12/1-3/2023 December 3, 2023December 3, 2023 ~ The Cyber Beat ~ Leave a comment Meta Will Enforce Ban on AI-Powered Political Ads in Every Nation, No ExceptionsFrench Government Recommends Against Using Foreign Chat AppsNCSC Urges UK Water Companies to Secure Control SystemsU.S. Health Dept Urges Hospitals to Patch Critical Citrix Bleed BugChinese Hackers Using SugarGh0st RAT to Target South Korea and UzbekistanAgent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.How to Not Get Hacked by a QR CodeRussian Hacker Vladimir Dunaev Convicted for Creating TrickBot MalwareGoogle Chrome’s New Cache Change Could Boost PerformanceScores of U.S. Credit Unions Offline After Ransomware Infects Backend Cloud Outfit23andMe Says Hackers Accessed ‘Significant Number’ of Files About Users’ AncestryBlue Shield of California Members’ Data Stolen — ‘A Gold Mine for Thieves’New Proxy Malware Targets Mac Users Through Pirated SoftwareUEFI Flaws Allow Bootkits to Pwn Potentially Hundreds of Devices Using ImagesOver 20,000 Vulnerable Microsoft Exchange Servers Exposed to AttacksLinux Version of Qilin Ransomware Focuses on VMware ESXiVMware Fixes Critical Cloud Director Auth Bypass Unpatched for 2 Weeks
11/30/2023 November 30, 2023November 30, 2023 ~ The Cyber Beat ~ Leave a comment NATO Holds Cyber Defense Exercise as Wartime Hacking Threats RiseU.S., Partners Target North Korea (and Kimsuky) With Sanctions Following Satellite Launch…North Korean Hackers Amass $3bn in Cryptocurrency HeistsBad Password May Have Led to Pennsylvania Water System HackGoogle Unveils RETVec – Gmail’s New Defense Against Spam and Malicious EmailsWhatsApp’s New Secret Code feature Hides Your Locked Chats8 Tips on Leveraging AI Tools Without Compromising SecurityFewer Cybersecurity Professionals Losing Their Jobs in Breach ‘Blame’ GameLaw Firms & Legal Departments Singled Out for CyberattacksCapital Health Hospitals Hit by Cyberattack Causing IT OutagesStaples Confirms Cyberattack Behind Service Outages, Delivery IssuesBooking.com Hackers Increase Attacks on CustomersForward Bank (WI) Notifies 46,019 Customers of Recent Data BreachFjordPhantom Android Malware Targets Banks With VirtualizationCACTUS Ransomware Exploits Cloud Analytics Qlik Sense Vulnerabilities in Targeted AttacksRedLine Stealer Malware Deployed Via ScrubCrypt Evasion ToolZyxel Warns of Multiple Critical Vulnerabilities in NAS DevicesGoogle Fixes a Seventh Zero-Day Flaw in Chrome—Update NowApple Fixes Two New iOS Zero-Days in Emergency Updates
11/29/2023 November 30, 2023November 30, 2023 ~ The Cyber Beat ~ Leave a comment Hackers Breach U.S. Water Facility via Exposed Unitronics PLCs…Cybersecurity Agency Warns That Water Utilities Are Vulnerable to Hackers After Pennsylvania AttackU.S. Dept of Treasury Seizes Sinbad Cryptocurrency Mixer Used by North Korean Lazarus HackersGoogle Researchers’ Attack Prompts ChatGPT to Reveal Its Training DataHow to Find Your Forgotten Gmail AccountsKeeping Children Safe in a Rapidly Changing Digital LandscapeSIM Swapper Gets 8 Years in Prison for Account Hacks, Crypto TheftHow a Teenage Saudi Hacker Went From Lockpicking to RansomwareKrebs: Okta Breach Affected All Customer Support Users…Okta Hack Update Shows Challenges in Rapid Cyber DisclosuresJapanese Space Agency JAXA Hacked in Summer CyberattackDollar Tree Hit by Third Party Data Breach at Zeroed-In Technologies Impacting 2 Million PeopleHendersonville (NC) Targeted in Cyber Attack, Employee Data Potentially CompromisedBlack Basta Ransomware Made Over $100 Million From ExtortionDJVU Ransomware’s Latest Variant ‘Xaro’ Disguised as Cracked SoftwareGoTitan Botnet and PrCtrl RAT Exploit Apache Vulnerability
11/28/2023 November 29, 2023November 29, 2023 ~ The Cyber Beat ~ Leave a comment Ransomware Hackers ‘Wreaking Havoc’ Arrested in Ukraine…‘Kingpin Arrests’N. Korean Hackers ‘Mixing’ macOS Malware Tactics to Evade DetectionAmericans Receive Two Billion Spam Calls Per MonthHow Hackers Phish for Your Users’ Credentials and Sell ThemAI Tools Such as ChatGPT Are Generating a Mammoth Increase in Malicious Phishing EmailsCybercriminals Hesitant About Using Generative AIDeepfake Digital Identity Fraud Surges Tenfold, Sumsub Report FindsKrebs: ID Theft Service Resold Access to USInfoSearch DataReminder: Google Is About to Start Purging Inactive AccountsThe Hundred-Year Battle for India’s Radio AirwavesIndia’s CERT Given Exemption From Right to Information RequestsSplunk Beats Quarterly Revenue Estimates on Robust Cybersecurity DemandFormer Uber CISO Speaks Out, After 6 Years, on Data Breach, SolarWindsMunicipal Water Authority of Aliquippa (PA) Victim of Cyberattack…Federal Officials Investigating Pro-Iran GroupUndetected Android Trojan Expands Attack on Iranian BanksDP World Confirms Data Stolen in Cyberattack, No Ransomware UsedQilin Ransomware Claims Attack on Automotive Giant YanfengEgyptian E-Payment Vendor Fawry Recovering From LockBit Ransomware AttackProliance Surgeons (WA) Announces Cyber Attack Resulting in Data BreachGloucester City Council Spent £1.1 Million Recovering From Ransomware AttackNew BLUFFS Attack Lets Attackers Hijack Bluetooth ConnectionsHackers Start Exploiting Critical ownCloud Flaw, Patch NowDesign Flaw in Google Workspace Could Let Attackers Gain Unauthorized AccessGoogle Chrome Emergency Update Fixes 6th Zero-Day Exploited in 2023
11/27/2023 November 28, 2023November 28, 2023 ~ The Cyber Beat ~ Leave a comment Hackers Targeting Israeli Businesses Say They Will Pause as Fighting StopsUkraine Says It Hacked Russian Aviation Agency, Leaks DataLeader of Pro-Russia DDoS Crew Killnet ‘Unmasked’ by Russian State MediaBeijing Fosters Foreign Influencers to Spread Its PropagandaGeneral Electric, DARPA Hack Claims Raise National Security ConcernsA Controversial U.S. Surveillance Program May Get Slipped Into a ‘Must-Pass’ Defense BillU.S., Britain, Other Countries Ink Agreement to Make AI ‘Secure by Design’…AI Threat Demands New Approach to Security Designs -U.S. OfficialOpenAI’s Board Might Have Been Dysfunctional–but They Made the Right Choice; In the Battle Between AI profits and Ethics, It’s No Contest…The Decision to Restore Altman and Appoint a New Board of Directors Is a Victory for Both OpenAI and MicrosoftCyber Insurers Warn Catastrophic Hacks Will Require Government HelpWhat a Failed Attack Against ColdFusion Revealed About Ransomware Tools and TacticsArdent Hospital ERs Disrupted in 6 States After Ransomware AttackMeow Ransomware hits Vanderbilt University Medical CenterHealthcare Giant Henry Schein Hit Twice by BlackCat RansomwareSlovenia’s Largest Power Provider HSE Hit by Ransomware AttackClear Spring Life and Annuity Company (IN) Announces Data Breach Following Ransomware AttackRansomware ‘Catastrophe’ at Fidelity National Financial Causes Panic With Homeowners and BuyersRansomware Attack on Indie Game Maker Gellyberry Studios Wiped All ‘Ethyrial: Echoes of Yore’ MMORPG Player AccountsBritish Library Hack: Customer Data Offered for Sale on Dark WebSome Lee County (FL) Student Laptops Reportedly Hacked…‘Prank’Microsoft Deprecates Defender Application Guard for OfficeThe Power of Storytelling in Cybersecurity Training
11/24-26/2023 November 26, 2023November 26, 2023 ~ The Cyber Beat ~ Leave a comment Hamas-Linked Cyberattacks Using Rust-Powered SysJoker Backdoor Against IsraelNew ‘HrServ.dll’ Web Shell Detected in APT Attack Targeting Afghan GovernmentEast Texas Hospital Network Can’t Receive Ambulances Because of Potential Cybersecurity IncidentCybercriminals Using Telekopye Telegram Bot to Craft Phishing Scams on a Grand ScaleGmail Hackers Leave Vital Clues Behind—Check These 3 Things NowFacebook vs. The Free PressCTS Cyber-Attack Disrupts UK Property DealsGeneral Electric Investigates Claims of Cyber Attack, Data TheftGulf Air Exposed to Data Breach, ‘Vital Operations Not Affected’Kubernetes Secrets of Fortune 500 Companies Exposed in Configuration Upload to Public RepositoriesCritical Bug in ownCloud File Sharing App Exposes Admin PasswordsOpenCart Owner Turns Air Blue After Researcher Discloses Serious Vuln
11/23/2023 November 23, 2023November 23, 2023 ~ The Cyber Beat ~ Leave a comment EU Mulls Wider Scope for Cybersecurity Certification SchemeIndustry Piles in on North Korea for Sustained Rampage on Software Supply ChainsRug Pull Schemes: Crypto Investor Losses Near $1MOpenAI Researchers Warned Board of AI Breakthrough Ahead of CEO OusterNvidia Sued After Video Call Mistake Showed ‘Stolen’ DataCyber Security Professionals Are Exhausted, and It’s Putting Firms at Greater Risk of Attack$115 Million Stolen From Two Crypto Firms Linked to Justin Sun After HackBlackCat Claims It Is Behind Fidelity National Financial Ransomware ShakedownNew Relic Warns Customers It’s Experienced a Cyber … SomethingNassau Bay (TX) Attacked by Akira Ransomware GangAlert: New WailingCrab Malware Loader Spreading via Shipping-Themed EmailsInfectedSlurs Botnet Resurrects Mirai With Zero-Days
11/22/2023 November 23, 2023November 23, 2023 ~ The Cyber Beat ~ Leave a comment Australia Beefs up Cyber Defences After Major BreachesMicrosoft: Lazarus Hackers Breach CyberLink in Supply Chain AttackNew Flaws in Fingerprint Sensors Let Attackers Bypass Windows Hello LoginScattered Spider Hops Nimbly From Cloud to On-Prem in Complex AttackOpenAI Says Sam Altman to Return as CEO…Behind the Scenes of Sam Altman’s Showdown at OpenAI…Ilya Sutskever: The OpenAI Genius Who Told Sam Altman He Was Fired3 Ways to Stop Unauthorized Code From Running in Your NetworkU.S. Cybercops Take On ‘Pig Butchering’ Org, Return $9M in Scammed CryptoOpen-Source Blender Project Battling DDoS Attacks Since SaturdayWelltok Data Breach Exposes Data of 8.5 Million U.S. PatientsCyberattackers Leaked Data of 27,000 NYC Bar Association MembersKansas Courts Confirm Data Theft, Ransom Demand After CyberattackHTX Exchange Loses $13.6m in Hot Wallet HackRetool Data Breach Affects MG Stover and Multiple Investment FundsClearFake Campaign Expands to Target Mac Systems with Atomic StealerNew Botnet Malware Exploits Two Zero-Days to Infect NVRs and Routers
11/21/2023 November 21, 2023November 21, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Cybersecurity Lab Suffers Major Data Breach…SiegedSecBahrain Government Websites Briefly Inaccessible After Cyberattack Over Israel-Hamas WarMustang Panda Hackers Targets Philippines Government Amid South China Sea TensionsKonni Campaign Deploys Advanced RAT With UAC Bypass CapabilitiesNorth Koreans Use Fake Names, Scripts to Land Remote IT Work for CashMajority in New Survey Worried About Being Tricked by ScammerHow Multi-Stage Phishing Attacks Exploit QRs, CAPTCHAs, and SteganographyDOJ Charges Binance With Vast Money-Laundering Scheme and Sanctions ViolationsEx-CEO of NSO Group Raises $33.6 Million for Israeli Cyber StartupTor Project Removes Relays Because of For-Profit, Risky ActivitySumo Logic Wrestles With Security Breach, Pins Down Customer DataAuto Parts Giant AutoZone Warns of MOVEit Data BreachOwens Group Hit by Ransomware Cyber AttackPrestige Care Data Breach Affects an Unknown Number of Residents and EmployeesNew Agent Tesla Malware Variant Using ZPAQ Compression in Email AttacksLumma Malware Can Allegedly Restore Expired Google Auth CookiesPlay Ransomware Goes Commercial – Now Offered as a Service to CybercriminalsCitrix Warns Admins to Kill NetScaler User Sessions to Block HackersCISA Orders Federal Agencies to Patch Looney Tunables Linux BugMicrosoft Launches Defender Bounty Program With $20,000 Rewards
11/20/2023 November 20, 2023November 20, 2023 ~ The Cyber Beat ~ Leave a comment Indian Hack-for-Hire Group Targeted U.S., China, and More for Over 10 YearsGamaredon’s LittleDrifter USB malware spreads beyond UkraineSecretive White House Surveillance Program Gives Cops Access to Trillions of U.S. Phone RecordsCISA Unveils Healthcare Cybersecurity GuideNHS Secretary Fined For Accessing Scores of Patient RecordsCanadian Government Discloses Data Breach After Contractor HacksCybersecurity Firm Executive Pleads Guilty to Hacking HospitalsSam Altman to Join Microsoft Following OpenAI Ouster…More Than 700 of 770 OpenAI Employees Employees Threaten to Quit Unless Board ResignsUkraine Sacks Top Cybersecurity Officials in Corruption Probe Involving Software PurchasesMOVEit Victim Count Latest: 2.6K+ Orgs Hit, 77M+ People’s Data StolenGreater Paris Wastewater Agency Dealing With CyberattackRhysida Ransomware Gang Claims British Library CyberattackNetSupport RAT Infections on the Rise – Targeting Government and Business SectorsDarkGate and PikaBot Malware Resurrect QakBot’s Tactics in New Phishing AttacksInfostealer Lumma Evolves With New Anti-Sandbox MethodVX-Underground Malware Collective Framed by Phobos RansomwareKinsing Malware Exploits Apache ActiveMQ RCE to Plant RootkitsHow the Evolving Role of the CISO Impacts Cybersecurity Startups
11/17-19/2023 November 19, 2023November 19, 2023 ~ The Cyber Beat ~ Leave a comment Black Friday: Scammers Exploit Luxury Brands to Lure VictimsFCC Adopts New Rules to Protect Consumers From SIM-Swapping AttacksFCC Proposes 3-Year Cybersecurity Pilot for Schools, LibrariesRussian Cyber Espionage Group Deploys LitterDrifter USB Worm in Targeted AttacksRussian Hackers Use Ngrok Feature and WinRAR Exploit to Attack EmbassiesGoogle: Hackers Exploited Zimbra Zero-Day in Attacks on Gov’t OrgsA Spy Agency Leaked People’s Data Online—Then the Data Was StolenLockBit Gang Says ICBC Paid Ransom Over Hack That Disrupted U.S. Treasury Market…How a Hack Shook Wall Street’s Multitrillion-Dollar FoundationsRansomware Targets Will Pay One Way or AnotherCompanies Are Building Their Defenses Against AI Hackers, Says TrustedSec’s David KennedyOpenAI Ousted CEO Sam Altman, but Is Reportedly Reconsidering the MoveHow an Indian Startup Hacked the WorldThe Cybersecurity Lawsuit That Boards Are Talking AboutMultiple Colleges, K-12 Schools Facing Outages After Cyberattacks‘Sex Life Data’ Stolen From UK Government Among Record Number of Ransomware AttacksYamaha Motor Confirms Ransomware Attack on Philippines SubsidiaryBritish Library: Ongoing Outage Caused by Ransomware AttackStanley Steemer Hack Breached Data of Almost 67K CustomersMt. Graham Regional Medical Center (AZ) Confirms Data Breach from Ransomware AttackBloomberg Crypto X Account Snafu Leads to Discord Phishing Attack8Base Group Deploying New Phobos Ransomware Variant via SmokeLoaderBeware: Malicious Google Ads Trick WinSCP Users into Installing MalwareExploit for CrushFTP RCE Chain Released, Patch NowCISA Warns of Actively Exploited Windows, Sophos, and Oracle BugsResearchers Extract RSA Keys From SSH Server Signing ErrorsHands Off the Security Budget! Find Efficiencies to Reduce RiskCybersecurity: It’s Not A Job—It’s A Mission
11/16/2023 November 17, 2023November 17, 2023 ~ The Cyber Beat ~ Leave a comment Russian Hackers Linked to ‘Largest Ever Cyber Attack’ on Danish Critical InfrastructureFBI Warns on Scattered Spider Hackers, Urges Victims to Come ForwardU.S. Congress Report Calls for Privacy Reforms After FBI Surveillance ‘Abuses’Krebs: Alleged Extortioner of Psychotherapy Patients Faces TrialCyber-Criminals Exploit Gaza Crisis With Fake CharityMost Overused Passwords in the World — Make Sure Yours Isn’t on the List3 Ways Behavioral Economics Obstructs CybersecurityHow to Opt Out of Facebook’s Latest Two-Factor Authentication ChangeRunning Signal Will Soon Cost $50 Million a YearAI Risks Force Corporate Privacy Officers to Expand OversightEuropean Police Take Down $9m Vishing GangBlackCat Ransomware Group Reports Victim to SEC…MeridianLink Confirms CyberattackToyota Confirms Breach After Medusa Ransomware Threatens to Leak DataLong Beach, California Turns off IT Systems After CyberattackSt. Lucie County (FL) Tax Collector Hacked by Ransomware Attacker ‘Dark Cat’Rivers Casino (IL) Customers, Employees Targeted by Data BreachMySQL Servers Targeted by ‘Ddostf’ DDoS-as-a-Service BotnetExperts Uncover DarkCasino: New Emerging APT Threat Exploiting WinRAR FlawHackers Could Exploit Google Workspace and Cloud Platform for Ransomware AttacksZero-Day Flaw in Zimbra Email Software Exploited by Four Hacker GroupsFortinet Warns of Critical Command Injection Bug in FortiSIEMConsumer Software Security Assessment: Should We Follow NHTSA’s Lead?CSA Launches First Zero Trust CertificationAlmost Half of Ransomware Groups Operating in 2023 Are New
11/15/2023 November 16, 2023November 16, 2023 ~ The Cyber Beat ~ Leave a comment Australia Says Hacks Surging, State-Sponsored Groups Targeting Critical InfrastructureEuropean Firms Urge China to Give More Clarity on Data Transfer LawsU.S. Cloud Providers Create Special Localized Security Services for EuropeU.S. Government Unveils First AI Roadmap For CybersecurityCyber Experts Worry AI Could Create a World of Haves and Have-NotsSocial Media Sleuths, Armed With AI, Are Identifying Dead BodiesGoogle’s New Titan Security Keys Are Ready for a World Without PasswordsMicrosoft Debuts New Unified Security Solution With Security CopilotFBI Director: FISA Section 702 Warrant Requirement a ‘De Facto Ban’Samsung Hit by New Data Breach Impacting UK Store CustomersPerry Johnson & Associates (PJ&A) Says Cyberattack Exposed Data of Nearly 9 Million PatientsToronto Public Library Confirms Data Stolen in Ransomware AttackMajor Canadian Fintech Moneris Claimed by Medusa RansomwareBlackCat Ransomware Gang Targets Businesses Via Google AdsFBI and CISA Warn of Opportunistic Rhysida Ransomware AttacksFraudsters Make $50,000 a Day by Spoofing Crypto ResearchersNew PoC Exploit for Apache ActiveMQ Flaw Could Let Attackers Fly Under the RadarKrebs: Microsoft Patch Tuesday, November 2023 EditionTeenager Who Allegedly Bragged ‘Fraud Is Fun’ Pleads Guilty To Sports Betting Hack
11/14/2023 November 15, 2023November 15, 2023 ~ The Cyber Beat ~ Leave a comment Biden Meets With Indonesia President Ahead of Xi SummitThe Top U.S. Cybersecurity Agency Has a New Plan for Weaponized AIFBI Struggled to Disrupt Dangerous Casino Hacking Gang, Cyber Responders SayRansomware Royale: U.S. Confirms Royal, BlackSuit Are LinkedHere’s the Proof There’s No Government Alien Conspiracy Around RoswellRussia Man Arrested in Florida Pleads Guilty to Building Now-Dismantled IPStorm Proxy BotnetTeens With “Digital Bazookas” Are Winning the Ransomware War, Researcher LamentsLockBit Ransomware Exploits Citrix Bleed in Attacks, 10K Servers ExposedDid LockBit Ransomware Mess up by Attacking U.S. Arm of China’s Biggest Bank?New Campaign Targets Middle East Governments with IronWind MalwareVietnamese Ducktail Hackers Using New Delphi-Powered Malware to Target Indian MarketersB2B Pharmacy Provider Truepill Reports Data Breach Impacting 2.3 Million CustomersCyberattack on Bladen County (NC) Allowed Hackers to Access DataWP Fastest Cache Plugin Bug Exposes 600K WordPress Sites to AttacksVMware Discloses Critical VCD Appliance Auth Bypass with No PatchCacheWarp Attack: New Vulnerability in AMD SEV Exposes Encrypted VMsIntel Out-Of-Band Patch Addresses Privilege Escalation FlawMicrosoft Fixes Critical Azure CLI Flaw That Leaked Credentials in Logs
11/13/2023 November 13, 2023November 13, 2023 ~ The Cyber Beat ~ Leave a comment EU Formalizes Cybersecurity Support For UkraineLockBit Gang Says ICBC Paid Ransom Over Hack That Disrupted U.S. Treasury MarketChinese Hackers Launch Covert Espionage Attacks on 24 Cambodian OrganizationsChina Proposes Cybersecurity Check for Auditors if National Security InvolvedZelle Banks Have Been Paying Back Scam Victims After Government PressureIn a First, Cryptographic Keys Protecting SSH Connections Stolen in New AttackInside Denmark’s Hell Week as Critical Infrastructure Orgs Faced CyberattacksU.S. Privacy Groups Urge Senate Not to Ram Through NSA Spying PowersNew York Plans Cyber Rules for HospitalsNew BiBi-Windows Wiper Targets Windows Systems in Pro-Hamas AttacksAustralia Ports Operator Back Online After Cyber IncidentCanadian Banking Tech Giant Moneris Says It Prevented Ransomware AttackAutomotive Supplier Yanfeng Hit by Cyberattack, Disrupting Stellantis ProductionHuber Heights (OH) Hit by Ransomware Cyber AttackPython Malware Poses DDoS Threat Via Docker API MisconfigurationFBI: Royal Ransomware Asked 350 Victims to Pay $275 MillionEthereum Feature Abused to Steal $60 Million From 99K VictimsCISA Warns of Actively Exploited Juniper Pre-Auth RCE Exploit ChainIntroducing the Tech That Keeps the Lights On
11/10-12/2023 November 12, 2023November 12, 2023 ~ The Cyber Beat ~ Leave a comment Australia Ports Operator DP World Australia Suffers ‘Cybersecurity Incident’, Suspends Operations…Australia Says Ports Operator Cyber Incident ‘Serious’ICBC Puts Capital Into U.S. Unit, Seeks Cyber Review After HackThe NSA Seems Pretty Stressed About the Threat of Chinese Hackers in U.S. Critical InfrastructureSenate Leaders Plan to Prolong NSA Surveillance Using a Must-Pass BillMicrosoft Warns of Sapphire Sleet’s Fake Skills Assessment Portals Targeting IT Job SeekersMicrosoft: BlueNoroff Hackers Plan New Crypto-Theft AttacksKrebs: It’s Still Easy for Anyone to Become You at ExperianStrangely Enough, No One Wants to Buy a Ransomware Group That Has Cops’ AttentionPolice Takes Down BulletProftLink Large-Scale Phishing ProviderIran-Linked Imperial Kitten Cyber Group Targeting Middle East’s Tech SectorsImpatient LockBit Says It’s Leaked 50GB of Stolen Boeing Files After Ransom Fails to LandPoloniex Crypto-Exchange Offers 5% Cut to Thieves if They Return That $120M They NickedMcLaren Health Care Says Data Breach Impacted 2.2 Million PeopleMillions of Northwell Health Patients Potentially Caught in Perry Johnson & Associates Data BreachYork Region School Board (ON) Dealing With a Cyber AttackHackers Breach Healthcare Orgs via ScreenConnect Remote AccessAlert: ‘Effluence’ Backdoor Persists Despite Patching Atlassian Confluence ServersMicrosoft Extends Windows Server 2012 ESUs to October 2026Navigating Tech Risks in Modern M&A Waters
11/9/2023 November 9, 2023November 9, 2023 ~ The Cyber Beat ~ Leave a comment Ransomware Attack on China’s ICBC Disrupts Treasury Market Trades…LockBitMuddyC2Go: New C2 Framework Iranian Hackers Using Against IsraelSandworm Hackers Caused Another Blackout in Ukraine—During a Missile StrikeSignature Techniques of Asian APT Groups RevealedGenerative AI Will Level up Cyber Attacks, According to New Google ReportOpenAI Reveals ChatGPT Is Being DDoS-edSignal Tests Usernames So You Can Avoid Sharing Your Phone NumberOmegle Is Shutting Down Notorious Video Chat Service as Scrutiny GrowsSolarWinds Denies SEC Charges Over Cyber DisclosuresDownfall Fallout: Intel Knew AVX Chips Were Insecure and Did Nothing, Lawsuit ClaimsKyocera AVX Says Ransomware Attack Impacted 39,000 IndividualsMr. Cooper Says Customer Data Exposed During CyberattackMaine Government Says MOVEit Data Breach Affects 1.3 Million ResidentsLaw Firm Allen & Overy Hit by ‘Data Incident’Suspected Ransomware Attack Hits Scottish CouncilTri-City Medical Center in Oceanside (CA) Hit by Cybersecurity AttackHarris County (TX) Public Mental Health Provider Recovering From Apparent Cyber AttackNew Kamran Spyware Targets Urdu-Speaking Users in PakistanNew Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious InstallersCISA Alerts: High-Severity SLP Vulnerability Now Under Active ExploitationZero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability
11/8/2023 November 8, 2023November 8, 2023 ~ The Cyber Beat ~ Leave a comment Microsoft Warns of Election Threats in 2024…Meta Says It Will Label Political Ads That Use AI-Generated ImageryU.S. Urges Critical Infrastructure Firms to Get “Shields Ready”FBI Warns of Emerging Ransomware Initial Access TechniquesPredator AI ChatGPT Integration Poses Risk to Cloud ServicesWhatsApp Can Now Hide Your IP Address During Calls for Added SecurityFortinet, Rivals Fall on Concerns Around Cybersecurity SpendingMicrosoft Drops SMB1 Firewall Rules in New Windows 11 BuildRussian State-Owned Sberbank Hit by 1 Million RPS DDoS AttackPopular Lego Marketplace BrickLink Went Offline After a ‘Ransom’ DemandSumo Logic Discloses Security Breach, Advises API Key ResetsAvidXchange Reports Data Breach After Unauthorized AccessResearchers Uncover Undetectable Crypto Mining Technique on Azure AutomationRansomware Mastermind Uncovered After Oversharing on Dark Web…Threat Actor Farnetwork Linked to Five Ransomware SchemesBeware, Developers: BlazeStealer Malware Discovered in Python Packages on PyPI
11/7/2023 November 8, 2023November 8, 2023 ~ The Cyber Beat ~ Leave a comment North Korea’s New BlueNoroff Malware Variant Targets Cryptocurrency ExchangesSideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government EntitiesA New U.S. Privacy Bill Seeks to End Warrantless Police and FBI SpyingData Broker’s “Staggering” Sale of Sensitive Info Exposed in Unsealed FTC FilingGoogle, Meta, Discord, and More Team Up to Fight Child Abuse OnlineWoman Jailed After rentahitman.com Assassin Turned Out to Be – Surprise – FBIBradford Ethical Hacker Honoured With Record-Breaking WorkMicrosoft Authenticator Now Blocks Suspicious MFA Alerts by DefaultJapan Aviation Electronics (JAE) Breached By ALPHVCook County (IL) Health: Data Breach Potentially Affected up to 1.2 Million PatientsData Breach at Singapore’s Marina Bay Sands Affects 665,000 CustomersTransForm Says Ransomware Data Breach Affects 267,000 PatientsDakota Eye Institute Files Notice of Data Breach Affecting More Than 107kPulaski County (VA) Public Schools Investigating Cyber AttackFake Ledger Live App in Microsoft Store Steals $768,000 in CryptoGootBot Implant Heightens Risk of Post-Infection Ransomware
11/6/2023 November 6, 2023November 6, 2023 ~ The Cyber Beat ~ Leave a comment Iranian Hackers Launches Destructive Cyberattacks on Israeli Tech and Education SectorsU.S. Slaps Sanctions on Accused Fave Go-to Money Launderer of Russia’s Rich and Ryuk RansomwareU.S., Japan and South Korea Unite to Counter North Korean Cyber ActivitiesU.S. Law Firms Rethink China Future Amid Economic Woes, Data CrackdownSiemens, Ericsson Warn EU Cybersecurity Rules May Disrupt Supply ChainsHow Will the SEC’s Pursuit of SolarWinds Affect Cyber Chiefs? Readers Weigh InGoogle Warns How Hackers Could Abuse Calendar Service as a Covert C2 ChannelKrebs: Who’s Behind the SWAT USA Reshipping Service?AI Fake Nudes Are Booming. It’s Ruining Real Teens’ Lives.Meet Your New Cybersecurity Auditor: Your InsurerDDoS Attack Revealed as Cause of Online Service Outage at Public Healthcare InstitutionsSpy Trojan SpyNote Unveiled in Attacks on GamersSecuriDropper: New Android Dropper-as-a-Service Bypasses Google’s DefensesNew Jupyter Infostealer Version Emerges with Sophisticated Stealth TacticsCritical Atlassian Confluence Bug Exploited in Cerber Ransomware AttacksTellYouThePass Ransomware Joins Apache ActiveMQ RCE AttacksHackers Exploit Looney Tunables Linux Bug, Steal Cloud CredsVeeam Warns of Critical Bugs in Veeam ONE Monitoring PlatformQNAP Releases Patch for 2 Critical Flaws Threatening Your NAS DevicesMicrosoft Will Roll Out MFA-Enforcing Policies for Admin Portal Access
11/3-5/2023 November 6, 2023November 6, 2023 ~ The Cyber Beat ~ Leave a comment Healthcare Data Breaches Impact 88 Million AmericansDiscord File Links Will Expire After a Day to Fight MalwareGoogle Play Store Introduces ‘Independent Security Review’ Badge for AppsNodeStealer Malware Hijacking Facebook Business Accounts for Malicious AdsApple ‘Find My’ Network Can Be Abused to Steal Keylogged PasswordsFlipper Zero: This Tiny Device Is Sending Updated iPhones Into a Never-Ending DoS Loop, Rending Them UselessSam Bankman-Fried Is Convicted of Fraud in FTX Collapse‘Corrupt’ Cop Jailed for Tipping off Pal to EncroChat DragnetDutch Hacker Jailed for Extortion, Selling Stolen Data on RaidForumsAmerican Airlines Pilot Union Hit by Ransomware AttackInfosys Subsidiary Hit by Cyber Security Attack–Investigation Launched to Identify Overall ImpactOkta’s Recent Customer Support Data Breach Impacted 134 Customers81K People’s Sensitive Info Feared Stolen From Hilb After Email Inboxes RansackedSocks5Systemz Proxy Service Infects 10,000 Systems WorldwideKinsing Actors Exploiting Recent Linux Flaw to Breach Cloud EnvironmentsNew Microsoft Exchange Zero-Days Allow RCE, Data Theft AttacksAtlassian Warns of Exploit for Confluence Data Wiping Bug, Get Patching
11/2/2023 November 2, 2023November 9, 2023 ~ The Cyber Beat ~ Leave a comment Krebs: Russian Reshipping Service ‘SWAT USA Drop’ ExposedIsraeli Entities Under Attack By MuddyWater’s Advanced TacticsRussia’s Wagner Group Plans to Send Air Defenses to Hezbollah, U.S. SaysThe UN Hired an AI Company to Untangle the Israeli-Palestinian CrisisBrave Responds to Bing and ChatGPT With a New ‘Anonymous and Secure’ AI ChatbotMicrosoft Is Overhauling Its Software Security After Major Azure Cloud AttackWhat to Know About New Federal and State Cyber RulesInfosec Pros Can Secure IT, but Have Harder Time Securing Job SatisfactionDo Government Sanctions Against Ransomware Groups Work?Cloudflare Dashboard and APIs Down After Data Center Power OutageMortgage Giant Mr. Cooper Hit by Cyberattack Impacting IT SystemsOkta Tells 5,000 of Its Own Staff That Their Data Was Accessed in Third-Party BreachAce Hardware Says 1,202 Devices Were Hit During CyberattackBoeing Acknowledges Cyberattack on Parts and Distribution BizConfidential Student Data Exposed in Fairfax County Public Schools BreachBlackCat Ransomware Claims Breach of Healthcare Giant Henry ScheinHelloKitty Ransomware Group Exploiting Apache ActiveMQ VulnerabilitySpy Module Discovered in WhatsApp Mods
11/1/2023 November 1, 2023November 2, 2023 ~ The Cyber Beat ~ Leave a comment North Korean Hackers Target macOS Crypto Engineers With KandykornPalo Alto Reveals New Features in Russian APT Turla’s Kazuar BackdoorMysterious Kill Switch Shuts Down Mozi IoT BotnetFSB Arrests Russian Hackers Working for Ukrainian Cyber ForcesFeds Collar Suspected Sanctions-Busting Russian Smugglers of U.S. TechNew York Adds Stiffer Requirements to Cybersecurity RulesClorox Bets on Strong Inventory to Help Overcome Cyber Attack Hitting OperationsSplunk to Lay Off Nearly 7% Of Its Workforce Amid Economic WoesChainguard, an Open-Source Security Firm, Raises $61 Million3 Ways to Close the Cybersecurity Skills Gap — NowHackers Use Citrix Bleed Flaw in Attacks on Gov’t Networks WorldwideIranian Cyber Espionage Group Targets Financial and Government Sectors in Middle EastMexico’s Querétaro Intercontinental Airport Confirms CyberattackToronto Public Library Outages Caused by Black Basta Ransomware AttackData Breach Reported at Meals on Wheels Central TexasPostmeds Data Breach Impacts Hundreds of Thousands of Consumers NationwideAuthorities Confirm Town of Iowa (LA) Target of CyberattackAlert: F5 Warns of Active Attacks Exploiting BIG-IP Vulnerability3,000 Apache ActiveMQ Servers Vulnerable to RCE Attacks Exposed OnlineNew CVSS 4.0 Vulnerability Severity Rating Standard Released
10/31/2023 October 31, 2023October 31, 2023 ~ The Cyber Beat ~ Leave a comment Canada Bans WeChat and Kaspersky Apps On Government DevicesMeta Launches Paid Ad-Free Subscription in Europe to Satisfy Privacy LawsWhite House Hosts Counter Ransomware Initiative Summit, With a Focus on Not Paying Hackers…Dozens of Countries Will Pledge to Stop Paying Ransomware Gangs…Why Ransomware Victims Can’t Stop Paying off HackersApple Alert: India Opposition Says Government Tried to Hack PhonesIn Cyberattacks, Iran Shows Signs of Improved Hacking CapabilitiesKrebs: .US Harbors Prolific Malicious Link Shortening ServiceLastPass Breach Linked to Theft of $4.4 Million in CryptoCyber Chiefs Worry About Personal Liability as SEC Sues SolarWinds, Executive…Budget Cuts, Layoffs Add to Pressure on Cyber Teams…Half of Execs Request Security Bypass Over Past YearFlorida Man Jailed After Draining $1M From Victims in Crypto SIM Swap AttacksNow Russians Accused of Pwning JFK Taxi System to Sell Top Spots to CabbiesAce Holed: Hardware Store Empire Felled by CyberattackCybersecurity Snafu Sends British Library Back to the Dark AgesSW Ontario Hospitals Confirm Patient Data Compromised in CyberattackFlipper Zero Bluetooth Spam Attacks Ported to New Android AppScarred Manticore Targets Middle East With Advanced MalwareArid Viper Campaign Targets Arabic-Speaking UsersTrojanized PyCharm Software Version Delivered via Google Search AdsMalicious NuGet Packages Caught Distributing SeroXen RAT MalwareExploit Released for Critical Cisco IOS XE Flaw, Many Hosts Still hackedAtlassian Warns of New Critical Confluence Vulnerability Threatening Data LossApple, Google, and Microsoft Just Patched Some Spooky Security FlawsAvast Confirms It Tagged Google App as Malware on Android PhonesSamsung Galaxy Gets New Auto Blocker Anti-malware Feature
10/30/2023 October 30, 2023October 30, 2023 ~ The Cyber Beat ~ Leave a comment BiBi-Linux: Pro-Hamas Hacktivists Targeting Israeli Entities with Wiper MalwareHuawei, Vivo Phones Tag Google App as TrojanSMS-PA MalwareChina Plans to Take ‘Hack-Proof’ Quantum Satellite Technology to New HeightsBiden Issues Executive Order on Safe, Secure AIFTC Orders Non-Bank Financial Firms to Report Breaches in 30 DaysHackers Accessed 632,000 Email Addresses at U.S. Justice, Defense DepartmentsBudget Cuts at CISA Could Affect Enterprise CybersecurityU.S. SEC Sues SolarWinds, Top Cyber Executive for FraudGoogle Chrome Now Auto-Upgrades to Secure Connections for All UsersToronto Public Library Services Down Following Weekend CyberattackDallas County (TX) Investigating ‘Cybersecurity Incident’ Months After City Ransomware AttackSix Rivers Media (TN) Hit by Cyber-Attack Over the WeekendNew Hunters International Ransomware Possible Rebrand of HiveHackers Using MSIX App Packages to Infect Windows PCs with GHOSTPULSE MalwareEleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHubUrgent: New Security Flaws Discovered in NGINX Ingress Controller for KubernetesRCE Exploit for Wyze Cam v3 Publicly Released, Patch NowGoogle Promises a Rescue Patch for Android 14’s “Ransomware” Bug
10/27-29/2023 October 29, 2023October 29, 2023 ~ The Cyber Beat ~ Leave a comment N. Korean Lazarus Group Targets Software Vendor Using Known FlawsUkrainian Hackers Disrupt Internet Providers in Russia-Occupied TerritoriesUK National Cyber Security Centre Rolls Out Protective DNS for SchoolsKing Charles III Signs off on UK Online Safety Act, With Unenforceable Spying ClauseThe Hunt for Crypto’s Most Famous Fugitive. ‘Everyone Is Looking for Me.’Pirate IPTV Network in Austria Dismantled and $1.74 Million SeizedGoogle Expands Its Bug Bounty Program to Tackle Artificial Intelligence ThreatsWhat Lurks in the Dark: Taking Aim at Shadow AIBoeing Assessing Lockbit Hacking Gang Threat of Sensitive Data LeakStanford University Investigating Cyberattack After Ransomware ClaimsHackers Email Stolen Clark County School District (NV) Student Data to ParentsResearchers Uncover Wiretapping of XMPP-Based Instant Messaging ServiceF5 Issues Warning: BIG-IP Vulnerability Allows Remote Code ExecutionHackers Earn Over $1 Million for 58 Zero-Days at Pwn2Own TorontoHackerOne Paid Ethical Hackers Over $300 Million in Bug BountiesAndroid 14’s User-Profile Data Bug Seems Indistinguishable From Ransomware
10/26/2023 October 26, 2023October 26, 2023 ~ The Cyber Beat ~ Leave a comment France Says Russian State Hackers Breached Numerous Critical NetworksChina Rushes to Swap Western Tech With Domestic Options as U.S. Cracks DownIranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware AttacksYoroTrooper: Researchers Warn of Kazakhstan’s Stealthy Cyber Espionage GroupHumanity Could ‘Lose Control’ of AI, UK PM Warns, as Britain Seeks Leading Role in the TechUK Parliament Opens Inquiry into Cyber-ResilienceOldham Council Facing 10,000 Cyber Attacks a Day, Report SaysMicrosoft Warns as Scattered Spider Expands from SIM Swaps to RansomwareForget the Outside Hacker, the Bigger Threat Is Inside by the Coffee MachineNigerian Police Dismantle Cybercrime Recruitment, Mentoring HubMaine Mass Shooting Disinformation Floods Social Media as Suspect Remains at LargeChilean Telecom Giant GTD Hit by the Rorschach Ransomware GangAkumin Files Notice of Data Breach with the Securities and Exchange CommissionLonghorn Imaging Center (TX) Data Breach Affects Patients’ Sensitive Medical InformationStripedFly Malware Framework Infects 1 Million Windows, Linux HostsAndroid Adware Apps on Google Play Amass Two Million InstallsRecord-Breaking 100 Million RPS DDoS Attack Exploits HTTP/2 Rapid Reset FlawCritical Flaw in NextGen’s Mirth Connect Could Expose Healthcare DataiLeakage: New Safari Exploit Impacts Apple iPhones and Macs with A and M-Series CPUsApple Drops Urgent Patch Against Obtuse TriangleDB iPhone MalwareServiceNow Quietly Addresses Unauthenticated Data Exposure Flaw From 2015Samsung Galaxy S23 Hacked Two More Times at Pwn2Own Toronto
10/25/2023 October 25, 2023October 25, 2023 ~ The Cyber Beat ~ Leave a comment Pro Russia Winter Vivern: Zero-Day XSS Exploit Targets Roundcube ServersLinkedIn Tests Generative AI to Field Cybersecurity Questions From Employees and SuppliersProton’s Password Manager Now Lets You Securely Share LoginsAmazon Launches European ‘Sovereign’ Cloud as EU Data Debate RagesThe AI-Generated Child Abuse Nightmare Is HereStates Sue Meta Alleging Harm to Young People on Instagram, FacebookCybersecurity Awareness Doesn’t Cut It; It’s Time to Focus on BehaviorFlipper Zero Can Now Spam Android, Windows Users With Bluetooth AlertsSeiko “BlackCat” Data Breach: 60,000 Records on the LineFellowship Village (NJ) Files Notice of Recent Data Breach with the Federal GovernmentMalvertising Campaign Targets Brazil’s PIX Payment System with GoPIX MalwareCitrix Bleed Exploit Lets Hackers Hijack NetScaler AccountsVMware Fixes Critical Code Execution Flaw in vCenter ServerMicrosoft Tests Windows 11 Encrypted DNS Server Auto-DiscoveryWindows 11 to Let Admins Mandate SMB Encryption for Outbound ConnectionsSamsung Galaxy S23 Hacked Twice on First Day of Pwn2Own Toronto
10/24/2023 October 24, 2023 ~ The Cyber Beat ~ Leave a comment Hackers Backdoor Russian State, Industrial Orgs for Data TheftIrish Cops Data Debacle Exposes Half a Million Motorist Records1Password Detects Suspicious Activity Following Okta Support BreachThey Cracked the Code to a Locked USB Drive Worth $235 Million in Bitcoin. Then It Got Weird.Generative AI Can Save Phishers Two Days of WorkA Powerful Tool U.S. Spies Misused to Stalk Women Faces Its Potential DemiseA Controversial Plan to Scan Private Messages for Child Abuse Meets Fresh ScandalAutomakers and Suppliers Spar Over Car DataEx-NSA Employee Pleads Guilty to Leaking Classified Data to RussiaDecentralized Matrix Messaging Network Says It Now Has 115M UsersRTX, the Company Formerly Known as Raytheon, to Sell Its Cybersecurity Business for $1.3BCyberattack on Health Services Provider TransForm Impacts 5 Canadian HospitalsASVEL Basketball Team Confirms Data Breach After Ransomware AttackHopewell Area School District (PA) Targeted by Ransomware AttackOver 9,500 Bank of Canton Customers May Have Had Personal Information Exposed Due to Fiserv BreachUkraine Cyber Officials Warn of a ‘Surge’ in Smokeloader Attacks on Financial, Government EntitiesNew Grandoreiro Malware Variant Targets SpainMeet Rhysida, a New Ransomware Strain That Deletes ItselfBackdoor Implant on Hacked Cisco Devices Modified to Evade DetectioniOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation TriangulationVMware Warns Admins of Public Exploit for vRealize RCE FlawAPI Security Flaw Impacted Grammarly, Vidio and Bukalapak
10/23/2023 October 23, 2023October 23, 2023 ~ The Cyber Beat ~ Leave a comment Ukraine Security Services Involved in Hack of Russia’s Largest Private BankDC Elections Agency Warns Entire Voting Roll May Have Been StolenU.S. Energy Firm Shares How Akira Ransomware Hacked Its SystemsQNAP Takes Down Server Behind Widespread Brute-Force AttacksPalestine Crypto Donation Scams Emerge Amid Israel-Hamas WarThe Hamas Threat of Broadcasting Hostage Execution Videos Looms Large Over Social MediaKrebs: NJ Man Hired Online to Firebomb, Shoot at Homes Gets 13 Years in PrisonSpain Arrests 34 Cybercriminals Who Stole Data of 4 Million PeopleOkta Cybersecurity Breach Wipes Out More Than $2 Billion in Market CapChange From Within: 3 Cybersecurity Transformation Traps for CISOs to AvoidCity of Philadelphia Discloses Data Breach After Five MonthsUniversity of Michigan Employee, Student Data Stolen in CyberattackCyber Attacks Hit NY State Casino Operation, Two Hudson Valley HospitalsOrange County DA’s Office Hit by Computer Breach; Communications System Taken DownCadre Services (WI) Targeted in Ransomware Attack; Hackers Leak Stolen Data, Including SSNsDoNot Team’s New Firebird Backdoor Hits Pakistan and AfghanistanQuasarRAT Deploys Advanced DLL Side-Loading TechniqueCisco Patches IOS XE Zero-Days Used to Hack Over 50,000 DevicesCitrix Warns Admins to Patch NetScaler CVE-2023-4966 Bug ImmediatelyGoogle Chrome’s New “IP Protection” Will Hide Users’ IP Addresses
10/20-22/2023 October 22, 2023October 22, 2023 ~ The Cyber Beat ~ Leave a comment Krebs: Hackers Stole Access Tokens from Okta’s Support UnitInternational Criminal Court Systems Breached for Cyber EspionageNew TetrisPhantom Hackers Steal Data From Secure USB Drives on Gov’t SystemsDarkGate Malware Campaigns Linked to Vietnam-Based CybercriminalsIrish-Linked Spyware Used in Brazen AttacksCyberattacks Intensify on Israeli and Palestinian Human Rights GroupsThe Dangerous Mystery of Hamas’ Missing ‘Suicide Drones’ENISA Warns of Rising AI Manipulation Ahead of Upcoming European ElectionsRagnar Locker Ransomware Developer Arrested in France20 Years Of Cybersecurity Awareness Month: Leveling Up The BasicsHow an Explosion of ‘Smart’ Devices Is Threatening U.S. Households — And National SecurityMicrosoft Announces Security Copilot Early Access ProgramKwik Trip Finally Confirms Cyberattack Was Behind Ongoing OutageAmerican Family Insurance Confirms Cyberattack Is Behind IT OutagesPennyMac Files Notice of Data Breach That Leaked Thousands of SSNsFake Corsair Job Offers on LinkedIn Push DarkGate MalwareExelaStealer: A New Low-Cost Cybercrime Weapon EmergesCisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices…Cisco Discloses New IOS XE Zero-Day Exploited to Deploy Malware Implant…Over 40,000 Cisco IOS XE Devices Infected with Backdoor Using Zero-Day…Number of Hacked Cisco IOS XE Devices Plummets From 50K to HundredsCritical RCE Flaws Found in SolarWinds Access Audit Solution
10/19/2023 October 19, 2023October 22, 2023 ~ The Cyber Beat ~ Leave a comment Iran-Linked OilRig Targets Middle East Governments in 8-Month Cyber CampaignCyberspace Has No Boundaries — That’s Why Global Cooperation on Security Is Crucial: UK OfficialAmazon, Microsoft, and India Crack Down on Tech Support ScamsRepublican Congressman Says Labor Crunch Biggest Threat to U.S. CybersecurityQR Codes Used in 22% of Phishing AttacksU.S. Charge Man With Running Stolen Credentials MarketplaceEuropol Knocks RagnarLocker Offline in Second Major Ransomware Bust This YearValve Enhances Steam Security With SMS VerificationCasio Keyed up After Data Loss Hits Customers in 149 CountriesData Breach Hits Saint Louis University Students and Employees, School SaysAtlas Healthcare Confirms Recent Data Breach Affecting Residents’ Social Security NumbersSophisticated MATA Framework Strikes Eastern European Oil and Gas CompaniesFake KeePass Site Uses Google Ads and Punycode to Push MalwareBlackCat Ransomware Uses New ‘Munchkin’ Linux VM in Stealthy AttacksHacker Group GhostSec Unveils New Generation Ransomware ImplantMicrosoft Extends Purview Audit Log Retention After July Breach
10/18/2023 October 18, 2023October 18, 2023 ~ The Cyber Beat ~ Leave a comment Ukraine Says Joint Mission With U.S. Derailed Moscow’s CyberattacksGoogle Links WinRAR Exploitation to Russian, Chinese State HackersCritical Citrix NetScaler Flaw Exploited to Target from Government, Tech FirmsTwitter Glitch Allows CIA Informant Channel to Be HijackedFederal Cyber Chief Tells Agencies to Tap Brakes on AIAI Adoption Surges But Security Awareness Lags BehindKrebs: The Fake Browser Update Scam Gets a MakeoverGoogle Bulks up Android’s Malware Defenses to Combat New Tricks, Including AI: Play ProtectDutch Consumer Group Sues Amazon Over Data TrackingFBI: Hackers Are Extorting Plastic Surgery PatientsEx-Navy IT Head Gets 5 Years for Selling People’s Data on DarkwebUkrainian Activists Hack Trigona Ransomware Gang, Wipe ServersLazarus Group Targeting Defense Experts with Fake Interviews via Trojanized VNC AppsNorth Korean Hackers Lazarus and Andariel Exploit Critical TeamCity Flaw to Breach NetworksMATA Malware Framework Exploits EDR in Attacks on Defense FirmsHacker Leaks Millions of New 23andMe Genetic Data ProfilesQubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit CampaignNew Admin Takeover Vulnerability Exposed in Synology’s DiskStation ManagerWhat CISOs Should Exclude From SEC Cybersecurity FilingsMajor Cyber Attack Could Cost the World $3.5 Trillion -Lloyd’s of London
10/17/2023 October 17, 2023October 17, 2023 ~ The Cyber Beat ~ Leave a comment TetrisPhantom: Persistent Espionage Campaign Targets APAC GovernmentsRansomware Comes Back in Vogue for CybercriminalsFake Browser Updates Used in Malware DistributionHuge Increase in ‘Spear Phishing’ Ever Since ChatGPT’s Rise, Says Japanese Cybersecurity FirmGoogle Password Manager Could Ease Your Transition to PasskeysAmazon Quietly Rolls Out Support for Passkeys, With a CatchOver 40,000 Admin Portal Accounts Use ‘Admin’ as a PasswordInsiders Say X’s Crowdsourced Anti-Disinformation Tool Is Making the Problem WorseKrebs: Tech CEO Sentenced to 5 Years in IP Address SchemeNew Calculator Aims to Measure Companies’ Cyberattack DamagesChilean Government Warns of Black Basta Ransomware Attacks After Customs IncidentD-Link Confirms Data Breach After Employee Phishing AttackKwikTrip All but Says IT Outage Was Caused by a CyberattackCrum & Forster Notifies Nearly 14k Consumers of Recent Data Breach Leaking Their SSNsSpyNote Android Malware Spreads via Fake Volcano Eruption AlertsMalicious Notepad++ Google Ads Evade Detection for MonthsOver 10,000 Cisco Devices Hacked in IOS XE Zero-Day AttacksCritical Vulnerabilities Uncovered in Open Source CasaOS Cloud SoftwareExperts Warn of Severe Flaws Affecting Milesight Routers and Titan SFTP Servers
10/16/2023 October 16, 2023October 16, 2023 ~ The Cyber Beat ~ Leave a comment Russian Sandworm Hackers Breached 11 Ukrainian Telcos Since MayPro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New CampaignBLOODALCHEMY Provides Backdoor to Southeast Asian nations’ SecretsFake ‘RedAlert’ Rocket Alert App for Israel Installs Android SpywareHealthcare Sector Warned About New Ransomware Group NoEscapeYour Organization Has Suffered a Data Incident: Now Here Are the Regulators It Will Likely EncounterDeepfake Porn Is Out of ControlWhatsApp Turns on Passwordless Logins With Passkeys for Android UsersWhat the Hollywood Writers Strike Resolution Means for CybersecurityWe’re Not in e-Kansas Anymore: State Courts Reel From ‘Unauthorized Incursion’Taylored Services Parent Co Cyber Attack and Possible Data Breach Affects Current and Former EmployeesHenry Schein Announces Data BreachSpyNote: Beware of This Android Trojan that Records Audio and Phone CallsDiscord Still a Hotbed of Malware Activity — Now APTs Join the FunHackers Exploit Critical Flaw in WordPress Royal Elementor PluginCISA, FBI Urge Admins to Patch Atlassian Confluence ImmediatelyCisco Warns of New iOS XE Zero-Day Actively Exploited in AttacksSignal Disputes Alleged Zero-Day Flaw
10/13-15/2023 October 15, 2023October 15, 2023 ~ The Cyber Beat ~ Leave a comment Billboards in Israel Were Briefly Hacked to Display Pro-Hamas Messages as Cyberwar Ramps UpNew PEAPOD Cyberattack Campaign Targeting Women Political Leaders…Women Political Leaders Summit Targeted in Romcom Malware PhishingAI algorithm Detects MitM Attacks on Unmanned Military VehiclesChinese Embassy Criticizes Costa Rica for 5G Company RestrictionsUK Regulator Fines Equifax £11m for 2017 Data BreachSecurity Pros Warn That EU’s Vulnerability Disclosure Rule Is RiskyAustralia Fines X, Formerly Twitter, for Not Answering Questions on Child Abuse ContentHackers Hit Aid Groups Responding to Israel and Gaza CrisisKwik Trip IT Systems Outage Caused by Mysterious ‘Network Incident’FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical InfrastructureDarkGate Malware Spreading via Messaging Services Posing as PDF FilesHackers Use Binance Smart Chain Contracts to Store Malicious ScriptsCISA Shares Vulnerabilities, Misconfigs Used by Ransomware GangsSteam Enforces SMS Verification to Curb Malware-Ridden UpdatesMicrosoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication
10/12/2023 October 12, 2023October 12, 2023 ~ The Cyber Beat ~ Leave a comment Chinese APT ToddyCat Targets Asian Telecoms, GovernmentsIsrael Sees Cyber Incursions Across Digital SystemsMicrosoft Defender Thwarts Large-Scale Akira Ransomware AttackEverest Ransomware Cybercriminals Offer Corporate Insiders Cold, Hard Cash for Remote AccessShadow PC Warns of Data Breach as Hacker Tries to Sell Gamers’ InfoThe Cyberwar Between the East and the West Goes Through AfricaNew Clues Suggest Stolen FTX Funds Went to Russia-Linked Money LaunderersAMC CEO Was Target of Blackmail and Extortion PlotCalifornia Enacts “Delete Act” For Data PrivacyMalicious NuGet Package Targeting .NET Developers with SeroXen RATShellBot Uses Hex IPs to Evade Detection in Attacks on Linux SSH ServersRansomware Attacks Now Target Unpatched WS_FTP ServersRansomware Victims Continue to Pay Up, While Bracing for AI-Enhanced AttacksHyped up Curl Vulnerability Falls Short of ExpectationsApple Fixes iOS Kernel Zero-Day Vulnerability on Older iPhonesNew Microsoft Bug Bounty Program Focuses on AI-Powered Bing6 Simple Cybersecurity Rules You Can Apply Now
10/11/2023 October 12, 2023October 12, 2023 ~ The Cyber Beat ~ Leave a comment Initial U.S. Intelligence Suggests Iran Was Surprised by the Hamas Attack on IsraelGaza Conflict: How Israeli Cybersecurity Will RespondIsraelis Form Citizen Cyber Brigades Amid Mounting Digital AttacksMicrosoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence VulnerabilityU.S. Navy Sailor Pleads Guilty to Accepting $15,000 in Bribes From ChinaU.S. Government Issues Open-Source Security Guidance for Critical InfrastructureSEC is Investigating MOVEit Mass-Hack, Says Progress SoftwareThe UN Risks Normalizing Internet CensorshipMicrosoft Defender Now Auto-Isolates Compromised AccountsSimpson Manufacturing Shuts Down IT Systems After CyberattackWest Texas Gas Files Notice of Data Breach Affecting Over 56,000 PeopleBianLian Extortion Group Claims Recent Air Canada BreachLinkedIn Smart Links Attacks Return to Target Microsoft AccountsU.S. Cybersecurity Agency Warns of Actively Exploited Adobe Acrobat Reader VulnerabilityCD-Indexing Cue Files Are the Core of a Serious Linux Remote Code ExploitNew WordPress Backdoor Creates Rogue Admin to Hijack WebsitesKrebs: Patch Tuesday, October 2023 Edition…From Chaos to Cadence: Celebrating Two Decades of Microsoft’s Patch Tuesday
10/10/2023 October 10, 2023October 10, 2023 ~ The Cyber Beat ~ Leave a comment Israel Was Prepared for a Different War…Iran’s Khamenei Lauds Hamas Attack on Israel, Again Denies Involvement…Israeli Startup Community, at Home and Abroad, Prepares to FightNew Threat Actor “Grayling” Blamed For Espionage CampaignCloudflare, Google, and Amazon Explain What’s Behind the Largest DDoS Attacks EverKrebs: Phishers Spoof USPS, 12 Other Natl’ Postal ServicesGoogle Begins Prompting Users to Create Passwordless Passkeys by DefaultAI Isn’t Just About Risk, Says Splunk’s Cyber ChiefNew Report: Child Sexual Abuse Content and Online Risks to Children on the RiseArctic Wolf Acquires Cybersecurity Automation Platform RevelstokeAir Europa Data Breach: Customers Warned to Cancel Credit CardsALPHV Ransomware Gang Claims Attack on Florida Circuit CourtWalmart, Inc. Files Notice of Data Breach Indicating Over 85k VictimsCommunity First Medical Center In Portage Park (IL) Suffers Large-Scale Data BreachIZ1H9 Botnet Targets IoT Devices With New ExploitsD-Link WiFi Range Extender Vulnerable to Command Injection AttacksNew Critical Citrix NetScaler Flaw Exposes ‘Sensitive’ DataMicrosoft October 2023 Patch Tuesday Fixes 3 Zero-Days, 104 FlawsMicrosoft Exchange Gets ‘Better’ Patch to Mitigate Critical BugMicrosoft to Kill Off VBScript in Windows to Block Malware Delivery
10/9/2023 October 9, 2023October 9, 2023 ~ The Cyber Beat ~ Leave a comment Vietnam Agents Tried to Plant Spyware on Phones of U.S. Lawmakers and Journalists: ProbeGaza-Linked Cyber Threat Actor Targets Israeli Energy and Defense SectorsHacktivist Attacks Erupt in Middle East Following Hamas Assault on IsraelX, Formerly Twitter, Amplifies Disinformation Amid the Israel-Hamas ConflictCybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. FirmsHelloKitty Ransomware Source Code Leaked on Hacking ForumInside FTX’s All-Night Race to Stop a $1 Billion Crypto HeistDOJ: Ex-Soldier Tried to Pass Secrets to China After Seeking a ‘Subreddit About Spy Stuff’Cybersecurity Talent in America: Bridging the GapDatacenter Cabling Biz Volex Confirms Digital Break-inHackers Modify Online Stores’ 404 Pages to Steal Credit CardsHackers Hijack Citrix NetScaler Login Pages to Steal CredentialsPEACHPIT: Massive Ad Fraud Botnet Powered by Millions of Hacked Android and iOSOver 17,000 WordPress Sites Hacked in Balada Injector Attacks Last MonthGNOME Linux Systems Exposed to RCE Attacks via File DownloadsHigh-Severity Flaws in ConnectedIO’s 3G/4G Routers Raise Concerns for IoT SecuritySecurity Patch for Two New Flaws in Curl Library Arriving on October 11Navigating the Patchwork of U.S. Privacy and Cybersecurity Laws: Summer 2023 Regulatory Updates
10/6-8/2023 October 8, 2023October 8, 2023 ~ The Cyber Beat ~ Leave a comment Israel at War With Hamas After Unprecedented Attacks…Israel’s Security Forces Face Questions After Hamas Attack…Israel’s Failure to Stop the Hamas Attack Shows the Danger of Too Much Surveillance…Iran Helped Plot Attack on Israel Over Several WeeksIsrael’s Government, Media Websites Hit With CyberattacksUkraine Cyber-Conflict: Hacking Gangs Vow to De-EscalateApple’s Encryption Is Under Attack by a Mysterious GroupSnap AI Chatbot Investigation Launched in UK Over Teen-Privacy ConcernsFTC Warns of ‘Staggering’ Losses to Social Media Scams Since 2021MGM Didn’t Pay Up After Hackers Broke Into Its System and Stole Customer Data…MGM Resorts Ransomware Attack Led to $100 Million Loss, Data TheftBounty Offered for Secret NSA Seeds Behind NIST Elliptic Curves AlgoNorth Korea’s Lazarus Group Launders $900 Million in CryptocurrencyHost of EU Summit Spain Target of DDoS CyberattacksD.C. Board of Elections Confirms Voter Data Stolen in Site HackHackers Are Selling the Data of Millions Lifted From 23andMe’s Genetic DatabaseCDW Data to Be Leaked Next Week After Negotiations With LockBit Break DownFlorida Circuit Court Pauses Many Proceedings Following CyberattackLyca Mobile Says Customer Data Was Stolen During CyberattackThird Flagstar Bank Data Breach Since 2021 Affects 800,000 CustomersSupermicro’s BMC Firmware Found Vulnerable to Multiple Critical VulnerabilitiesGitHub’s Secret Scanning Feature Now Covers AWS, Microsoft, Google, and SlackMicrosoft 365 Admins Warned of New Google Anti-spam Rules
10/5/2023 October 5, 2023October 5, 2023 ~ The Cyber Beat ~ Leave a comment China-Linked Cyberspies Backdoor Semiconductor Firms With Cobalt StrikeChina Poised to Disrupt U.S. Critical Infrastructure with Cyber-Attacks, Microsoft WarnsHackers With AI Are Harder to Stop, Microsoft SaysSouth Korea Accuses North of Phish and Ships AttackScammers Impersonate Companies to Steal Cryptocurrency from Job SeekersCISA and NSA Tackle IAM Security Challenges in New ReportNSA and CISA Reveal Top 10 Cybersecurity MisconfigurationsU.S. Government Proposes SBOM Rules for ContractorsCourt Rules in Favor of Auto-Repair Companies in Car-Data DisputeBlackbaud Settles Data Breach With 49 States, DC for $50 MillionLorenz Ransomware Crew Bungles Blackmail Blueprint by Leaking Two Years of ContactsGuyana Governmental Entity Hit by DinodasRAT in Cyber Espionage AttackGoldDigger Android Trojan Drains Victim Bank AccountsAnalysis and Config Extraction of Lu0Bot, a Node.js Malware with Considerable CapabilitiesQakBot Threat Actors Still in Action, Using Ransom Knight and Remcos RAT in Latest AttacksCISA Warns of Active Exploitation of JetBrains and Windows VulnerabilitiesCritical Glibc Bug Puts Linux Distributions at RiskAmazon to Make MFA Mandatory for ‘Root’ AWS Accounts by Mid-2024Beyond Cybersecurity Awareness Month: Finding A Signal In The NoiseCould Cybersecurity Breaches Become Harmless in the Future?Zero-Days for Hacking WhatsApp Are Now Worth Millions of Dollars
10/4/2023 October 5, 2023October 5, 2023 ~ The Cyber Beat ~ Leave a comment LightSpy iPhone Spyware Linked to Chinese APT41 GroupRed Cross Issues Wartime Hacktivist RulesBadbox & Peachpit: Your Cheap Android TV Streaming Box May Have a Dangerous BackdoorPolice Issue “Quishing” Email WarningThe Team Helping Women Fight Digital Domestic AbuseBlackBerry to Separate IoT and Cybersecurity Businesses, Plans IPOClorox Says Sales and Profit Took a Big Hit From CyberattackA Tool to Help Boards Measure Cyber ResilienceHow to Measure Patching and Remediation PerformancePatch Confusion for Critical Exim Bug Puts Email Servers at Risk — AgainSony Confirms Data Breach Impacting Thousands in the U.S.Lyca Mobile Suffers Cyber Attack, Investigating Ransomware PossibilityWeather Network Says Ransomware Attack Caused Website and App Outages in SeptemberHundreds of Malicious Python Packages Found Stealing Sensitive DataMicrosoft Warns of Cyber Attacks Attempting to Breach Cloud via SQL Server InstanceRogue npm Package Deploys Open-Source Rootkit in New Supply Chain AttackAtlassian Patches Critical Confluence Zero-Day Exploited in AttacksCisco Fixes Hard-Coded Root Credentials in Emergency ResponderApple Emergency Update Fixes New Zero-Day Used to Hack iPhones
10/3/2023 October 4, 2023October 4, 2023 ~ The Cyber Beat ~ Leave a comment NATO Says It Is Addressing an Apparent Cyberattack After Strategy Documents Posted OnlineFederal Appeals Court Extends Limits on Biden Admin Comms With Social Media Companies to Top U.S. Cyber AgencyPredator Spyware Linked to Madagascar’s Government Ahead of Presidential ElectionNSA Establishes AI Security CenterCompanies Want to Spend More on AI to Defeat Hackers, but There’s a CatchRansomware Crisis, Recession Fears Leave CISOs in Tough SpotUpstream Supply Chain Attacks Triple in a YearImproving Cybersecurity With AWS’s Threat Intelligence Honeypot SystemGoogle Is Making It Harder for Bulk Senders to Fill Your Gmail With SpamEvilProxy Uses Indeed.com Open Redirect for Microsoft 365 PhishingFBI Most-Wanted Russian Hacker Reveals Why He Burned His PassportRock County (WI) Dealing With Ransomware Attack on Public Health DepartmentRagnar Ransomware Gang Posts 30GB of Data It Claims Belongs to Victorian Network Pacific Real EstateRichmond-Based Freight Transport Company Estes Express Lines Experiences CyberattackMetro Transit (MO) Steadily Recovering From Cyber AttackGreater Dallas Healthcare Enterprises Data Breach Affects Patients’ Medical InfoFortiGuard Uncovers Deceptive Install Scripts in npm PackagesWarning: PyTorch Models Vulnerable to Remote Code Execution via ShellTorchNew ‘Looney Tunables’ Linux Bug Gives Root on Major DistrosQualcomm Releases Patch for 3 new Zero-Days Under Active ExploitationMicrosoft Edge, Teams Get Fixes for Zero-Days in Open-Source Libraries
10/2/2023 October 3, 2023October 3, 2023 ~ The Cyber Beat ~ Leave a comment KillNet Claims DDoS Attack Against Royal Family WebsiteNearly 100,000 Industrial Control Systems Exposed to the InternetKrebs: Don’t Let Zombie Zoom Links Drag You DownAI-Generated Phishing Emails Almost Impossible to Detect, Report FindsFBI Warns of Surge in ‘Phantom Hacker’ Scams Impacting ElderlyCybersecurity Awareness Month Celebrates 20 YearsCybersecurity Professional Job-Satisfaction Realities for National Cybersecurity Awareness MonthMicrosoft Defender No Longer Flags Tor Browser as MalwareYes, Singapore Immigration Plans to Scan Your Face Instead of Your PassportNorway Urges Europe-Wide Ban on Meta’s Targeted Ad Data CollectionMotel One Discloses Data Breach Following Ransomware AttackIndia’s National Logistics Portal Exposed Sensitive Personal Data, Trade RecordsFauquier County Public Schools (VA) Open Despite LockBit Ransomware AttackBunnyLoader Malware Targets Browsers and CryptocurrencySilent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment BusinessesRansomware Gangs Now Exploiting Critical TeamCity RCE FlawExploit Available for Critical WS_FTP Bug Exploited in AttacksOpenRefine’s Zip Slip Vulnerability Could Let Attackers Execute Malicious CodeArm Issues Patch for Mali GPU Kernel Driver Vulnerability Amidst Ongoing ExploitationExim Patches Three of Six Zero-Day Bugs Disclosed Last Week
9/29-10/1/2023 October 1, 2023October 1, 2023 ~ The Cyber Beat ~ Leave a comment North Korean Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace FirmIranian APT Group OilRig Using New Menorah Malware for Covert OperationsRussian Company Offers $20M for Non-NATO Mobile ExploitsKrebs: A Closer Look at the Snatch Data Ransom GroupPhishing, Smishing Surge Targets U.S. Postal ServiceAmazon Sends Mastercard, Google Play Gift Card Order Emails by MistakeDiscord Is Investigating Cause of ‘You Have Been Blocked’ ErrorsHow to Tell When Your Phone Will Stop Getting Security UpdatesHow to Stop Google Bard From Storing Your Data and LocationCybersecurity Budgets Grow, But at a Slower PaceShinyHunters Member Pleads Guilty to $6 Million in Data Theft DamagesUK PhD Student Guilty of 3D-Printing ‘Kamikaze’ Drone for Islamic State TerroristsRoyal Family Website ‘Targeted in Russian Cyber Attack’Large Michigan Healthcare Provider McLaren Confirms Ransomware AttackTahoe Forest Hospital District (CA) Notifies Patients of Data BreachPinal County Schools (AZ) Affected by Ransomware AttackCloudflare DDoS Protections Ironically Bypassed Using CloudflareCybercriminals Using New ASMCrypt Malware Loader to Fly Under the RadarMeet LostTrust Ransomware — A likely Rebrand of the MetaEncryptor GangNew Critical Security Flaws Expose Exim Mail Servers to Remote AttacksExploit Released for Microsoft SharePoint Server Auth Bypass FlawCisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation AttemptsProgress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP ServerPeople Still Matter in Cybersecurity Management
9/27-28/2023 September 28, 2023September 28, 2023 ~ The Cyber Beat ~ Leave a comment U.S., Japan Authorities Warn of China-Linked Hacking Group BlackTech Attacking Cisco RoutersBudworm APT Evolves Toolset, Targets Telecoms and GovernmentMicrosoft Breach Led to Chinese Theft of 60,000 U.S. State Dept EmailsChina’s National Security Minister Rates Fake News Among the Most Pressing Cyber Threats of the Present DayTikTok Employees Say Executive Moves to U.S. Show China Parent’s InfluenceChina’s Chip Equipment Firms See Revenue Surge as Beijing Seeks Semiconductor Self-RelianceFive Alleged Russian Spies Appear in London CourtKrebs: ‘Snatch’ Ransom Group Exposes Visitor IP AddressesWhy Do Employees Keep Ignoring Workplace Cybersecurity Rules?FBI: Dual Ransomware Attack Victims Now Get Hit Within 48 Hours4 Legal Surprises You May Encounter After a Cybersecurity IncidentThe Anatomy of a Facebook Account HeistSecurity Researcher Stopped at U.S. Border for Investigating Crypto ScamThe Maker of ShotSpotter Is Buying the World’s Most Infamous Predictive Policing TechU.S. Gov’t Contractor Maximus Says MOVEit Hackers Accessed Health Data of ‘at Least’ 8 Million Individuals…MOVEit Maker Announces New Critical Vulnerability Affecting a Different File Transfer ToolBuilding Automation Giant Johnson Controls Hit by Ransomware AttackRussian Flight Booking System Suffers ‘Massive’ CyberattackDallas: Royal Ransomware Gang Infiltrated Networks Weeks Before StrikingRansomed.vc Group Hits NTT Docomo After Sony Breach ClaimsAndroid Banking Trojan Zanubis Evolves to Target Peruvian UsersBing Chat Responses Infiltrated by Ads Pushing MalwareGitHub Repositories Hit by Password-Stealing Commits Disguised as Dependabot ContributionsSSH Keys Stolen by Stream of Malicious PyPI and npm PackagesCisco Catalyst SD-WAN Manager Flaw Allows Remote Server AccessCisco Urges Admins to fix IOS Software Zero-Day Exploited in AttacksGoogle Releases Patch for Actively Exploited Zero-Day Vulnerability
9/26/2023 September 26, 2023September 26, 2023 ~ The Cyber Beat ~ Leave a comment Chinese Hackers TAG-74 Targets South Korean Organizations in a Multi-Year CampaignRising Cyberattacks on Schools Put Students at RiskWhy the Public Sector Is an Easy Target for RansomwareHalf of Cyber-Attacks Go Unreported4 Pillars for Building a Responsible Cybersecurity Disclosure ProgramCISA Publishes Hardware Bill of Materials FrameworkGPUs From All Major Suppliers Are Vulnerable to New Pixel-Stealing AttackCIA Builds Its Own Artificial Intelligence Tool in Rivalry With ChinaTech Giants Launch Post-Quantum Cryptography CoalitionMicrosoft is Rolling out Support for Passkeys in Windows 11Palo Alto Networks in Advanced Talks to Buy Talon and Dig in a $1B Security SweepSickKids Impacted by BORN Ontario Data Breach That Hit 3.4 MillionNew AtlasCross Hackers Use American Red Cross as Phishing LurePhilippines State Health Org Struggling to Recover From Ransomware AttackSony Investigates Cyberattack as Hackers Fight Over Who’s ResponsibleNew ZeroFont Phishing Tricks Outlook Into Showing Fake AV-ScansZenRAT Malware Uncovered in Bitwarden ImpersonationShadowSyndicate Investigation Reveals RaaS TiesROBOT Crypto Attack on RSA is Back as Marvin ArrivesHackers Actively Exploiting Openfire Flaw to Encrypt ServersCritical JetBrains TeamCity Flaw Could Expose Source Code and Build Pipelines to AttackersGoogle Assigns New Maximum Rated CVE to libwebp Bug Exploited in Attacks
9/25/2023 September 25, 2023September 25, 2023 ~ The Cyber Beat ~ Leave a comment Voting Equipment Giants Team Up For SecurityUkrainian Military Targeted in Phishing Campaign Leveraging Drone ManualsChina-Linked EvilBamboo Targets MobilesYour Boss’s Spyware Could Train AI to Replace YouGoogle is Retiring Its Gmail Basic HTML View in January 2024The Hot Seat: CISO Accountability in a New Era of SEC RegulationMOVEit: BORN Ontario Child Registry Data Breach Affects 3.4 Million PeopleHackers Threaten to Sell Stolen Sony Data on Dark WebProgressive Leasing Warns That Sensitive Information Was Stolen During CyberattackWeb3 Platform Mixin Network Hit by $200m Crypto HackXenomorph Android Malware Now Targets U.S. Banks and Crypto Wallets
9/22-24/2023 September 24, 2023September 24, 2023 ~ The Cyber Beat ~ Leave a comment Russian Hackers Seek War Crimes Evidence, Ukraine Cyber Chief SaysGovernment of Bermuda Links Cyberattack to Russian HackersRecently Patched Apple, Chrome Zero-Days Exploited in Spyware Attacks…New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator SpywareEvasive Gelsemium Hackers Spotted in Attack Against Asian Gov’t‘Power, Influence, Notoriety’: The Gen-Z Hackers Who Struck MGM, CaesarsOver 700 Dark Web Ads Offer DDoS Attacks Via IoT in 2023The Shocking Data on Kia and Hyundai Thefts in the U.S.LastPass: ‘Horse Gone Barn Bolted’ is Strong Password (Krebs)Cisco’s Splunk Deal Shows Allure of AI in CybersecurityESA Gets the Job of Building Europe’s Secure Satcomms NetworkRansomware Groups are Increasingly Targeting Small Businesses…SMBs Face Growing Cybersecurity Threats, but Basic Measures Can Lower RisksCISA and NFL Collaborate to Secure Super Bowl LVIIIU.S. Government IT Staffer Arrested on Espionage ChargesNigerian Man Pleads Guilty to Attempted $6 Million BEC Email HeistIranian Nation-State Actor OilRig Targets Israeli OrganizationsNational Student Clearinghouse Data Breach Impacts 890 SchoolsAuckland University of Technology Operating Despite CyberattackHong Kong Consumer Council Falls Victim to Ransom Hackers, Data BreachFake Celebrity Photo Leak Videos Flood TikTok With Temu Referral CodesLingerie Group Wacoal Hit by Cyber AttackHotel Hackers Redirect Guests to Fake Booking.com to Steal CardsCrypto Firm Nansen Asks Users to Reset Passwords After Vendor BreachDallas Says Royal Ransomware Breached Its Network Using Stolen AccountT-Mobile Denies New Data Breach Rumors, Points to Authorized RetailerDeadglyph: New Advanced Backdoor with Distinctive Malware TacticsNew Variant of Banking Trojan BBTok Targets Over 40 Latin American BanksAkira Ransomware Mutates to Target Linux Systems, Adds TTPsHigh-Severity Flaws Uncovered in Atlassian Products and ISC BIND ServerHow Much Cybersecurity Expertise Do Boards Really Have? Not Much.