6/23/2022 June 23, 2022June 23, 2022 ~ The Cyber Beat ~ Leave a comment NSO Confirms Pegasus Spyware Used by at least 5 European CountriesGoogle Warns of New Spyware from RCS Labs Targeting iOS and Android UsersConti Ransomware Hacking Spree Breaches Over 40 Orgs in a MonthBusinesses Risk ‘Catastrophic Financial Loss’ From Cyberattacks, U.S. Watchdog WarnsLess Than Half of Organizations Have Open Source Security PolicyLithuania Warns of Rise in DDoS Attacks Against Government SitesScalper Bots Out of Control in Israel, Selling State AppointmentsHalfords Suffers a Puncture in the Customer Details DepartmentAvamere Health Services Breach Impacts Nursing and Senior Living EmployeesChinese Hackers Use Ransomware as Decoy for Cyber EspionageFancy Bear Uses Nuke Threat Lure to Exploit 1-Click BugNew MetaMask Phishing Campaign Uses KYC Lures to Steal PassphrasesMalicious Windows ‘LNK’ Attacks Made Easy With New Quantum BuilderCISA: Log4Shell Exploits Still Being Used to Hack VMware Servers
6/22/2022 June 23, 2022June 23, 2022 ~ The Cyber Beat ~ Leave a comment Israeli Air Raid Sirens Triggered in Possible CyberattackMicrosoft: Russia Stepped up Cyberattacks Against Ukraine’s AlliesTech Executives Urge Government to Share Cyber Threat IntelTech Firms Cut Staff Amid Recession FearsCyber Funding, Plentiful for Years, Faces a Reckoning80% of Firms Suffered Identity-Related Breaches in Last 12 MonthsGamification of Ethical Hacking and Hacking EsportsKrebs: Meet the Administrators of the RSOCKS Proxy BotnetBrave Now Lets You Customize Search Results—for Better or Worse‘Mysterious’ Company Sued to Expose Billionaire’s Twitter CriticChinese Hackers ‘Tropic Trooper’ Target Script Kiddies With Info-Stealer TrojanJapanese Automotive Hose Maker Nichirin Hit by Ransomware AttackYale New Haven Hospital Research File Implicated in Healthcare Data BreachGuardian Fueling Technologies (FL) Announces Data BreachHot Tub Crime Machine: Jacuzzi Smart Tubs Left Personal Info ExposedRIG Exploit Kit Now Infects Victims’ PCs With Dridex Instead of Raccoon StealerCritical PHP Flaw Exposes QNAP NAS Devices to RCE AttacksResearchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage ServiceMEGA Fixes Critical Flaws That Allowed the Decryption of User DataNSA Shares Tips on Securing Windows Devices With PowerShell
6/21/2022 June 22, 2022June 22, 2022 ~ The Cyber Beat ~ Leave a comment Biden Signs Cyber Bills Into LawFormer NSA Chief Warns of Russian Cyberattacks Against U.S. Financial SectorRussian Gov’t Hackers Hit Ukraine With Cobalt Strike, CredoMap MalwareKazakhstan Gov’t Used Spyware Against ProtestersReport: Daycare Monitoring Apps Are ‘Dangerously Insecure’Magecart Attacks Are Still Around: And They Are Becoming More StealthyHPE Tackles Cyber Skills Shortage with Hands-On ExperiencePhishing Gang Behind Millions in Losses Dismantled by PoliceTwitter Board Recommends Elon Musk Takeover BidCloudflare Outage Knocks Hundreds of Websites OfflineYodel Parcel Company Confirms Cyberattack Is Disrupting DeliveryAcorda Therapeutics (NY) Announces Data Breach After Compromised EmailsRobert Half International Reports Data Breach Affecting Consumers’ SSNsBrooks County (TX) Pays off Hacker With Tax Dollars After Ransomware AttackNew Toddycat Apt Targets MS Exchange Servers in Europe and Asia7-Zip Now Supports Windows ‘Mark-Of-The-Web’ Security FeatureAdobe Acrobat May Block Antivirus Tools From Monitoring PDF Files
6/20/2022 June 21, 2022June 21, 2022 ~ The Cyber Beat ~ Leave a comment What the Russia-Ukraine War Means for the Future of Cyber WarfareSecurity Flaw In Strava, A Social Fitness App, Exposed Identities Of Israeli Soldiers At Military BasesKrebs: Why Paper Receipts are Money at the Drive-ThruNew ‘BidenCash’ Site Sells Your Stolen Credit Card for Just 15 CentsRansomware Attacks: This Is the Data That Cyber Criminals Really Want to StealGoogle Chrome Extensions Could Be Used to Track Users OnlineThe Ghost of Internet Explorer Will Haunt the Web for YearsVoicemail Phishing Emails Steal Microsoft CredentialsFlagstar Bank Discloses Data Breach Impacting 1.5 Million Customers81,000+ Social Security Numbers Leaked in Quality Temporary Services (MI) Data BreachBaptist Health (TX) Announces Data Breach Affecting PatientsSimpson University (CA) Confirms Data Breach Leaked Information of 6,000+ StudentsNew DFSCoerce NTLM Relay Attack Allows Windows Domain TakeoverGoogle Researchers Detail 5-Year-Old Apple Safari Vulnerability Exploited in the WildCISA and Friends Raise Alarm on Critical Flaws in Industrial Equipment, Infrastructure
6/17-19/2022 June 19, 2022 ~ The Cyber Beat ~ Leave a comment Leaked Audio From 80 Internal TikTok Meetings Shows That U.S. User Data Has Been Repeatedly Accessed From ChinaU.S., EU Plan Joint Foreign Aid for Cybersecurity to Counter ChinaNSO Group’s Reported Sale to U.S. Defense Contractor Alarms Cybersecurity ExpertsAndroid-wiping BRATA Malware is Evolving Into a Persistent ThreatYouTube Removes Video From Jan 6 Panel Including Trump’s Election MisinformationFormer Amazon Employee Paige Thompson Convicted Over 2019 Capital One HackCookie Consent Crumbles Under Fresh UK Data Law ProposalsUK Approves Assange Extradition to U.S., WikiLeaks Says It Will AppealPersonal Details of 15,000 Memorial University (NL) Students Leaked in Accidental Data Breach to Other StudentsWilkins Recreational Vehicles (NY) Reports Data Breach Following Conti Ransomware AttackNew Phishing Attack Infects Devices With Cobalt StrikeAtlassian Confluence Flaw Being Used to Deploy Ransomware and Crypto MinersOver a Dozen Flaws Found in Siemens’ Industrial Network Management SystemQNAP NAS Devices Targeted by Surge of eCh0raix Ransomware AttacksQNAP ‘Thoroughly Investigating’ New DeadBolt Ransomware AttacksCisco Says It Won’t Fix Zero-Day RCE in End-Of-Life VPN Routers
6/16/2022 June 17, 2022June 17, 2022 ~ The Cyber Beat ~ Leave a comment U.S., Partners Dismantle Russian Hacking ‘RSOCKS’ Botnet, Justice Dept SaysCyber-Criminals Smuggle Ukrainian Men Across BorderIran State-Sponsored Phishing Attack Targeted Israeli Military OfficialsPolice Linked to Hacking Campaign to Frame Indian ActivistsCorporate Network Access Selling for Under $1000 on Dark WebCalifornian Man iCloud Hacker Gets 9 Years in Prison for Stealing Nude PhotosWhite House to Tackle Online Harassment, Abuse With New Task ForceMicrosoft Defender Launches on Windows, macOS, iOS, and AndroidRSAC Branded a ‘Super Spreader Event’ as Attendees Share COVID-19 Test ResultsIndia’s Allahabad University Website Crashes During Exam, Cyber Attack SuspectedNakedPages Phishing Toolkit is Now Available on Cybercrime ForumsAndroid Spyware ‘Hermit’ Discovered in Targeted AttacksMetaMask, Phantom Warn of Flaw That Could Steal Your Crypto WalletsAnker Eufy Smart Home Hubs Exposed to RCE Attacks by Critical FlawHigh-Severity RCE Vulnerability Reported in Popular Fastjson LibrarySophos Firewall Zero-Day Bug Exploited Weeks Before FixA Microsoft Office 365 Feature Could Help Ransomware Hackers Hold Cloud Files Hostage730K WordPress Sites Force-Updated to Patch Critical Plugin BugDemocratizing Cybersecurity
6/15/2022 June 16, 2022June 16, 2022 ~ The Cyber Beat ~ Leave a comment Russia Is Taking Over Ukraine’s InternetBabushka Z: The Woman Who Became a Russian Propaganda IconTravel-related Cybercrime Takes Off as Industry ReboundsAllison Inn & Spa (OR) Hit by Unusual Cyberattack; Employee Data, Guests’ Names Posted on InternetHeineken Says There’s No Free Beer, Warns of Phishing ScamHit by a Cyberattack? Hackers Will Probably Come After You Again – Within a YearRansomware Negotiation Evolves, as Victims Hope for DiscountsMusk Predicts ‘Massive Red Wave‘, Teases Creation of ‘Super Moderate Super PAC’Flashpoint Announces Cybersecurity Platform for K-12Interpol Seizes $50 Million, Arrests 2000 Social Engineers24+ Billion Credentials Circulating on the Dark Web in 2022 — So FarData Breach at U.S. Ambulance Billing Service Comstar Exposed Patients’ Healthcare InfoGoodman Campbell Brain and Spine (IN) Announces Data Breach After Ransomware AttackPanchan: A New Golang-based Peer-To-Peer Botnet Targeting Linux ServersMaliBot: A New Android Banking Trojan Spotted in the WildHackers Exploit Three-Year-Old Telerik Flaws to Deploy Cobalt StrikeCritical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass AuthenticationCitrix Warns Critical Bug Can Let Attackers Reset Admin PasswordsSAP Patches Critical NetWeaver and ABAP Platform VulnerabilitiesKrebs: Microsoft Patch Tuesday, June 2022 EditionMicrosoft: June Windows Server Updates May Cause Backup Issues
6/14/2022 June 15, 2022June 16, 2022 ~ The Cyber Beat ~ Leave a comment Ukraine Has Begun Moving Sensitive Data Outside Its BordersThe War in Ukraine Has Exposed a Critical American VulnerabilityCybersecurity in the Pacific: How Island Nations Are Building Their Online DefencesVeterans Explain How Military Service Prepared Them for Cybersecurity CareersThe Unrelenting Threat of Ransomware Is Pushing Cybersecurity Workers to QuitHacker Advertises ‘Crappy’ Ransomware on InstagramKrebs: Ransomware Group Debuts Searchable Victim DataWhy a Bipartisan Data Privacy Proposal Faces Uphill BattleLawmakers Make Bipartisan Push for New Government Powers to Block U.S. Investments in ChinaBrazil’s Data Protection Authority to Gain Independence From Presidential OfficeShanghai’s Censors Can’t Hide Stories of the DeadFormer U.S. State Agency CIO, IT Exec Plead Guilty to Bribery and Extortion SchemeMicrosoft to Acquire Foreign Cyberthreat Analysis Vendor MiburoFirefox Now Blocks Cross-Site Tracking by Default for All UsersMalaysia-Linked DragonForce Hacktivists Attack Indian TargetsCloudflare Saw Record-Breaking DDoS Attack Peaking at 26 Million Request Per SecondLarge Southern Africa Supermarket Chain Shopright Hit With RansomwareAllaire Health Services Announces Data BreachCHI Health (WA) Says Cybersecurity Breach May Have Exposed Some Patients’ DataAndroid Malware on the Google Play Store Gets 2 Million DownloadsUnpatched Travis CI API Bug Exposes Thousands of Secret User Access TokensNew Hertzbleed Side-Channel Attack Affects Intel, AMD CPUsNew Zimbra Email Vulnerability Could Let Attackers Steal Your Login CredentialsTechnical Details Released for ‘SynLapse’ RCE Vulnerability Reported in Microsoft AzureMicrosoft June 2022 Patch Tuesday Fixes 1 Zero-Day, 55 Flaws…Microsoft’s Final Patch Tuesday Fixes Follina BugBotched and Silent Patches From Microsoft Put Customers at Risk, Critics Say
6/13/2022 June 14, 2022June 14, 2022 ~ The Cyber Beat ~ Leave a comment Russian Hackers Start Targeting Ukraine With Follina ExploitsTop Cyber Official Says Transformation Needed in CyberspaceWorld Economic Forum Wants a Global Map of Online CrimeCybersecurity Skills Gap a Mounting Concern in AsiaIn Security, Less Is MoreFDNY Calls for Digital Firewall to Protect Rescue Workers From Cyber-AttacksApple CEO Tim Cook Pushes Senate For Privacy LegislationApple Wants to End Passwords for Everything: Here’s How It Would WorkCISA Recommends Organizations Update to the Latest Version of Google ChromeGoogler Suspended After Claiming AI Became SentientKrebs: “Downthem” DDoS-for-Hire Boss Gets 2 Years in PrisonQuestions to Improve Enterprise Cybersecurity AwarenessKaiser Permanente Data Breach Exposes Health Data of 69K PeopleIndia’s Farmers Exposed by New Aadhaar Data Leak700 Patients’ Private Information Stolen in Avera Data BreachPerkins & Co. Announces Data Breach Related to Incident at Cloud-Hosting Company NetgainHackers Clone Coinbase, MetaMask Mobile Wallets to Steal Your CryptoChinese ‘Gallium’ Hackers Using New PingPull Malware in Cyberespionage AttacksNew Syslogk Linux Rootkit Uses Magic Packets to Trigger BackdoorHelloXD Ransomware Installing Backdoor on Targeted Windows and Linux SystemsMicrosoft: Exchange Servers Hacked to Deploy Blackcat RansomwarePyPI Package ‘Keep’ Mistakenly Included a Password StealerResearchers Disclose Rooting Backdoor in Mitel IP Phones for BusinessesMetasploit 6.2.0 Improves Credential Theft, SMB Support Features, More
6/10-12/2022 June 12, 2022June 12, 2022 ~ The Cyber Beat ~ Leave a comment Conti’s Attack Against Costa Rica Sparks a New Ransomware EraJob Cuts Hit Cybersecurity Industry Despite Surging Growth From Ransomware AttacksCybersecurity Courses Ramp up Amid Shortage of ProfessionalsIn an Ever Evolving Landscape, CISOs Shift Their PrioritiesIntroducing ‘Hack Me if You Can,’ a New Podcast SeriesResearchers Find Bluetooth Signals Can be Fingerprinted to Track SmartphonesKrebs: Adconion Execs Plead Guilty in Anti-Spam CaseIranian Lycaeum APT Target Energy Sector With New DNS BackdoorPyramid Consulting Group (NY) Data Breach Leaked 3,000 Social Security NumbersVulns Targeting InfiRay Thermal Cameras May Result in Industrial Process HackingHackers Exploit Recently Patched Confluence Bug for CryptominingConfluence Servers Hacked to Deploy AvosLocker, Cerber2021 RansomwarePacman: MIT Researchers Discover New Flaw in Apple M1 CPUs That Can’t Be Patched
6/9/2022 June 9, 2022June 9, 2022 ~ The Cyber Beat ~ Leave a comment Russia Says West Risks ‘Direct Military Clash’ Over Cyber AttacksDark Web Sites Selling Alleged Western Weapons Sent to UkraineFeds Forced Travel Firms to Share Surveillance Data on HackerNew Privacy Framework for IoT Devices Gives Users Control Over Data SharingHow Poor Communication Opens the Door to Ransomware and ExtortionYouTube Accused of Failing to Tackle Fake Elon Musk Livestream ScamsTwitter Set to Agree to Elon Musk Request For Data on Fake AccountsBizarre Ransomware Sells Decryptor on Roblox Game Pass StoreChinese Hacking Group Aoqin Dragon Quietly Spied Orgs for a DecadeEllsworth (KS) Warns Residents of Ransomware AttackFred Hutch Center Center (WA) Data Breach: Unauthorized Hack of Employee EmailAdviceOne (CT) Announces Data BreachVice Society Ransomware Claims Attack on Italian City of PalermoNew Ultra-Stealthy Linux Backdoor ‘Symbiote’ Isn’t Your Everyday Malware DiscoveryHackers Can Steal Your Tesla by Creating Their Own KeysMicrosoft Defender Now Isolates Hacked, Unmanaged Windows DevicesXage Releases New Tool to Battle MFA Bombing in Critical Infrastructure
6/8/2022 June 9, 2022June 9, 2022 ~ The Cyber Beat ~ Leave a comment Disinfo and Hate Speech Flood TikTok Ahead of Kenya’s ElectionsUkraine’s Secret Cyber-Defense That Blunts Russian Attacks: Excellent BackupsHow a Saxophonist Tricked the KGB by Encrypting Secrets in MusicBeware of Scams Involving Jobs, Stimulus Checks and Tax Refunds, IRS WarnsWork Remains in Fight Against RansomwarePaying Ransomware Paints Bigger Bullseye on Target’s BackRansomware Pressure Forces UK CISOs to Consider QuittingKali Linux Team to Stream Free Penetration Testing Course on TwitchBipartisan Antitrust Bill Sponsors Push for Floor Vote This MonthMassive Facebook Messenger Phishing Operation Generates MillionsAustralian Chinese News Site Hit by Cyber Attack, Media ReportsTenafly Public Schools (NJ) Final Exams Canceled After Ransomware Cripples ComputersOnDeck Breach of Social Security Numbers and Financial Account InfoPoisoned CCleaner Search Results Spread Information-Stealing MalwareEmotet Malware Now Steals Credit Cards From Google Chrome UsersCuba Ransomware Returns to Extorting Victims With Updated EncryptorLinux Botnets Now Exploit Critical Atlassian Confluence BugIntel Offers ‘Server on a Card’ Reference Design for Network Security
6/7/2022 June 8, 2022June 8, 2022 ~ The Cyber Beat ~ Leave a comment U.S.: Chinese Gov’t Hackers Breached Telcos to Snoop on Network TrafficKrebsOnSecurity in New Netflix Series on CybercrimeCyber-Attack Surface “Spiralling Out of Control”Elevated Cyber Threats Are the ‘New Normal’An Emerging Threat: Attacking 5G Via Network SlicesSenators Gillibrand, Lummis Introduce Major Cryptocurrency BillIBM Buys Startup Randori to Address Multicloud Security MessesApple’s Rapid Security Response Will Push Faster Updates That Install on Macs Without a RebootApple’s Safety Check Combats Domestic Abuse but Timing Its Use Is CriticalU.S. Seizes SSNDOB Market for Selling Personal Info of 24 Million PeopleShields Health Care Group Data Breach Affects 2 Million PatientsOnline U.S. Gun Shops, Including Numrich Gun Parts, Hacked to Steal Credit CardsProthena Corporation, PLC Confirms Data Breach Following Compromised Employee Email AccountResearchers Warn of Spam Campaign Targeting Victims with SVCReady MalwareLinux Version of Black Basta Ransomware Targets VMware ESXi ServersFollina Exploited by State-Sponsored HackersQBot Malware Now Uses Windows MSDT Zero-Day in Phishing AttacksAndroid June 2022 Updates Bring Fix for Critical RCE VulnerabilityNew ‘DogWalk’ Windows Zero-Day Bug Gets Free Unofficial Patches
6/6/2022 June 6, 2022June 6, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Officials’ Phones Targeted by Hackers -Cyber WatchdogAt Least Three Russian Ministry Website Reportedly HackedCosta Rican Government Held up by Ransomware … Again… This Time by HiveRansomware Gangs Now Give Victims Time to Save Their ReputationRansomware Attacks Have Dropped. And Gangs Are Attacking Each Other’s VictimsMeet the Vigilantes Who Hack Millions in Crypto to Save It From ThievesAlphaBay Is Taking Over the Dark Web—AgainLastPass’ Mobile App Offers Access to Your Desktop Vault Without a Master PasswordApple Demos Safari’s ‘Passkeys’ Support in macOS Ventura That Will Help Bring an End to PasswordsElon Musk Threatens to Pull Out of Twitter Deal Without More Information About Fake AccountsWindows Zero-Day Exploited in U.S. Local Gov’t Phishing AttacksItalian City of Palermo Shuts Down All Systems to Fend Off CyberattackTexas Gulf Bank Confirms Data Breach From Unauthorized Access to Employee Email AccountsRainier Arms Reports Data Breach Impacting the Credit Card Numbers of 46K+ Customers‘Move-to-Earn’ Application Stepn Suffers Cyber Attack After UpgradeMandiant: “No Evidence” We Were Hacked by LockBit RansomwareQBot Now Pushes Black Basta Ransomware in Bot-Powered AttacksCISA Warned About Critical Vulnerabilities in Illumina’s DNA Sequencing DevicesUnpatched Critical Flaws Disclosed in U-Boot Bootloader for Embedded DevicesThe U.S. Isn’t Getting Ahead on Cyber Security Threats
6/3-5/2022 June 5, 2022June 5, 2022 ~ The Cyber Beat ~ Leave a comment A Digital Conflict Between Russia and Ukraine Rages on Behind the Scenes of WarMicrosoft Disrupts Bohrium Hackers’ Spear-Phishing OperationApple Blocked 1.6 Millions Apps From Defrauding Users in 2021Americans Report Losing Over $1 Billion to Cryptocurrency ScamsBusiness Email Compromise: The Hacker Gold Rush That’s Poised to Eclipse RansomwareEvasive Phishing Mixes Reverse Tunnels and URL Shortening ServicesKrebs: What Counts as “Good Faith Security Research?”Tim Hortons Coffee App Broke Law by Constantly Recording Users’ MovementsGoogle Settles Lawsuit With Illinois Residents for $100M: May 1, 2015, and April 25, 2022Key Congressional Lawmakers Draft Competing Data Privacy BillsLouisiana Authorities Investigating Ransomware Attack on City of AlexandriaEMC National Life Company Announces Data BreachMedicare Issuing New Cards to Residents of the Villages (FL) After Data BreachNovartis Says No Sensitive Data Was Compromised in CyberattackBored Ape Yacht Club, Otherside NFTs Stolen in Discord Server HackWatchDog Hacking Group Launches New Docker Cryptojacking CampaignSMSFactory Android Malware Sneakily Subscribes to Premium ServicesExploit Released for Atlassian Confluence RCE Bug, Patch NowAtlassian Releases Patch for Confluence Zero-Day Flaw Exploited in the WildGitLab Issues Security Patch for Critical Account Takeover Vulnerability
6/2/2022 June 2, 2022June 2, 2022 ~ The Cyber Beat ~ Leave a comment Tehran Municipality Websites Hit by Possible Hacking, Iranian Agency SaysChinese LuoYu Hackers Deploy Cyber-Espionage Malware via App UpdatesSouth Korean Special Forces Captain Charged With Spying for North KoreaRussian Linked Ransomware Groups Rebrand to Dodge SanctionsRansomware Gang Now Hacks Corporate Websites to Show Ransom NotesU.S. Technology, a Longtime Tool for Russia, Becomes a VulnerabilityExpressVPN Removes Servers in India After Refusing to Comply with Government Order45% Of Cybersecurity Professionals Have Considered QuittingFoxconn Confirms Ransomware Attack Disrupted Production in MexicoOwner of Dodge’s Southern Stores, D&H Company, Reports Data BreachScammers Target NFT Discord ChannelClipminer Malware Gang Stole $1.7M by Hijacking Crypto PaymentsTop 10 Android Banking Trojans Target Apps With 1 Billion DownloadsConti Spotted Working on Exploits for Intel Management Engine FlawsCritical UNISOC Chip Vulnerability Affects Millions of Android SmartphonesMicrosoft Blocks Polonium Hackers From Using Onedrive in Attacks
6/1/2022 June 1, 2022June 1, 2022 ~ The Cyber Beat ~ Leave a comment Cyber Command Chief Confirms U.S. Took Part in Offensive Cyber OperationsLine Between Criminal Hackers and Nation-State Threats Blurs, U.S. Officials SayCloud Computing Dominates. But Security Is Now the Biggest ChallengeU.S. Gov’t: Paying Karakurt Extortion Ransoms Won’t Stop Data LeaksRansomware Attacks Need Less Than Four Days to Encrypt SystemsWhat if Ransomware Evolved to Hit IoT in the Enterprise?Sheryl Sandberg Steps Down From MetaAuthorities Seize Domain Names After Probe Into Sales of Stolen Personal InformationEuropol Confirms Takedown of SMS-based FluBot SpywareFormer OpenSea Head of Product Charged With NFT Insider TradingFBI Thwarted Cyberattack Against Boston Children’s HospitalHundreds of Elasticsearch Databases Targeted in Ransom AttacksTelegram’s Blogging Platform Abused in Phishing AttacksRuneScape Phishing Steals Accounts and In-Game Item Bank PINsSideWinder Hackers Plant Fake Android VPN App in Google Play StoreNew Unpatched Horde Webmail Bug Lets Hackers Take Over Server by Sending EmailNew Windows Search Zero-Day Added to Microsoft Protocol NightmareWindows MSDT Zero-Day Vulnerability Gets Free Unofficial PatchCybersecurity Startup Ordr Nabs $40M to Monitor Connected Devices for AnomaliesThe Race to Hide Your Voice
5/31/2022 June 1, 2022June 1, 2022 ~ The Cyber Beat ~ Leave a comment Ukrainian Officials Report ‘Shutdown of All Communications’ in Kherson RegionLatest Cyberattack in Costa Rica Targets Hospital SystemKrebs: Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade SanctionsCyber Defense Confidence Ebbs as Ransomware Attacks MultiplyNew Research: Increase in Cyber Vulns for Small and Medium Sized BusinessesWindows MSDT Zero-Day Now Exploited by Chinese APT HackersFBI Warns of Ukrainian Charities Impersonated to Steal DonationsHackers Steal WhatsApp Accounts Using Call Forwarding TrickSupreme Court Temporarily Blocks Texas Social Media LawTurkish Airline Exposes Flight and Crew Info in 6.5TB LeakOver 3.6 Million MySQL Servers Found Exposed on the InternetAfter Hive Cyberattack, Partnership HealthPlan of California Confirms Data Theft Affecting 855KAlbany Bank & Trust Co. (IL) Reports Data Breach Following Data Security IncidentChristiana Spine Center (DE) Latest Spine Practice to Suffer Ransomware AttackMirror Protocol $2M Hack; Here’s What HappenedMagniber Ransomware Now Targets Windows 11 MachinesNew XLoader Botnet Uses Probability Theory to Hide Its ServersMicrosoft Shares Mitigation for Office Zero-Day ExploitedYou Need to Update iOS, Chrome, Windows, and Zoom ASAP
5/30/2022 May 30, 2022May 30, 2022 ~ The Cyber Beat ~ Leave a comment Rumours Continue About Putin’s Health – With Little to Back Them UpAnonymous Claims Attacks Against Belarus for Involvement in Russian Invasion of UkraineIndian Authorities Issue Conflicting Advice About Biometric ID Card SecurityVodafone Plans Carrier-Level User Tracking for Targeted AdsItaly Warns Organizations to Brace for Incoming DDoS AttacksData Breach at Australian Pension Provider Spirit Super Impacts 50K Victims After PhishingZero-Day ‘Follina’ Bug Lays Older Microsoft Office Versions Open to AttackThree Nigerians Arrested for Malware-Assisted Financial Crimes
5/27-29/2022 May 29, 2022May 29, 2022 ~ The Cyber Beat ~ Leave a comment Russian Hackers Believed to Be Behind Leak of Hard Brexit PlansBlackCat/ALPHV Ransomware Asks $5 Million to Unlock Austrian StateThe Mystery of China’s Sudden Warnings About U.S. HackersCISA Publishes 5G Security Evaluation Process PlanInformation Security Gets Personal: How to Protect Yourself and Your StuffMobile Trojan Detections Rise as Malware Distribution Level DeclinesIntuit Warns of QuickBooks Phishing Threatening to Suspend AccountsMicrosoft to Force Better Security Defaults for All Azure AD TenantsSpiceJet Defers Q4 Earnings Announcement After Ransomware AttackSomerset County (NJ) Switches Over to Gmail to Keep Agencies Running Following Ransomware AttackPhysical Security Teams’ Impact Is Far-ReachingYubo Livestreaming App Cooperating With Law Enforcement on Texas Shooting InvestigationNew York Man Sentenced to Four Years in Transnational Cybercrime SchemeStolen University Credentials up for Sale by Russian Crooks, FBI WarnsNJ Talent Firm Voto Consulting Exposed Thousands of Resumes, Detailing Immigration Statuses and Security ClearancesHacker Accesses a Verizon Employee Database and Tries to Ransom the Data for $250,000GitHub: Attackers Stole Login Details of 100K NPM User AccountsOptoma Technology (CA) Confirms Data Breach Stemming From Recent Ransomware AttackPatient Info, SSNs, Compromised in Allwell Behavioral Health Services (OH) BreachRegina Public Schools (SK) Remain Offline, Cyber Attack ConfirmedPortland (OR) Lost $1.4M in a ‘Cybersecurity Breach’Clop Ransomware Gang Is Back, Hits 21 Victims in a Single MonthNew Windows Subsystem for Linux Malware Steals Browser Auth CookiesEnemyBot Malware Adds Exploits for Critical VMware, F5 Big-IP FlawsMicrosoft Finds Critical Bugs in Pre-Installed Apps on Millions of Android Devices
5/26/2022 May 26, 2022May 26, 2022 ~ The Cyber Beat ~ Leave a comment Industrial Spy Data Extortion Market Gets Into the Ransomware GameThree-quarters of Security Pros Believe Current Cybersecurity Strategies Will Shortly Be ObsoleteAttribution Is Key to Holding Cyber Criminals AccountableCybergang Claims REvil Is Back, Executes DDoS AttacksMost CFOs Being Left Out of Ransomware Conversations10 Tips to Develop Cybersecurity Knowledge Within OrganizationsSpring Cleaning Checklist: Keep Your Devices Safe at WorkGoogle Urged to Stop Tracking Location Data Ahead of Roe ReversalBroadcom Is Acquiring VMware for $61 BillionGoogle Is Adding These IT Security Integrations to ChromeWindows 11 KB5014019 Breaks Trend Micro Ransomware ProtectionCyber Attack, Threat of Bad Weather Can’t Stop Whitmer High School (OH) GraduationMillions of People’s Info Stolen From MGM Resorts Dumped on Telegram for FreeAustria’s Carinthia Halts Passport Issuance Over Ransomware AttackAlameda Health System (CA) Files Notice of Recent Data BreachNew ERMAC 2.0 Android Malware Steals Accounts, Wallets From 467 AppsCritical ‘Pantsdown’ BMC Vulnerability Affects QCT Servers Used in Data CentersZyxel Warns of Flaws Impacting Firewalls, APs, and ControllersOAS Platform Vulnerable to Critical RCE and API Access FlawsTails OS Users Advised Not to Use Tor Browser Until Critical Firefox Bugs are PatchedExploit Released for Critical VMware Auth Bypass Bug, Patch NowMicrosoft Shares Mitigation for Windows KrbRelayUp LPE Attacks
5/25/2022 May 25, 2022May 26, 2022 ~ The Cyber Beat ~ Leave a comment Beijing Needs the Ability to ‘Destroy’ Starlink, Say Chinese ResearchersIran Used Secret U.N. Records to Evade Nuclear ProbesFeds Say Twitter Used Contact Info Collected for Security Purposes to Target AdsInterpol Arrest Leader of SilverTerrier Cybercrime Gang Behind BEC AttacksGlobal Oil and Gas Companies Join Pledge for Cyber ResilienceVerizon Report: Ransomware, Human Error Among Top Security RisksLumos System Can Find Hidden Cameras and IoT Devices in Your Airbnb or Hotel RoomHacker Says Hijacking Libraries, Stealing AWS Keys Was Ethical ResearchSpiceJet Airline Passengers Stranded After Ransomware AttackData Breach at Scarborough Health Network Hospitals (ON) Possibly Exposed Patient InfoData Breach Nederlander Theatrical Corp (NY) Compromises Over 14,000 Names and SSNsDarknet Market Versus Shuts Down After Hacker Leaks Security FlawTails 5.0 Linux Users Warned Against Using It “For Sensitive Information”New ‘Cheers’ Linux Ransomware Targets VMware ESXi ServersNew ChromeLoader Malware Surge Threatens Browsers WorldwideBPFDoor Malware Uses Solaris Vulnerability to Get Root Privileges
5/24/2022 May 24, 2022May 24, 2022 ~ The Cyber Beat ~ Leave a comment Hacked Police Computer Servers: The Faces From China’s Uyghur Detention CampsPersonal Data of Tens of Millions of Russians and Ukrainians Exposed OnlineHackers Target Russian Gov’t With Fake Windows Updates Pushing RATsRussian Diplomat Warns Against Global ‘Cyber Confrontation’Open Source Intelligence May Be Changing Old-School WarMicrosoft Warns of Web Skimmers Mimicking Google Analytics and Meta Pixel CodeA Favorite of Cybercriminals and Nation States, Ransomware Incidents Increase AgainIBM Is Helping These Schools Build Up Their Ransomware DefensesSenate Report Reveals Gaps in Data Collection on Ransomware PaymentsFacebook Opens Political Ad Data Vaults to ResearchersDuckDuckGo Browser Allows Microsoft Trackers Due to Search AgreementMicrosoft: Credit Card Stealers Are Getting Much StealthierIP and Cybersecurity Disputes Are Top Legal Concerns for Tech CompaniesGeneral Motors Hit by Cyber-Attack Exposing Car Owners’ Personal InfoWashington University of St. Louis School of Medicine Notifies Patients of Data BreachJackson County Hospital (TX) Announces Data Breach Affecting Patient and Employee DataCyber Attack Shuts Down Somerset County (NJ) EmailData Breach Reported at Schneck Medical Center (IN): Patient SSN’s ExposedNew Chaos Ransomware Builder Variant “Yashma” Discovered in the WildScreencastify Chrome Extension Flaws Allow Webcam HijacksPopular Python and PHP Libraries Hijacked to Steal AWS KeysResearchers to Release Exploit for New VMware Auth Bypass, Patch NowPatch Now: Zoom Chat Messages Can Infect PCs, Macs, Phones With MalwareTrend Micro Fixes Bug Chinese Hackers Exploited for EspionageMozilla Fixes Firefox, Thunderbird Zero-Days Exploited at Pwn2OwnCISA Adds 41 Vulnerabilities to List of Bugs Used in Cyberattacks
5/23/2022 May 23, 2022May 23, 2022 ~ The Cyber Beat ~ Leave a comment Military-Made Cyberweapons Could Soon Become Available on the Dark Web, Interpol WarnsSouth Korean and U.S. Presidents Gang Up on North Korea’s Cyber-OffensivesRussian Hackers Perform Reconnaissance Against Austria, EstoniaFronton: Russian IoT Botnet Designed to Run Social Media Disinformation CampaignsAnonymous Declares Cyber-War on Pro-Russian Hacker Gang KillnetHow GDPR Is FailingPorsche Rolls Out Board-Approved Privacy StrategyBroadcom in Talks to Pay About $60 Billion for VMwareMark Zuckerberg Sued Over Cambridge Analytica Data BreachHackers Breach Zola Wedding Registry Accounts and Make Fraudulent PurchasesOnline Classes Resume After Cyber Attack at Kalamazoo Valley Community College (MI)New RansomHouse Group Sets up Extortion Market, Adds First VictimsPhotos of Abused Victims Used in New ID Verification ScamCharity Or Cybercrime? Goodwill Ransomware Cracks Your Decryption If You DonateFake Windows Exploits Target Infosec Community With Cobalt StrikeNew Unpatched Bug Could Let Attackers Steal Money from PayPal UsersHackers Can Hack Your Online Accounts Before You Even Register Them
5/20-22/2022 May 22, 2022May 22, 2022 ~ The Cyber Beat ~ Leave a comment Canada Bans Huawei Equipment From 5G Networks, Orders Removal by 2024Microsoft Bing Censors Politically Sensitive Chinese TermsAmerica’s Small Businesses Aren’t Ready for a CyberattackConti Ransomware Shuts Down Operation, Rebrands Into Smaller UnitsGoogle Chat Adds Warning Banners to Protect Against Phishing AttacksGoogle Antitrust: Bipartisan Congress Bill Latest in Legal Troubles Over Advertising PracticesCrypto Might Have an Insider Trading ProblemElon Musk Deep Fakes Promote New Cryptocurrency ScamUK Sextortion Cases Doubled in 2021SolarWinds Ready to Move Past Breach and Help Customers Manage TheirsWindows 11 Hacked Again at Pwn2Own, Telsa Model 3 Too…Windows 11 Hacked Three More Times on Last Day of Pwn2Own ContestFears Grow for Smaller Nations After Ransomware Attack on Costa Rica EscalatesRussian Sberbank Says It’s Facing Massive Waves of DDoS AttacksRansomware Attack Exposes Data of 500,000 Chicago Public School Students…Vendor Battelle for KidsTrust Stamp, a Facial Recognition Company With ICE Contract, Exposed Data in BreachGoogle: Predator Spyware Infected Android Devices Using Zero-DaysPDF Smuggles Microsoft Word Doc to Drop Snake Keylogger MalwareResearchers Find Backdoor in School Management Plugin for WordPressMalicious PyPI Package Opens Backdoors on Windows, Linux, and MacsCisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild
5/19/2022 May 19, 2022May 19, 2022 ~ The Cyber Beat ~ Leave a comment Biden Says Sweden and Finland Have the ‘Full Backing’ of the United States to Join NATORussian-Backed Hackers Behind Disinformation Campaigns Intended to Divide UkraineIran, China-Linked Gangs Join Putin’s Disinformation War OnlineNorth Korean Hackers Weaponize COVID Outbreak in Latest Cyber AttackSpyware Vendors Target Android With Zero-Day ExploitsPhishing Websites Now Use Chatbots to Steal Your CredentialsMajority of Kubernetes API Servers Exposed to the PublicJustice Department Pledges Not to Charge Security Researchers With Hacking CrimesMI5 Agent Used Secret Status to Terrorise GirlfriendCyber Boot Camps Fall Short for Some StudentsHalf of IT Leaders Store Passwords in Shared DocsMicrosoft Teams, Windows 11 Hacked on First Day of Pwn2OwnMedia Giant Nikkei’s Asian Unit Hit by Ransomware AttackDeKalb (GA) Student Newspaper Exposes Data Leak in District’s Online NetworkAgile Sourcing Partners (CA) Suffers Data Breach Due to Conti Ransomware AttackGreenland Says Health Services ‘Severely Limited’ After CyberattackRussian Fronton Botnet Does Far More Than DDoS Attacks – And on a Massive ScaleQNAP Alerts NAS Customers of New DeadBolt Ransomware AttacksRansomware Gangs Rely More on Weaponizing VulnerabilitiesMicrosoft Detects Massive Surge in Linux XorDDoS Malware ActivityNew Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and CarsLazarus Hackers Target VMware Servers With Log4Shell Exploits
5/18/2022 May 19, 2022May 19, 2022 ~ The Cyber Beat ~ Leave a comment Costa Rican President Says Country Is ‘at War’ With Conti Ransomware GroupU.S. Saw Signs of Decline in Russian Ransomware Strikes at Start of Ukraine WarNATO Cyber Coordinators Hold First-Ever Meeting Amid Russia’s InvasionThis Hacktivist Site Lets You Prank Call Russian OfficialsKrebs: Senators Urge FTC to Probe ID.me Over Selfie DataLiveness Tests Used by Banks to Verify ID Are ‘Extremely Vulnerable’ to Deepfake AttacksGoogle’s DeepMind Says It Is Close to Achieving ‘Human-Level’ Artificial IntelligenceNew York Attorney General to Probe Social Media Companies’ Role in Buffalo ShootingCyber Insurers Raise Rates Amid a Surge in Costly HacksAPTs Overwhelmingly Share Known Vulnerabilities Rather Than Attack O-DaysResearchers Expose Inner Workings of Billion-Dollar Wizard Spider Cybercrime GangU.S. Recovers $15 Million From Global Kovter Ad Fraud OperationSpanish Police Dismantle Phishing Gang That Emptied Bank AccountsChinese ‘Space Pirates’ Are Hacking Russian Aerospace FirmsPharmacy Giant Dis-Chem Hit By Data Breach Affecting 3.6 Million CustomersWashington Local Schools (OH) Hit With Cyber Attack on WednesdayBank of Zambia Hit by Ransomware Trolls Hackers With Dick PicsFake Crypto Sites Lure Wannabe Thieves by Spamming Login CredentialsCritical Jupiter WordPress Plugin Flaws Let Hackers Take Over SitesHackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in UtilityApril VMware Bugs Abused to Deliver Mirai Malware, Exploit Log4ShellVMware Patches Critical Auth Bypass Flaw in Multiple ProductsDHS Orders Federal Agencies to Patch VMware Bugs Within 5 DaysCISA Shares Guidance to Block Ongoing F5 BIG-IP AttacksFBI and NSA Say: Stop Doing These 10 Things That Let the Hackers In
5/17/2022 May 18, 2022May 18, 2022 ~ The Cyber Beat ~ Leave a comment Ransomware Gang Hacks Costa Rica, Asks Residents to Overthrow the GovernmentU.S. Warns Over Risk of Hiring North Korea Spies Posing As IT WorkersKrebs: When Your Smart ID Card Reader Comes With MalwareCybersecurity Agencies Reveal Top Initial Access Attack VectorsHTML Attachments Remain Popular Among Phishing Actors in 2022Google Will Start Distributing a Security-Vetted Collection of Open-Source Software LibrariesMicrosoft Defender for Endpoint Gets New Troubleshooting ModeU.S,. Cyber Officials Express Confidence Over ‘Significant Progress’ in Federal SecurityLocal Government’s Guide to Minimizing the Risk of a CyberattackChina Has Signaled Easing of Its Tech Crackdown — But Don’t Expect a Policy U-TurnMusk, Twitter CEO Spar Over Bot Accounts, Tanking Share PriceRansomware Hits American Healthcare Company OmnicellAuction.com Data Breach Due to Conti Ransomware AttackChristus Health (TX) Experienced Unauthorized Activity on Its Computer NetworkMore Than 90,000 South Australian Public Servants Now Involved in 2021 Payroll Data BreachHackers Target Tatsu WordPress Plugin in Millions of AttacksPentester Pops Open Tesla Model 3 Using Low-Cost Bluetooth ModuleMicrosoft Warns of “Cryware” Info-Stealing Malware Targeting Crypto WalletsUpdateAgent Returns with New macOS Malware Dropper Written in SwiftDigital Skimming is Now the Preserve of Non-Magecart GroupsNVIDIA Fixes Ten Vulnerabilities in Windows GPU Display DriversCISA Warns Admins to Patch Actively Exploited Spring, Zyxel Bugs
5/16/2022 May 16, 2022May 16, 2022 ~ The Cyber Beat ~ Leave a comment Sweden Warns of Russian Cyber Retaliation Over NATO Membership MoveUkraine Supporters in Germany Targeted With PowerShell Rat MalwareCyber Attack on Costa Rica Grows as More Agencies Hit, President SaysResearchers Devise iPhone Malware That Runs Even When Device Is Turned OffChina Has Been Quietly Building a Blockchain Platform: Here’s What We KnowU.S. Courts Are Coming After Crypto Exchanges That Skirt SanctionsU.S. Charges Venezuelan Doctor With Selling Ransomware Used by Iranian GroupSan Francisco Police Use Driverless Cars for SurveillanceU.S. Manufacturing Giant Parker Hit by Conti Ransomware GangCovenant Care California Reports Data BreachTexas Department of Insurance Exposed Personal Info of 1.8 Million, Audit SaysApple Emergency Update Fixes Zero-Day Used to Hack Macs, WatchesMicrosoft’s May Patch Tuesday Updates Cause Windows AD Authentication Errors…CISA ‘Temporarily’ Removes Windows Vulnerability From Its Must-Patch ListKali Linux 2022.2 Released With 10 New Tools, WSL Improvements, and MoreThird-Party Web Trackers Log What You Type Before Submitting
5/13-15/2022 May 16, 2022May 16, 2022 ~ The Cyber Beat ~ Leave a comment Finland, Sweden’s NATO Moves Prompt Fears of Russian CyberattacksGoogle Chrome Updates Failing on Android Devices in RussiaUkraine: The Spy War Within the WarIranian Hackers Exposed in a Highly Targeted Espionage CampaignItalian CERT: Hacktivists Hit Gov’t Sites in ‘Slow HTTP’ DDoS AttacksPhishing Attack Pop-up Targets MetaMask Users Visiting Popular Crypto SitesShopping for Malware: $260 Gets You a Password Stealer. $90 for a Crypto-Miner…The NSA Swears It Has ‘No Backdoors’ in Next-Gen EncryptionEU Agrees New Cybersecurity Legislation for Critical Services OrganizationsOpen Source Community Hands White House 10-Point Security PlanCrypto Robber Who Lured Victims via Snapchat and Stole £34,000 JailedAngry IT Admin Wipes Employer’s Databases, Gets 7 Years in PrisonAnonymous Bulletin Board App Yik Yak Is Revealing Its Users’ Exact LocationsCyberattacks Reported by McKenzie Health System (MI) & Omnicell (CA)Personal Information Breached in Elgin County (ON) Cyber Security AttackCyber Mistake: Cincinnati Inadvertently Posted Employees’ Personal Data OnlineFake Pixelmon NFT Site Infects You With Password-Stealing MalwareFake Binance NFT Mystery Box Bots Steal Victim’s Crypto WalletsNew Saitama Backdoor Targeted Official From Jordan’s Foreign MinistryMicrosoft: Sysrv Botnet Targets Windows, Linux Servers With New ExploitsHackers Exploiting Critical Bug in Zyxel Firewalls & VPNsSonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 DevicesMicrosoft Fixes New PetitPotam Windows NTLM Relay Attack VectorJust in Time? Bosses Are Finally Waking up to the Cybersecurity Threat