second Data Breach Since the Start of 2023IT Giant Bitmarck Shuts Down Customer, Internal Systems After CyberattackHackers Leak Images to Taunt Western Digital’s Cyberattack ResponseHacker Targets Wichita State UniversityNashua Schools (NH) Open Monday Despite CyberattackNextgen Healthcare Data Breach Affects Thousands of Individuals’ Social Security NumbersAlvaria Files Data Breach Notice on Behalf of Carrington Mortgage Services (MA)New Decoy Dog Malware Toolkit Uncovered: Targeting Enterprise NetworksNew LOBSHOT Malware Gives Hackers Hidden VNC Access to Windows DevicesWhat the Cybersecurity Industry Can Learn From the SVB Crisis