4/26/2023 April 26, 2023April 26, 2023 ~ The Cyber Beat ~ Leave a comment Evasive Panda’s Backdoor MgBot Delivered Via Chinese Software Updates…Tencent QQ Users Hacked in Mysterious Malware Attack, Says ESETAlloy Taurus Hackers Update PingPull Malware to Target Linux SystemsCharming Kitten’s New BellaCiao Malware Discovered in Multi-Country AttacksUkrainian Arrested for Selling Data of 300M People to RussiansDoJ, Treasury Accuses 3 Men of Laundering Crypto for North KoreaGoogle Disrupts the CryptBot Info-Stealing Malware OperationCyber Chiefs Forge Partnerships With Physical Security Units as Combined Threats GrowA U.S. Bill Would Ban Kids Under 13 From Joining Social MediaTinder Is Implementing Video Verification to Further Curb Creepy ScammersMicrosoft Probes Complaints of Edge Leaking Urls to BingHR Firm StaffScapes Discloses Data BreachAstral Brands Discloses Data BreachCyberattack Disrupts Lowell (MA) City Government, Shuts Down ComputersTruman State University (MO) Slowly Recovering From ‘Cybersecurity Virus Attack’Students’ Psychological Reports, Abuse Allegations Leaked by Minneapolis Schools Ransomware HackersApache Superset Vulnerability: Insecure Default Configuration Exposes Servers to RCE AttacksCisco Discloses XSS Zero-Day Flaw in Server Management ToolPrestaShop Fixes Bug That Lets Any Backend User Delete DatabasesCritical Flaw Patched in VMware Workstation and FusionGoogle will add End-to-End encryption to Google AuthenticatorEffects of the Hive Ransomware Group TakedownThere’s No Silver Bullet for Cybersecurity
4/25/2023 April 25, 2023April 25, 2023 ~ The Cyber Beat ~ Leave a comment Lazarus Subgroup Targeting Apple Devices with New RustBucket macOS MalwareIranian Hackers “Educated Manticore” Target Israel With New ToolsU.S. Sent Teams into Foreign Networks to Hunt SolarWinds, Microsoft HackersA Security Team Is Turning ‘Gootloader’ Malware Gang’s Tricks Against ItZero Trust for Zoom Calls: ChromeOS Getting Universal Microphone/Camera TogglesOpenAI Rolls Out ‘Incognito Mode’ on ChatGPTGoogle Authenticator Now Backs up Your 2FA Codes to the CloudPrince William Got ‘Very Large Sum’ in Phone Hack SettlementData Security Breach May Have Left Jewel-Osco Employees’ Information ExposedCIC Group Notifies Individuals of Recent Data BreachIMA Financial Group (KS) Files Notice of 2022 Data BreachPaperCut Says Hackers Are Exploiting ‘Critical’ Security Flaws in Unpatched ServersNew SLP Vulnerability Could Let Attackers Launch 2200x Powerful DDoS AttacksTP-Link Archer WiFi Router Flaw Exploited by Mirai MalwareVMware Fixes Critical Zero-Day Exploit Chain Used at Pwn2OwnWhen Companies Get Stuck In A Cybersecurity Loop
4/24/2023 April 24, 2023 ~ The Cyber Beat ~ Leave a comment 3CX Hackers Also Compromised Critical Infrastructure FirmsRussian Hackers Suspected in Ongoing Exploitation of Unpatched PaperCut ServersTomiris and Turla APT Groups Collaborate to Target Government EntitiesGoogle Debuts Cybersecurity-Focused AI SystemIntel Let Google Cloud Hack New Secure Chips and Found 10 BugsGoogle Authenticator Finally, Mercifully Adds Account Syncing for Two-Factor CodesVirusTotal Now Has an AI-Powered Malware Analysis FeatureCloud Complexity Means Bugs Are Missed in TestingScammers Impersonate Meta in Facebook Campaign With 3200 ProfilesIntel CPUs Vulnerable to New Transient Execution Side-Channel AttackAPC Warns of Critical Unauthenticated RCE Flaws in UPS SoftwareU.S. Navy Contractor Fincantieri Marine Group Hit by Cyber-attackYellow Pages Canada Confirms Cyber Attack as Black Basta Leaks DataSan Bernardino County Sheriff’s Office Struggling to Recover From ‘Malware’ IncidentAlbertsons Companies Files Notice of Data Breach Following Malware AttackGateway Casinos Confirms IT Outage Caused by a Ransomware CyberattackRobeson Health Care Corporation Reports Data Breach Affecting Over 15k IndividualsKuCoin’s Twitter Account Hacked to Promote Crypto ScamNaivas Confirms Cyber Attack on Systems by a Criminal OrganizationHacker Demands Ransom After ‘Taking Control’ of Wiltshire School’s ITMicrosoft 365 Search Outage Affects Outlook, Teams, and SharepointRansomware Hackers Using AuKill Tool to Disable EDR Software Using BYOVD Attack
4/21-23/2023 April 23, 2023April 23, 2023 ~ The Cyber Beat ~ Leave a comment European Air Traffic Control Confirms Website ‘Under Attack’ by Pro-Russia HackersRussian Mercenaries Sympathetic to Putin Target UK With Cyber Threats Over War in UkraineChina Developing Anti-Satellite WeaponsBiden’s Order Against Commercial Spyware Is ‘Upsetting the Market’Hacker Group Names Are Now Absurdly Out of ControlThe Car Thieves Using Tech Disguised Inside Old Nokia Phones and Bluetooth SpeakersKrebs: 3CX Breach Was a Double Supply Chain CompromiseNorth Korea’s Kimsuky APT Keeps Growing, Despite Public OutingMullvad VPN Maker Says Police Tried to Raid Its Offices but Couldn’t Find Any User DataChatGPT Won’t Take Over From Humans for Now, Says Infosys FounderGoogle Bard Can Now Help Write Software CodeWhen Apple Comes Calling, ‘It’s the Kiss of Death’American Bar Association Data Breach Hits 1.4 Million MembersAccounting Firm Rubino & Company Files Official Notice of Data BreachKubernetes RBAC Exploited in Large-Scale Campaign for Cryptocurrency MiningLily Collins — The Hack, Not the Actress — Wants Your Facebook AccountUniversity Websites Using MediaWiki, TWiki Hacked to Serve Fortnite SpamEvil Extractor Targets Windows Devices to Steal Sensitive DataTrojanized Installers Used to Distribute Bumblebee MalwareDecoy Dog Malware Toolkit Found After Analyzing 70 Billion DNS QueriesGhostToken Flaw Could Let Attackers Hide Malicious Apps in Google Cloud PlatformGitHub Now Allows Enabling Private Vulnerability Reporting at ScaleIntel Prioritizes Security in Latest vPro ChipsThe Tangled Web of IR Strategies
4/20/2023 April 20, 2023April 20, 2023 ~ The Cyber Beat ~ Leave a comment 3CX Hack Caused by Supply Chain Attack at Stock Trading Automation Company Trading TechnologiesGoogle: Ukraine Targeted by 60% Of Russian Phishing Attacks in 2023Consumer Financial Protection Bureau Says Employee Breached Data of 250,000 Consumers in ‘Major Incident’Lawmakers Introduce Bill to Counter Chinese Cyber Threats Against TaiwanHuawei Launches In-House Software System After Being Cut Off From Us ServicesSeagate Hit With $300 Million Penalty for Continuing $1 Billion Relationship With Blacklisted Firm Huawei, Despite U.S. Export ControlsProton Launches an End-To-End Encrypted Password ManagerChatGPT-Related Malicious URLs on the RiseExpert Insight: Dangers of Using Large Language Models Before They Are BakedLazarus Group Adds Linux Malware to Arsenal in Operation Dream JobCapita Has ‘Evidence’ Customer Data Was Stolen in Digital BurglaryLockBit Ransomware Reportedly Strikes Venezuela’s Largest BankCyber Attack Reportedly Hits Montana State UniversityMedical Imaging Firm Shields Health Care Group, Inc. Announces Third Party Data Breach Affecting Over 2.3 Million PeopleDaggerfly APT Targets African Telecoms Firm With New MgBot MalwareAttackers Use Abandoned WordPress Plugin to Backdoor WebsitesTwo Critical Flaws Found in Alibaba Cloud’s PostgreSQL DatabasesVMware Fixes vRealize Bug That Let Attackers Run Code as Root
4/19/2023 April 19, 2023April 19, 2023 ~ The Cyber Beat ~ Leave a comment March 2023 Broke Ransomware Attack Records With 459 IncidentsRansomware Gangs Abuse Process Explorer Driver to Kill Security SoftwareFortra Shares Findings on GoAnywhere MFT Zero-Day AttacksPopular Fitness Apps Leak Location Data Even When Users Set Privacy ZonesKrebs: Giving a Face to the Malware Proxy Service ‘Faceless’DC Health Link Data Breach Blamed on Human ErrorNurse Call Systems, Infusion Pumps Riskiest Connected Medical DevicesThe Hacker Who Hijacked Matt Walsh’s Twitter Was Just ‘Bored’The iPhone Setting Thieves Use to Lock You Out of Your Apple AccountPatient Seeks to Force Hospital Network to Pay Hackers Ransom to Remove Naked Photos OnlineU.S. Citizens Charged With Pushing Pro-Kremlin Disinfo, Election InterferenceGary Bowser, Former Nintendo Hacker, Released From PrisonNo Prison Time for Ryuk Ransomware Gang Broker After Guilty PleaHackers Got Hacking Wrong, But It Got Entertainment RightPhishing Scams Growing More Sophisticated, Finra SaysGoogle TAG Warns of Russian APT28 Hackers Conducting Phishing Attacks in UkraineBlind Eagle Cyber Espionage Group Strikes Again: New Attack Chain UncoveredPakistani Hackers Use Linux Malware Poseidon to Target Indian Government AgenciesHuntington Ingalls Industries Data Breach Affects 43,643 IndividualsMajor MA, NH Health Insurance Provider Point32Health Hit by Cybersecurity Ransomware AttackWest Technology Group Confirms Employee SSNs Leaked in Recent Data BreachBryant Bank (AL) Data Breach Leaked an Unknown Number of SSNsPlay Ransomware Gang Uses Custom Shadow Volume Copy Data-Theft ToolRaspberry Robin Adopts Unique Evasion TechniquesHackers Actively Exploit Critical RCE Bug in PaperCut ServersMicrosoft SQL Servers Hacked to Deploy Trigona RansomwareGoogle Chrome Hit by Second Zero-Day Attack – Urgent Patch Update ReleasedMicrosoft Defender Update Causes Windows Hardware Stack Protection Mess
4/18/2023 April 18, 2023April 19, 2023 ~ The Cyber Beat ~ Leave a comment Apple’s High Security Mode Blocked NSO Spyware, Researchers SayCyberattack Risks Rise up Company AgendasUsed Routers Often Come Loaded With Corporate SecretsWhat Happened When the IRS Got AuditedWhatsApp, Signal Claim UK Online Safety Bill Threatens User Privacy and SafetyBrit Cops Rapped Over App That Recorded 200K Phone CallsAustralian Military Helicopter Crash Blamed on Failure to Apply Software PatchAvalor Wants to Unify Cybersecurity Tools by Aggregating DataCombatting Cyber Attacks Requires More Than Just MoneyNSO Group’s Pegasus Spyware Found on High-Risk iPhonesRussian APT28 Snoops Just Love Invading Unpatched Cisco Gear, America and UK WarnChinese APT41 Taps Google Red Teaming Tool in Targeted Info-Stealing AttacksMicrosoft: Iranian Mint Sandstorm Hackers Behind Retaliatory Cyberattacks on U.S. OrgsIranian MuddyWater Uses SimpleHelp to Target Critical Infrastructure FirmsUniversity of the People (CA) Data Breach After Unauthorized SharePoint AccessYouTube Videos Distributing Aurora Stealer Malware via Highly Evasive LoaderNew Sandbox Escape PoC Exploit Available for VM2 Library, Patch NowMicrosoft Opens up Defender Threat Intel Library With File Hash, URL Search
4/17/2023 April 17, 2023April 17, 2023 ~ The Cyber Beat ~ Leave a comment Chinese Cops Ran Troll Farm and Secret NY Police Station, U.S. SaysICE Records Reveal How Agents Abuse Access to Secret DataIsraeli Spyware Vendor QuaDream to Shut Down Following Citizen Lab and Microsoft ExposeI Just Discovered My Roomba Can Be a Security CameraMarketing Biz Join the Triboo Limited Sent 107 Million Spam Emails… To Just 437K PeopleStudent Requested Access to Research Data. And Waited. And Waited. Then Hacked to Get Root.Elon Musk to Develop ‘TruthGPT’ as He Warns About ‘Civilizational Destruction’ From AIInsurers Wary of Longer-Term Costs of CyberattacksApple’s Macs Have Long Escaped Ransomware. That May Be Changing…‘Half-Baked’FIN7 and Ex-Conti Cybercrime Gangs Join Forces in Domino Malware AttacksHackers Publish Sensitive Employee Data Stolen During CommScope Ransomware AttackCapita Investigates Authenticity of Ransomware Gang LeaksCharity Data Stolen in Ransomware Attack on Supplier EvideNew Chameleon Android Malware Mimics Bank, Gov’t, and Crypto AppsQBot Banking Trojan Increasingly Delivered Via Business EmailsNew Zaraza Bot Credential-Stealer Sold on Telegram Targeting 38 Web BrowsersHackers Abuse Google Command and Control Red Team Tool in AttacksEngineering Cybersecurity into U.S. Critical Infrastructure
4/14-16/2023 April 17, 2023April 17, 2023 ~ The Cyber Beat ~ Leave a comment Social-Media Account Overseen by Former Navy Noncommissioned Officer Helped Spread SecretsMeet the Hacker Armies on Ukraine’s Cyber Front LineMontana Lawmakers Approve Statewide Ban on TikTokKrebs: Why is ‘Juice Jacking’ Suddenly Back in the News?What Business Needs to Know About the New U.S. Cybersecurity StrategyThe U.S. Cracked a $3.4 Billion Crypto Heist—and Bitcoin’s AnonymityAre You Being Tracked by an AirTag? Here’s How to CheckElon Musk Is Reportedly Planning an A.I. Startup to Compete With OpenAI, Which He CofoundedWhat It Will Look Like if China Launches Cyberattacks in the U.S.How to Define Tier-Zero Assets in Active Directory SecurityNCR Suffers Aloha POS Outage After BlackCat Ransomware AttackWestern Digital Hackers Demand 8-Figure Ransom Payment for DataConsenSys Reports Data Breach Affecting Over 7,000 MetaMask UsersAndroid Malware Infiltrates 60 Google Play Apps With 100M InstallsHackers Start Abusing Action1 RMM in Ransomware AttacksLockBit Ransomware Encryptors Found Targeting Mac DevicesVice Society Ransomware Uses New PowerShell Data Theft Tool in AttacksCISA Warns of Android Bug Exploited by Chinese App to Spy on UsersGoogle Releases Urgent Chrome Update to Fix Actively Exploited Zero-Day Vulnerability
4/13/2023 April 13, 2023April 13, 2023 ~ The Cyber Beat ~ Leave a comment Air Guardsman Arrested in Connection With Leaked Documents…Pentagon Leak Leads to Limits on Who Gets Access to Military’s Top SecretsRussian APT29 Hackers Linked to Widespread Attacks Targeting NATO and EUPakistan-Aligned Hackers Disrupt Indian Education SectorThe Hacking of ChatGPT Is Just Getting StartedEuropean Privacy Watchdog Creates ChatGPT Task ForceFor AI Laws, China Joins the U.S. In Asking the Public to Chime InNew Arkansas Bill to Keep Minors off Social Media Exempts Most Social Media PlatformsWhatsApp Introduces New Device Verification Feature to Prevent Account Takeover AttacksDutch Police Mails RaidForums Members to Warn They’re Being WatchedFive Arrested After 33,000 Victims Lose $98M to Online Investment FraudCyber Company Darktrace Gets Caught up in LockBit Gang’s Apparent BlunderOver 20,000 Iowa Medicaid Members Affected By Data BreachUnlimited Care (NY) Files Notice of Data Breach Affecting More than 29K EmployeesKansas Health Care Company Medicalodges Hit by Ransomware AttackCollegedale (TN) Has Computer Systems Hacked, RestoredRansomware Attack on Suffolk County Began in 2021No Indication of Identity Theft or Fraud in Beacon Health (IN) Data Breach by EmployeeMoney Ransomware Group Enters Double-Extortion FrayGuLoader Targets U.S. Financial Firms With Tax-Themed Phishing LuresRTM Locker: Emerging Cybercrime Group Targeting Businesses with RansomwareNew Python-Based “Legion” Hacking Tool Emerges on TelegramWindows 11 Is Getting a New ‘Presence Sensing’ Privacy SettingGov’t Agencies Urge ‘Revamp’ of Certain Software to Take Cybersecurity Burden off Customers
4/12/2023 April 13, 2023April 13, 2023 ~ The Cyber Beat ~ Leave a comment Lazarus Group’s DeathNote Campaign Reveals Shift in TargetsFBI: How Fake Xi Cops Prey on Chinese Nationals in the U.S.Leaked Pentagon Documents May Herald a New Era of RevelationsCISA Updates Zero Trust Maturity Model With Public FeedbackU.S. Cyber Chiefs Warn AI Will Help Crooks, China Develop Nastier Cyberattacks FasterChatGPT Can Resume in Italy if Meets Data Watchdog’s DemandsEthical Hackers Could Earn up to $20,000 Uncovering ChatGPT VulnerabilitiesNurses Sue CommonSpirit Hospital Chain Over Unpaid Wages After 2022 CyberattackGartner: Human-Centric Design Is Top Cybersecurity Trend for 2023Hyundai Data Breach Exposes Owner Details in France and ItalyGerman Superyacht Maker Lürssen Hit by Ransomware Cyber AttackKyocera Android App With 1M Installs Can Be Abused to Drop MalwareRetina & Vitreous of Texas Files Notice of Data Breach Following Cybersecurity IncidentDDoS Attacks Shifting to VPS Infrastructure for Increased PowerMicrosoft Shares Guidance to Detect BlackLotus UEFI Bootkit AttacksWindows Admins Warned to Patch Critical MSMQ QueueJumper BugKrebs: Microsoft (& Apple) Patch Tuesday, April 2023 EditionWere You Caught up in the Latest Data Breach? Here’s How to Tell
4/11/2023 April 11, 2023April 23, 2023 ~ The Cyber Beat ~ Leave a comment Ukrainian Hackers Say They Have Compromised Russian Spy Who Hacked Democrats in 20163CX Confirms North Korean Hackers Behind Supply Chain AttackiPhones Hacked via Invisible Calendar Invites to Drop QuaDream SpywareHacked Sites Caught Spreading Malware via Fake Chrome Updates‘Blatantly Obvious’: Spyware Offered to Cyberattackers via PyPI Python Repository by ‘SylexSquad’How LockBit Changed Cybersecurity ForeverOpenAI Launches Bug Bounty Program With Rewards up to $20KU.S. Begins Study of Possible Rules to Regulate AI Like ChatGPTFBI and Former City Manager Say Oldsmar (FL) Cyberattack Never Happened7 Things Your Ransomware Response Playbook Is Likely MissingKodi Discloses Data Breach After Forum Database for Sale OnlineLatitude Financial Refuses to Pay RansomWebster Bank Reports Third-Party Data Breach at Guardian AnalyticsHarrington Raceway (DE) Data Breach Leaks Personal Info of More Than 12k IndividualsWoodward Communications (IA) Data Breach Affects 12,467 IndividualsCryptocurrency Stealer Malware Distributed via 13 NuGet PackagesNewly Discovered “By-Design” Flaw in Microsoft Azure Could Expose Storage Accounts to HackersWindows Zero-Day Vulnerability Exploited in Ransomware AttacksMicrosoft April 2023 Patch Tuesday Fixes 1 Zero-day, 97 FlawsSAP Releases Security Updates for Two Critical-Severity Flaws
4/10/2023 April 10, 2023April 10, 2023 ~ The Cyber Beat ~ Leave a comment Pro-Russia Hackers Say They Breached Canadian Pipeline, but Experts Are SkepticalEstonian National Charged in U.S. for Acquiring Electronics and Metasploit Pro for Russian Military‘I’m Sick to My Stomach’: Pentagon Officials Shocked by Intel LeaksHow the Latest Leaked Documents Are Different From Past BreachesFBI Warns Against Using Public Phone Charging StationsHow to Write Better ChatGPT Prompts (And This Applies to Most Other Text-Based AIs, Too)The Human Factor In Cybersecurity: Understanding Social EngineeringInside FTX: Jokes About Misplaced Funds, Diabolical IT, Poor Oversight, and WorseHigh-Stakes Ransomware Response: Know What Cards You HoldApps for Sale: Cybercriminals Sell Android Hacks for Up to $20K a PopApple Fixes Recently Disclosed Zero-Days on Older iPhones and iPadsKFC, Pizza Hut Owner Yum! Brands Discloses Data Breach After Ransomware AttackSD Worx Shuts Down UK Payroll, HR Services After CyberattackRochester Public School Cancels School Monday After Cyber AttackBaldor Specialty Foods Reports Data Breach Impacting the Confidential Info of 13k+ ConsumersHawaiiUSA Federal Credit Union Confirms Recent Data Breach Affected Over 20k CustomersReports of Data Breach at PharMerica Corp Leave Customers Worried About Their Personal InfoHackers Flood NPM with Bogus Packages Causing a DoS AttackKorea-Based Exchange GDAC Suspends Withdrawals, Deposits After $13M HackTerra DeFi Project Terraport Suffers $2M Hack Days After LaunchCommunity on Sushiswap Exploit: The $3.3 Hack Is ‘Weird’CISA Orders Gov’t Agencies to Update iPhones, Macs by May 1st
4/7-9/2023 April 9, 2023April 9, 2023 ~ The Cyber Beat ~ Leave a comment Pentagon Investigates More Social-Media Posts Purporting to Include Secret U.S. Documents…Leaked Pentagon Documents Show Spies Infiltrated Kremlin… and Also in South Korea, Ukraine & UK…Russia’s Military StrugglesBiden Administration Weighs Action Against Russian Cybersecurity Firm Kaspersky LabAmericans Now Fear Cyberattack More Than Nuclear AttackThere’s a New Form of Keyless Car Theft That Works in Under 2 MinutesAmazon Bans Flipper Zero, Claiming It Violates Policy Against Card Skimming Devices‘A Real Worry’: How AI Is Making It Harder to Spot Fake ImagesFBI Warns of Companies Exploiting Sextortion Victims for ProfitBreached Shutdown Sparks Migration to ARES Data Leak ForumsCISA Orders Agencies to Patch Backup Exec Bugs Used by Ransomware GangAll Dutch Gov’t Networks to Use RPKI to Prevent BGP HijackingIran-Based Hackers MuddyWater Caught Carrying Out Destructive Attacks Under Ransomware GuiseTasmanian Data Breach: Schoolchildren’s Info Among 16,000 Documents Leaked on Dark WebUniversity of Hawaii Maui College Announces Recent Data BreachCamden County (NJ) Police Department Confirms Ransomware AttackCulbertson Memorial Hospital (IL) Hit by Cyber-AttackCyber Attack Leaves Irrigation Systems in Upper Galilee DysfunctionalMassive Balada Injector Campaign Attacking WordPress Sites Since 2017Researchers Discover Critical Remote Code Execution Flaw in VM2 Sandbox LibraryApple Releases Updates to Address Zero-Day Flaws in iOS, iPadOS, macOS, and SafariMicrosoft Delays Exchange Online CARs Deprecation Until 2024Bad Actors Will Use Large Language Models — but Defenders Can, TooAustralia Is Scouring the Earth for Cybercriminals — the US Should Too
4/6/2023 April 6, 2023April 6, 2023 ~ The Cyber Beat ~ Leave a comment Two-Fifths of IT Pros Told to Keep Breaches QuietMicrosoft and Fortra Crack Down on Malicious Cobalt Strike ServersThe Dangerous Weak Link in the U.S. Food ChainThreat Actors Increasingly Use Telegram For Phishing PurposesCan Do Attitude: How Thieves Steal Cars Using Network BusTesla Employees Reportedly Passed Around Personal Videos From Owners’ CarsGoogle Mandates Data Deletion Policy For Android AppsPrivacy Concerns Surround Plans for AI Camera Surveillance at 2024 Paris OlympicsCops Put the Squeeze on Genesis Crime Souk Denizens, Not Just the Admins This TimeUK Criminal Records Office Crippled by “Cyber Incident”Legal Powerhouse Proskauer Exposed Clients’ Confidential M&A DataOakland Ransomware Attack Worsens With Massive New Release of Personal InfoMedusa Ransomware Claims Attack on Open University of CyprusMoney Message Ransomware Gang Claims MSI Breach, Demands $4 Million‘BEC 3.0’ Is Here With Tax-Season QuickBooks CyberattacksThrone Fixes Security Bug That Exposed Creators’ Private Home AddressesQNAP ‘Urgently’ Fixing Vulnerabilities in Multiple Systems
4/5/2023 April 5, 2023April 5, 2023 ~ The Cyber Beat ~ Leave a comment Google TAG Warns of North Korean-linked ARCHIPELAGO CyberattacksUK Discloses Offensive Cyber Capabilities PrinciplesSpain’s Most Dangerous and Elusive Hacker Now in Police CustodyKrebs: FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, SuppliersNew Dark Web Market STYX Focuses on Financial Fraud ServicesHere’s Where the A.I. Jobs AreLog4j Bug Being Used in New Malicious AttacksDatabase Snafu Leaks 600K Records from Z2U MarketplaceOur Lady of the Lake University (TX) Notifies Data Breach VictimsCryptoClippy: New Clipper Malware Targeting Portuguese Cryptocurrency UsersTyphon Reborn Stealer Malware Resurfaces with Advanced Evasion TechniquesHackers Using Self-Extracting Archives Exploit for Stealthy Backdoor AttacksOpen Nexx Garage Doors Anywhere in the World by Exploiting This “Smart” Device
4/4/2023 April 5, 2023April 5, 2023 ~ The Cyber Beat ~ Leave a comment In His New Cybersecurity Strategy, Biden Identifies Cloud Security as a Major ThreatBroad Pay Ranges Can Hamper Cybersecurity HiringBank Rewrote Ads for Infosec Jobs to Stop Scaring Away WomenAlcohol Counseling Companies Monument and Tempest Leaked Patient Data to Advertisers for YearsIRS-Authorized eFile.com Tax Return Software Caught Serving JS MalwareKrebs: A Serial Tech Investment Scammer Takes Up Coding?ChatGPT Has a Big Privacy ProblemTikTok Fined £12.7m For Violating UK Data Privacy LawsA Tiny Blog Took on Big Surveillance in China—and WonCybercrime Marketplace Genesis Market Shut by FBI, International Law EnforcementIsraeli Cyber Security Website Check Point Briefly Taken Down in CyberattackArid Viper Hacking Group Using Upgraded Malware in Middle East Cyber AttacksTallahassee Memorial HealthCare Data Breach Affects Patients’ SSNs and PHINew “Rorschach” Ransomware Spread Via Commercial ProductNew Rilide Malware Targeting Chromium-Based Browsers to Steal CryptocurrencyALPHV Ransomware Exploits Veritas Backup Exec Bugs for Initial AccessHP to Patch Critical Bug in LaserJet Printers Within 90 Days15M+ Services & Apps Remain Sitting Ducks for Known ExploitsHow Strategic Investors Can Help Cybersecurity Startups
4/3/2023 April 3, 2023April 3, 2023 ~ The Cyber Beat ~ Leave a comment TikTok to Comply With US Law, Protect User Data From ChinaThe Massive 3CX Supply-Chain Hack Targeted Cryptocurrency Firms…3CX Thought Supply Chain Attack Was a False PositiveApril Brings Tulips, Taxes … And Phisherfolk ScammersICE Is Grabbing Data From Schools and Abortion ClinicsTor Project’s New Privacy-Focused Browser Lets You Layer a VPNOkay, so ChatGPT Just Debugged My Code. For Real.U.S. DoD Unveils Website For Hack the Pentagon Bug Bounty ProgramU.S. Seizes $112 Million From Cryptocurrency Investment ScammersSchool Principal Resigns After Writing $100,000 Check to Elon Musk ImpersonatorWhat The Board Needs To KnowWestern Digital Hit by Network Security Breach – Critical Services DisruptedOutsourcer Capita Claims to Have Contained “Cyber Incident”BMW Claims Data Breach Limited to Local DealerUber Driver Info Stolen Yet Again: This Time From Law Firm Genova BurnsMontgomery General Hospital (WV) Data Breach Following Ransomware AttackSouthwest Healthcare Services (ND) Data Breach Affects Patients’ SSNs and PHICrypto-Stealing OpcJacker Malware Targets Users with Fake VPN ServiceWinRAR SFX Archives Can Run PowerShell Without Being DetectedCISA Warns of Zimbra Bug Exploited in Attacks Against NATO CountriesFor Cybercrime Gangs, Professionalization Comes With ‘Corporate’ Headaches
3/31-4/2/2023 April 3, 2023April 3, 2023 ~ The Cyber Beat ~ Leave a comment 10-Year-Old Windows Bug With ‘Opt-In’ Fix Exploited in 3CX AttackFederal Government Published Social Security Numbers of 1,900 White House VisitorsChina Opens Cybersecurity Probe of Micron Amid Competition With U.S. Over TechnologyItaly Curbs ChatGPT, Starts Probe Over Privacy ConcernsNYPD Blues: Cops Ignored 93 Percent of Surveillance Law RulesLazarus Heist: The Intercontinental ATM Theft That Netted $14M in Two HoursKrebs: German Police Raid DDoS-Friendly Host ‘FlyHosting’DISH Slapped With Multiple Lawsuits After Ransomware Cyber AttackConsumer Lender TMX Discloses Data Breach Impacting 4.8 Million PeopleLumen Hit by Ransomware, Malware AttacksJefferson County (AL) School System Victim of Ransomware Attack During Spring BreakLewis & Clark College Cyberattack Claimed by Notorious Ransomware GangNew Money Message Ransomware Demands Million Dollar RansomsFake Ransomware Gang ‘Midnight’ Targets U.S. Orgs With Empty Data Leak ThreatsHackers Exploiting WordPress Elementor Pro Vulnerability: Millions of Sites at Risk15 Million Public-Facing Services Vulnerable to CISA KEV Flaws
3/30/2023 March 30, 2023March 30, 2023 ~ The Cyber Beat ~ Leave a comment The U.S. Is Sending Money to Countries Devastated by CyberattacksWinter Vivern Hackers Exploit Zimbra Flaw to Steal NATO EmailsLeaked Documents Offer Fascinating Insights Into Russian Cyber WarfareFDA Will Refuse New Medical Devices for Cybersecurity Reasons on Oct. 1Huge Microsoft Azure Exploit Allowed Users to Manipulate Bing Search Results and Access Outlook Email AccountsOver 70% of Employees Keep Work Passwords on Personal DevicesU.S. Court Sanctions Google in Privacy Case, Company’s Second Legal Setback in DaysUkrainian Cyberpolice Busts Fraud Gang That Stole $4.3 MillionChinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG BackdoorBright Horizons Notifies Current and Former Employees of Recent Data BreachMajestic Care Files Notice of Data Breach Affecting Current and Former Residents and StaffThe Health Plan of San Mateo (CA) Data Breach Leaked Personal Info of 11,894 IndividualsAlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud ServicesRealtek and Cacti Flaws Now Actively Exploited by Malware BotnetsCISA Orders Agencies to Patch Bugs Exploited to Drop SpywareMicrosoft OneNote Will Block 120 Dangerous File Extensions
3/29/2023 March 29, 2023March 29, 2023 ~ The Cyber Beat ~ Leave a comment Google Warns Against Commercial Spyware Exploiting Zero-DaysElon Musk and Others Urge AI Pause, Citing ‘Risks to Society’Smart Mobility has a Blindspot When it Comes to API SecurityIn Walmart’s Cyber Risk Formula, Every Bug Has a BackstoryMicrosoft Defender Shoots Down Legit URLs as MaliciousFTX Cryptovillain Sam Bankman-Fried Charged With Bribing Chinese OfficialsMan Behind Hack-for-Hire Campaign That Targeted Environmental Activists Is Keeping His Mouth ShutSafeMoon ‘Burn’ Bug Abused to Drain $8.9 Million From Liquidity PoolUC San Diego Health Data Breach After a Vendor’s Unauthorized Use of Tracking TechnologiesU.S. Wellness (MD) Data Breach Affects 11,459 Patients’ Protected Health InformationData Stolen From Washington County (FL) Sheriff’s Office Leaked by LockBit Ransomware GroupCybersecurity Firms Warn of 3CX Desktop App Supply Chain AttackCybercriminals Set Sights on Critical IBM File Transfer BugQNAP Warns Customers to Patch Linux Sudo Flaw in NAS Devices
3/28/2023 March 29, 2023March 29, 2023 ~ The Cyber Beat ~ Leave a comment Newly Exposed APT43 Hacking Group Targeting U.S. Orgs Since 2018North Korea Is Now Mining Crypto to Launder Its Stolen LootPakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of DefenceKrebs: UK Sets Up Fake Booter Sites To Muddy DDoS MarketMicrosoft Security Copilot Is a New GPT-4 AI Assistant for CybersecurityCybersecurity Workers Demand Higher SalariesMillions of Pen Tests Show Companies’ Security Postures Are Getting WorseThe Pervasive Threat Of Ransomware And Its MisconceptionsLatitude Financial Data Breach Now Impacts 14 Million CustomersModesto Hit by Apparent Snatch Ransomware AttackOklahoma City University Notifies Students and Employees of Data BreachCentral National Bank (TX) Data Breach Affects an Unknown Number of CustomersChildren’s Data Feared Stolen in Fortra Ransomware AttackTrojanized Tor Browsers Target Russians With Crypto-Stealing MalwareStealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in EuropeWiFi Protocol Flaw Allows Attackers to Hijack Network Traffic
3/27/2023 March 27, 2023March 27, 2023 ~ The Cyber Beat ~ Leave a comment President Joe Biden Says U.S. Can’t Buy Spyware That Other Countries Have Used Against ItTwitter Says Parts of Its Source Code Were Leaked Online…Trying to Find the CulpritThey Posted Porn on Twitter: German Authorities Called the CopsFTC Bans Scammy Companies From ‘Calling About Your Car’s Extended Warranty’Exchange Online to Block Emails From Vulnerable On-Prem ServersThe Integral Role of Human Resources Departments in CybersecurityThis Cybersecurity CTO Shares 5 Tips To Better Protect Your CustomersWhat Automation Means For Cybersecurity—And Your BusinessHackers Earn $1,035,000 for 27 Zero-Days Exploited at Pwn2Own VancouverCrown Resorts Says Ransomware Group Claims Accessing Some of Its Files…Clop Keeps Racking Up Ransomware Victims With GoAnywhere FlawAssociates in Dermatology (VA) Breach Stems from Ransomware Attack at VPN SolutionsSun Pharma (India) Admits Business Affected Due to March 2 Ransomware AttackNCB Management Services (PA) Data Breach Affects Nearly a Half-Million ConsumersAtlantic Dialysis Management Services (NY) Breach of Patient InfoFlorida Medical Clinic Notifies Nearly 95,000 People of Recent Data BreachThree Variants of IcedID Malware DiscoveredNew MacStealer Targets Catalina, Newer MacOS VersionsApple Fixes Recently Disclosed WebKit Zero-Day on Older iPhones
3/24-26/2023 March 26, 2023March 26, 2023 ~ The Cyber Beat ~ Leave a comment CISA Unveils Ransomware Notification InitiativeUK National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch CybercriminalsUncle Sam Reveals It Sent Cyber-Soldiers to Albania to Hunt for Iranian Threats‘Bitter’ Espionage Hackers Target Chinese Nuclear Energy OrgsIRS Phishing Emails Used to Distribute EmotetChatGPT’s History Bug May Have Also Exposed Payment Info, Says OpenAI…Open-Source BugAustralian Police Arrest Four BEC Actors Who Stole $1.7 MillionFBI: Business Email Compromise Tactics Used to Defraud U.S. VendorsFBI Confirms Access to Breached Cybercrime Forum DatabaseIndia Shut Down Cell Service for 27 Million During a ManhuntGitHub Swiftly Replaces Exposed RSA SSH Key to Protect Git OperationsThe Strongest Protection for Your Online Accounts? This Little KeyProcter & Gamble Confirms Data Theft via GoAnywhere Zero-DayNew Dark Power Ransomware Claims 10 Victims in Its First MonthKroger Postal Prescription Services Breach Impacts 82,466 ConsumersMaersk Says Posted Data Is Not Current and Not From Attack by HackersWisconsin Court System Affected by DDoS IncidentWashington County (FL) Sheriff’s Office Back to Normal After Cyber AttackRussia’s Rostec Allegedly Can De-Anonymize Telegram UsersInaudible Ultrasound Attack Can Stealthily Control Your Phone, Smart SpeakerMicrosoft Pushes OOB Security Updates for Windows Snipping Tool FlawMicrosoft Teams, Virtualbox, Tesla Zero-Days Exploited at Pwn2OwnWindows, Ubuntu, and VMWare Workstation Hacked on Last Day of Pwn2OwnFortra Told Breached Companies Their Data Was Safe
3/23/2023 March 23, 2023March 23, 2023 ~ The Cyber Beat ~ Leave a comment TikTok Congressional Hearing: CEO Shou Zi Chew Grilled by U.S. LawmakersTikTok Paid for Influencers to Attend the Pro-TikTok Rally in DCAre Chinese Tech Firms a Security Risk?Krebs: Google Suspends Chinese E-Commerce App Pinduoduo Over MalwareStanford Pulls Down ChatGPT Clone After Safety ConcernsJournalist Plugs in Unknown USB Drive Mailed to Him—It Exploded in His FaceWindows 11, Tesla, Ubuntu, and macOS Hacked at Pwn2Own 2023CloudPanel Installations Use the Same SSL Certificate Private KeyNew CISA Tool Detects Hacking Activity in Microsoft Cloud ServicesHow to Use ChatGPT to Write CodeEpidemic of Insecure Storage, Backup Devices Is a Windfall for CybercriminalsMITRE Rolls Out Cloud-Based Prototype for Supply Chain SecurityKids Tech Camp iD Tech Still Silent Weeks After Data BreachCity of Toronto Confirms Data Theft, Clop Claims ResponsibilityAttorneys Say Private Information Exposed to Public in NC Courts OverhaulOttawa County (OH) Officials Working to Restore Network After Ransomware AttackShoreline College (WA) Website Hacked; Officials InvestigatingTri Counties Bank in Chico (CA) Suffers Data Breach After February Cyber AttackChina-Aligned “Operation Tainted Love” Targets Middle East Telecom ProvidersGerman and South Korean Agencies Warn of Kimsuky’s Expanding Cyber Attack TacticsPython Info-Stealing Malware Uses Unicode to Evade DetectionSharePoint Phishing Scam Targets 1600 Across U.S., EuropeBlackGuard Stealer Now Targets 57 Crypto Wallets, ExtensionsExploit Released for Veeam Bug Allowing Cleartext Credential TheftWordPress Force Patching WooCommerce Plugin with 500K InstallsMicrosoft Fixes Acropalypse Privacy Bug in Windows 11 Snipping Tool
3/22/2023 March 22, 2023March 22, 2023 ~ The Cyber Beat ~ Leave a comment The TikTok CEO’s Face-Off With Congress Is DoomedCyberterrorism Tops List of Threats to U.S. Vital Interests: GallupUnknown Actors Deploy Malware to Steal Data in Occupied Regions of UkraineNorth Korean Hackers Using Chrome Extensions to Steal Gmail EmailsGerman Political Parties Accused of Microtargeting Voters on FacebookFacebook Accounts Hijacked by New Malicious Trojanized Version of ChatGPT Chrome ExtensionChatGPT-Owner OpenAI Fixes ‘Significant Issue’ Exposing User Chat TitlesCISA and NSA Enhance Security Framework With New IAM GuideBeloved Hacking Veteran Kelly ‘Aloria’ Lum Passes Away at 41Dole Discloses Employee Data Breach After Ransomware AttackConvergent Outsourcing (WA) Files Notice of Data Breach That Leaked Consumers’ SSNsSunland Asphalt and Construction (AZ) Data Breach Affects 7,884 Individuals’ Personal Info$36M BEC Fraud Attempt Narrowly Thwarted by AI TechnologyHackers Inject Credit Card Stealers Into Payment Processing ModulesNew Android Banking Trojan ‘Nexus’ Promoted As MaaSNAPLISTENER: New Malware in REF2924 Group’s Arsenal for Bypassing DetectionScarCruft’s Evolving Arsenal: Researchers Reveal New Malware Distribution TechniquesPoC Exploits Released for Netgear Orbi Router Vulnerabilities
3/21/2023 March 21, 2023March 21, 2023 ~ The Cyber Beat ~ Leave a comment Putin to Staffers: Throw Out Your iPhones, or ‘Give It to the Kids’ and Use Russian or Chinese Tech InsteadGoogle Suspends Top Chinese Shopping App PinduoduoCommonMagic Targets Entities in Russo-Ukrainian Conflict ZoneThe Scorched-Earth Tactics of Iran’s Cyber ArmyMeta Security Manager Was Reportedly Hacked by Greek Intelligence AgencyChatGPT Bug Temporarily Exposes AI Chat Histories to Other UsersWindows’ Screenshot Tool May Be Saving Stuff You Cropped Out, TooAdobe Launches Firefly Generative A.I., Which Lets Users Type to Edit ImagesEuropean Ports Brace for Cybersecurity RegulationBreached Hacking Forum Shuts Down, Fears It’s Not ‘Safe’ From FBIDemocratic Rep: At Least 17 Current and Former Members Had Personal Data Exposed in DC Health Link BreachClop Ransomware Claims Saks Fifth Avenue, Retailer Says Mock Data StolenLockBit Ransomware Gang Now Also Claims City of Oakland BreachExpert Speaks Out After City of Allen Park (MI) Hit With Ransomware AttackOver 2400 Fake Pages Found Targeting Job Seekers in Middle East, AfricaNew ShellBot DDoS Malware Variants Targeting Poorly Managed Linux ServersCoinbase Wallet ‘Red Pill’ Flaw Allowed Attacks to Evade DetectionMicrosoft: Defender Update Behind Windows LSA Protection WarningsFrom Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022
3/20/2023 March 20, 2023March 20, 2023 ~ The Cyber Beat ~ Leave a comment Vessels Claiming to Be Chinese Warships Are Messing With Passenger PlanesOnline Sleuths Untangle the Mystery of the Nord Stream SabotageChatGPT Helped Win a Hackathon…OpenAI CEO Sam Altman Says He’s a ‘Little Bit Scared’ of A.I.Researchers Shed Light on CatB Ransomware’s Evasion TechniquesHackers Mostly Targeted Microsoft, Google, Apple Zero-Days in 2022The Top Five Cybersecurity ConcernsKrebs: Why You Should Opt Out of Sharing Data With Your Mobile ProviderFerrari Reports Cyber Incident With Ransom Demand; No Impact to OperationsMispadu Trojan Steals 90,000+ Banking Credentials From Latin American VictimsGeneral Bytes Bitcoin ATMs Hacked Using Zero-Day, $1.5M StolenTexas Medical Liability Trust Data Breach Leaked SSNs and Other Sensitive DataKillNet Group Uses DDoS Attacks Against Azure-Based Healthcare AppsNew DotRunpeX Malware Delivers Multiple Malware Families via Malicious AdsHackers Target .NET Developers with Malicious NuGet Packages
3/17-19/2023 March 19, 2023March 19, 2023 ~ The Cyber Beat ~ Leave a comment Wave of Stealthy China Cyberattacks Hits U.S., Private Networks, Google SaysHuawei Has Replaced Thousands of U.S.-Banned Parts in Its Products, Founder SaysGoogle Pixel Exploit Reverses Edited Parts of ScreenshotsGoogle Tells Users of Some Android Phones: Nuke Voice Calling to Avoid InfectionFCC Now Requires Cell Carriers to Block Scam Texts From Sketchy NumbersI Got Investigated by the Secret Service: Here’s How to Not Be MeKrebs: Feds Charge NY Man as BreachForums Boss “Pompompurin”RAT Developer Arrested in Ukraine for Infecting 10,000 PCs With MalwareCIOs Build New Bonds With CISOsNBA Alerts Fans of a Data Breach Exposing Personal InformationHitachi Energy Confirms Data Breach After Clop GoAnywhere AttacksOU Health Confirms Data for 3K Patients Could Have Been Breached After Laptop’s TheftAllCare Plus Pharmacy (MA) Notified Patients of Data Breach Leaking SSNs and PHITelegram, WhatsApp Trojanized to Target Cryptocurrency WalletsNew GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS AttacksEmotet Malware Now Distributed in Microsoft OneNote Files to Evade DefensesMicrosoft Shares Script to Fix WinRE BitLocker Bypass Flaw
3/16/2023 March 16, 2023March 16, 2023 ~ The Cyber Beat ~ Leave a comment Senator Warner Wants US Spies to Justify a TikTok BanUK Bans TikTok on Government Devices Following U.S. MoveU.S. FTC Asks Social Media, Video Streaming Firms Info on Misleading AdsSnapchat’s New Parental Control Filters Aim to Protect Minors From Sensitive ContentCourts Side With Big Companies Including Amazon and Experian in Privacy AppealsMicrosoft Support ‘Cracks’ Windows for Customer After Activation FailsConti-Based Ransomware ‘Meowcorp’ Gets Free DecryptorChinese SilkLoader Malware Sold to Russian Cyber-CriminalsWinter Vivern APT Hackers Use Fake Antivirus Scans to Install MalwareLatitude Cyberattack Leads to Data Theft at Two Service ProvidersTrinity Health of New England Employee Email Breach Exposed Patients’ Personal DataCryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data ExfiltrationBianLian Ransomware Pivots From Encryption to Pure Data-Theft ExtortionConvincing Twitter ‘Quote Tweet’ Phone Scam Targets Bank CustomersFortinet Zero-Day Attacks Linked to Suspected Chinese HackersAdobe Acrobat Sign Abused to Push Redline Info-Stealing MalwareGoogle Finds 18 Baseband Zero-Day Bugs in Samsung Exynos ChipsetsGoogle Proposes Reducing TLS Cert Life Span to 90 Days
3/15/2023 March 15, 2023March 16, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Threatens to Ban TikTok if Chinese Founder Doesn’t Sell Ownership StakeChina Sought Control of Submarine Cables to Spy, Says MicronesiaRussian Hackers Preparing New Cyber Assault Against Ukraine – Microsoft ReportThis Is the New Leader of Russia’s Infamous Sandworm Hacking UnitA Spy Wants to Connect With You on LinkedInThe World’s Real ‘Cybercrime’ ProblemFBI: Ransomware Hit 860 Critical Infrastructure Orgs in 2022Authorities Take Down Darknet Cryptocurrency ‘Mixing’ Service ‘ChipMixer’Dangers from Hacks Stretch Beyond Broken Computer SystemsAI-Generated Voice Deepfakes Aren’t Scary Good—YetHumans Still More Effective Than ChatGPT at PhishingKrebs: Two U.S. Men Charged in 2022 Hacking of DEA PortalCancer Patient Sues Hospital After Ransomware Gang Leaks Her Nude Medical PhotosNordVPN Open Sources Its Linux VPN Client and LibrariesMozilla Firefox Gets Built-in Firefox Relay ControlsTick APT Group Hacked East Asian DLP Software FirmHacker Selling Data Allegedly Stolen in U.S. Marshals Service HackU.S. Federal Agency Hacked Using Old Telerik Bug to Steal DataLockBit Ransomware Claims Essendant Attack, Company Says “Network Outage”Latitude Financial Hacked With 328,000 Customer IDs Feared StolenIndependent Living Systems (ILS) Warns 4.2 Million People of Data BreachNorthStar Emergency Medical Services (AR) Data Breach Affects 82,450 IndividualsLansing Community College Suspends Most Classes for ‘Ongoing Cybersecurity Incident’New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining“FakeCalls” Android Malware Targets Financial Firms in South KoreaFirst-Known Dero Cryptojacking Operation Seen Targeting KubernetesCISA Warns of Adobe ColdFusion Bug Exploited as a Zero-DayCritical Microsoft Outlook Bug PoC Shows How Easy It Is to ExploitKrebs: Microsoft Patch Tuesday, March 2023 Edition
3/14/2023 March 15, 2023March 15, 2023 ~ The Cyber Beat ~ Leave a comment D.C. Health Link Hacker Exposes Lawmakers’ Personal InformationUK’s National Cyber Security Centre Reviewing TikTok Risks, Minister SaysMI5 Launches New Agency to Tackle State-Backed AttacksYoroTrooper Espionage Campaigns Target CIS, EU CountriesDEV-1101 Updates Open Source Phishing KitFBI Warns of Spike in ‘Pig Butchering’ Crypto Investment SchemesCybercriminals Exploit Silicon Valley Bank (SVB) Collapse to Steal Money and DataGPT-4 Unveiled: ChatGPT’s Next Big Upgrade Is HereHow Businesses Can Get Ready for AI-Powered Security ThreatsRubrik Confirms Data Theft in GoAnywhere Zero-Day AttackBeaver Medical Group Files Notice of Data Breach Leaking Patient’s PHIBone & Joint (WI) “System Outage” Resulted in Data Breach Affecting Patients & EmployeesMerced College (CA) Provides Notice of Data Breach to Students Following Malware AttackRing Won’t Say if It Was Hacked After Ransomware Gang Claims AttackSAP Releases Security Updates Fixing Five Critical VulnerabilitiesMicrosoft March 2023 Patch Tuesday Fixes 2 Zero-Days, 83 Flaws…Microsoft Fixes Outlook Zero-Day Used by Russian Hackers Since April 2022…Microsoft Fixes Windows Zero-Day Exploited in Ransomware Attacks
3/13/2023 March 14, 2023March 14, 2023 ~ The Cyber Beat ~ Leave a comment STALKER 2 Game Developer GSC Game World Hacked by Russian Hacktivists, Data StolenLarge-scale Cyber Attack Hijacks East Asian Websites for Adult Content RedirectsCISA Joins Forces With Women in Cybersecurity to Break up the Boy’s ClubCISA Now Warns Critical Infrastructure of Ransomware-Vulnerable DevicesFortinet: New FortiOS Bug Used as Zero-Day to Attack Gov’t NetworksNordVPN Makes its Meshnet Private Tunnel Free for EveryoneOutlook App to Get Built-In Microsoft 365 MFA on Android, iOSFinal Three Sentenced in £70m Money Laundering CaseZoll Medical Says Intruders Had 1M+ Patient, Staff Records at Their FingertipsLA Housing Authority Discloses Data Breach After Ransomware AttackArizona Department of Economic Security Confirms Data BreachHackers Steal $197 Million in Crypto in Euler Finance AttackLockBit Brags: We’ll Leak Thousands of SpaceX Blueprints Stolen From SupplierCyber Attack Affecting Gloucester Museum’s System One Year OnKali Linux 2023.1 Introduces ‘Purple’ Distro for Defensive SecurityBrand Names in Finance, Telecom, Tech Lead Successful Phishing Lures
3/10-12/2023 March 13, 2023March 13, 2023 ~ The Cyber Beat ~ Leave a comment KamiKakaBot Malware Used in Latest Dark Pink APT Attacks on Southeast Asian TargetsNorth Korean UNC2970 Hackers Expands Operations with New Malware FamiliesRansomware Attacks Have Entered a ‘Heinous’ New PhaseInvestment Fraud is Now Biggest Cybercrime EarnerFake ChatGPT Chrome Extension Hijacking Facebook Accounts for Malicious AdvertisingSecurity Researchers Targeted With New Malware via Job Offers on LinkedInAI-Generated YouTube Video Tutorials Spreading Infostealer MalwareTikTok Users Shrug at China Fears: ‘It’s Hard to Care’Cerebral Admits to Sharing Patient Data With Meta, TikTok, and GoogleFBI Once Bought Mobile-Phone Data for Warrantless Tracking: Other Agencies Still DoBrazil Seizing Flipper Zero Shipments to Prevent Use in CrimeCasper Attack Steals Data Using Air-Gapped Computer’s Internal SpeakerMicrosoft OneNote to Get Enhanced Security After Recent Malware AbuseBlackbaud to Pay $3M for Misleading Ransomware Attack DisclosureKey Takeaways From The National Cybersecurity StrategyMental Health Provider Cerebral Alerts 3.1M People of Data BreachPeopleGrove Security Lapse Exposed Users’ Personal InformationCodman Square Health Center (MA) Reports Data Breach Following Ransomware Attack56,000 Affected by DC Health Link Data BreachStaples-Owned Essendant Facing Multi-Day “Outage,” Orders FrozenBATLOADER Malware Uses Google Ads to Deliver Vidar Stealer and Ursnif PayloadsMedusa Ransomware Gang Picks up Steam as It Targets Companies WorldwideNew Version of Prometei Botnet Infects Over 10,000 Systems WorldwideXenomorph Android Banking Trojan Returns with a New and More Powerful VariantNew GoBruteforcer Malware Targets phpMyAdmin, MySQL, FTP, PostgresClop Ransomware Gang Begins Extorting GoAnywhere Zero-Day VictimsUnpatched Zero-Day Bugs in Akuvox Smart Intercoms Allow Remote EavesdroppingCISA Warns of Actively Exploited Plex Bug After LastPass BreachCISA Warns of Critical VMware RCE Flaw Exploited in Attacks
3/9/2023 March 9, 2023March 9, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Congressman Darin LaHood Says the FBI Unlawfully Targeted HimFifth of Government Workers Don’t Care if Employer is HackedTehran Targets Female Activists in Espionage CampaignRubio Takes Aim At Planned Ford U.S. Battery Plant Using Chinese TechnologyPentagon Unveils Cyber Workforce Strategy to Tackle Labor ShortageKrebs: Who’s Behind the NetWire Remote Access Trojan?Google Trashes the Chrome Cleanup ToolFBI Warns of Cryptocurrency Theft via “Play-To-Earn” GamesTikTok Initiates Project Clover Amid European Data Security ConcernsInadvertent Data Destruction After a Cyberattack Can Violate EU Privacy RulesScammers Are Using AI to Impersonate Your Loved Ones: Here’s What to Watch Out ForRemcos Trojan Returns to Most Wanted Malware List After Ukraine AttacksAT&T Blames Marketing Bods for Exposing 9M Subscriber Account RecordsMicrosoft: Business Email Compromise Attacks Can Take Just HoursAkamai Mitigates Record-Breaking 900Gbps DDoS Attack in AsiaIceFire Ransomware Now Encrypts Both Linux and Windows Systems8220 Gang Behind ScrubCrypt Attack Targeting Oracle Weblogic ServerHackers Exploiting Remote Desktop Software Flaws to Deploy PlugX MalwareSuspected Chinese Cyber Spies Target Unpatched SonicWall DevicesGitHub Makes 2FA Mandatory Next Week for Active DevelopersHow to Jump-Start Your Cybersecurity Career
3/8/2023 March 9, 2023March 9, 2023 ~ The Cyber Beat ~ Leave a comment FBI Investigates Data Breach Impacting U.S. House Members and StaffThe FBI Just Admitted It Bought U.S. Location DataThe U.S. Air Force Is Moving Fast on AI-Piloted Fighter JetsBoeing Signs off Anti-Jamming Tech That Keeps Satellites OnlineChina Says It’s ‘Puzzled’ After Report Germany Might Ban Huawei From Parts of 5G Mobile NetworkDutch Responds to U.S. China Policy With a Plan to Curb Semiconductor Tech ExportsAustralia Demands Russia Crack Down on Cyber CriminalsDuckDuckGo Launches AI-Powered Search Query Answering ToolMicrosoft Enables LSA Protection by Default in Windows Canary BuildEurovision 2023: Hotel Phishing Scam Targets Song Contest FansKrebs: Sued by Meta, Freenom Halts Domain RegistrationsLazarus Group Targets South Korean Finance Firm Via Zero-Day FlawCommonwealth Bank of Australia’s Indonesian Arm Hit by Cyber AttackRansomware Gang Posts Video of Data Stolen From Minneapolis SchoolsCity of Waynesboro (VA) Targeted in Cyber AttackNortheast Surgical Group (MI) Notifies 15K Patients of Data BreachJenkins Security Alert: New Security Flaws Could Allow Code Execution AttacksBitwarden Flaw Can Let Hackers Steal Passwords Using iframesFortinet Warns of New Critical Unauthenticated RCE VulnerabilityVeeam Fixes Bug That Lets Hackers Breach Backup InfrastructureCISA’s KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems
3/7/2023 March 8, 2023March 8, 2023 ~ The Cyber Beat ~ Leave a comment Cyber Command Chief: Election Interference Is Not Going AwayWatchdog Says U.S. Cyber Agency Lacks a Plan for Communicating During Major HacksRussia’s Cyber Tactics in Ukraine Shift to Focus on EspionageRussian Disinformation Campaign Records High-Profile Individuals on CameraHow to Tell if Your Laptop Camera Has Been Hacked and Someone Is Spying on YouWhite House Backs Senate Bill to Boost U.S. Ability to Ban TikTokShein App Accessed Clipboard Data on Android DevicesThe Daring Ruse That Exposed China’s Campaign to Steal American SecretsHow Denmark’s Welfare State Became a Surveillance NightmareTwitter Just Let Its Privacy- And Security-Protecting Tor Service ExpireNext-Gen Mobile Internet — 6G — Will Launch in 2030, Telecom Bosses Say, Even as 5G Adoption Remains LowLastPass Hack: Engineer’s Failure to Update Plex Software Led to Massive Data BreachPro-Putin Scammers Trick Politicians and Celebrities Into Low-Tech Hoax Video CallsThe Rise of Zero-Trust Cybersecurity in a Multicloud WorldSharp Panda Target Southeast Asia in Espionage Campaign Expansion: ‘Radio Silence’ Mode to Evade DetectionAcer Confirms Breach After 160GB of Data for Sale on Hacking ForumBrazilian Conglomerate Andrade Gutierrez Suffers 3TB Data BreachRansomware Attack Against Barcelona Hospital Disrupts OperationsHouston Healthcare (GA) Falls Victim to Cybersecurity AttackMinneapolis Public Schools Says Hackers Behind Alleged Attack Posted Some Data OnlineNorthern Essex Community College (MA) Closed for 5th Day Due to Cyberattack1st Franklin Financial Corporation (GA) Notifies Customers of Recent Data BreachTransparent Tribe Hackers Distribute CapraRAT via Trojanized Messaging AppsSYS01stealer: New Threat Using Facebook Ads to Target Critical Infrastructure FirmsEmotet Malware Attacks Return After Three-Month BreakAndroid March 2023 Update Fixes Two Critical Code Execution FlawsMicrosoft Excel Now Blocking Untrusted XLL Add-Ins by Default
3/6/2023 March 7, 2023March 7, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Government to Explore Cyber Insurance BackstopNew Class of Lawmakers Look To Dig In on CybersecurityFaced With Likelihood of Ransomware Attacks, Businesses Still Choosing to Pay UpWhere Are the Women in Cyber Security? On the Dark Side, Study SuggestsCybersecurity Trends & Statistics For 2023: Attack Surface And Hacker Capabilities GrowNIST’s Quantum-Proof Algorithm Has a Bug, Analysts SayRotterdam: This Algorithm Could Ruin Your Life…Inside the Suspicion MachineGerman and Ukrainian Police Raid Alleged Cybercrime ‘DoppelPaymer’ Gang With Help From FBIVice Society Ransomware Group Claims Hamburg University of Applied Sciences as Latest VictimDenver Public Schools Data Breach Includes SSNs, Bank InfoHenrico Doctors’ Hospital (VA) Notifies Patients of Data BreachAcer Data Breach? Hacker Claims to Sell 160GB Trove of Stolen DataSandbox Blockchain Game Breached to Send Emails Linking to MalwareNew HiatusRAT Malware Targets Business-Grade Routers to Covertly Spy on VictimsOld Windows ‘Mock Folders’ UAC Bypass Used to Drop MalwareProof-of-Concept Released for Critical Microsoft Word RCE Bug
3/3-5/2023 March 5, 2023March 5, 2023 ~ The Cyber Beat ~ Leave a comment EPA to Make States Evaluate Public Water Systems’ CybersecurityU.S. Cybersecurity Agency Raises Alarm Over Royal Ransomware’s Deadly CapabilitiesKrebs: Highlights from the New U.S. Cybersecurity StrategyBidenCash Market Leaks Over 2 Million Stolen Credit Cards for FreeTPM 2.0 Library Vulnerabilities May Affect Billions of IoT DevicesBrave Search Launches AI-Powered Summarizer in Search ResultsA Privacy Hero’s Final Wish: An Institute to Redirect AI’s FutureFTC to Ban BetterHelp From Sharing Mental Health Data With AdvertisersSecret Service, ICE Break the Law Over and Over With Fake Cell Tower SpyingPlay Ransomware Claims Disruptive Attack on City of Oakland…Play Ransomware Gang Leaks Data Stolen From City of OaklandPersonal Data Exposed in Cyber Attack on Modesto (CA) PDIndigo Books Refuses LockBit Ransomware DemandIndian Startup Yes Madam Exposed Sensitive Data of Customers and Gig WorkersAloha Nursing Rehab Centre Reports 2022 Data Breach Affecting More Than 20k PatientsVeris Residential (NJ) Notifies Victims of Recent Data BreachNew FiXS ATM Malware Targeting Mexican BanksMicrosoft Releases Windows Security Updates for Intel CPU FlawsHow to Prevent Microsoft OneNote Files From Infecting Windows With Malware
3/2/2023 March 2, 2023March 2, 2023 ~ The Cyber Beat ~ Leave a comment Biden Administration Unveils Long-Awaited National Cyber Strategy…Aims to Shift Cybersecurity Burden From Individuals and Small Businesses to Tech ProvidersCisco Chief Says Tech Products Must Be Made More SecureCISA Releases Free ‘Decider’ Tool to Help with MITRE ATT&CK MappingDashlane to Support New Third-Party Passkey Sync Feature in Android 14Stop Using Your 4-Digit iPhone Passcode in Public. Do This InsteadForget ChatGPT, the Most Overhyped Security Tool Is Technology Itself, Wiz WarnsAustralian Woman Arrested for Email Bombing a Government OfficeWH Smith Discloses Cyber-Attack, Company Data TheftChick-Fil-A Confirms Accounts Hacked in Months-Long “Automated” AttackHackers Steal Gun Owners’ Data From Firearm Auction Website GunAuction.comChinese ‘Mustang Panda’ Hackers Use New Custom Backdoor to Evade DetectionLucky Mouse: SysUpdate Malware Strikes Again with Linux Version and New Evasion TacticsExperts Identify ‘Colour-Blind’ Fully-Featured Info Stealer and Trojan in Python Package on PyPIAPI Security Flaw Found in Booking.com Allowed Full Account TakeoverThis Hacker Tool Can Pinpoint a DJI Drone Operator’s Location
3/1/2023 March 2, 2023March 2, 2023 ~ The Cyber Beat ~ Leave a comment Russia Bans Foreign Messaging Apps in Government OrganizationsCybercriminals Targeting Law Firms with GootLoader and FakeUpdates MalwareParallax RAT Targeting Cryptocurrency Firms with Sophisticated Injection TechniquesBudweiser Maker Simplifies How It Assesses Privacy and Cyber RisksGitHub’s Secret Scanning Alerts Now Available for All Public ReposMicrosoft Exchange Online Outage Blocks Access to Mailboxes WorldwideChatGPT: What the New York Times and Others Are Getting Terribly Wrong About ItHacked Washington Law Firm Covington & Burling Fights SEC Subpoena in Effort to Protect Attorney-Client PrivilegeWhy Overcoming The Cybersecurity Labor Shortage Matters To Company SuccessWest Virginia University Alerted of Data Breach, Involves ‘Limited’ Amount of Personal Information AvailableSoutheastern Louisiana University ‘Likely’ Suffered Cyber AttackHatch Bank Announces Third-Party Data Breach at Cybersecurity Firm, FortraCrystal Bay Casino Notifies 86,291 Individuals of Recent Data BreachTrezor Warns of Massive Crypto Wallet Phishing CampaignIron Tiger Hackers Create Linux Version of Their Custom MalwareBlackLotus Becomes First UEFI Bootkit Malware to Bypass Secure Boot on Windows 11Cisco Patches Critical Web UI RCE Flaw in Multiple IP PhonesAruba Networks Fixes Six Critical Vulnerabilities in ArubaOS
2/28/2023 February 28, 2023February 28, 2023 ~ The Cyber Beat ~ Leave a comment China Is Relentlessly Hacking Its NeighborsTikTok Answers Three Big Cybersecurity Fears About the AppU.S. Gov’t Agencies Have 30 Days to Remove TikTok, Canada Follows SuitLastPass Reveals Attackers Stole Password Vault Data by Hacking an Employee’s Home ComputerKrebs: Hackers Claim They Breached T-Mobile More Than 100 Times in 2022How to Set Up Two-Factor Authentication on Your Online ServicesGoogle: Gmail Client-Side Encryption Now Publicly AvailableBitdefender Releases Free Decryptor for MortalKombat Ransomware StrainHacking Attack Prompts Russian Regional Broadcasters to Issue Air Alert Warnings (Again)Dish Network Confirms Ransomware Attack Behind Multi-Day OutageCity of Oregon City Reports Ransomware AttackEvergreen Treatment Services (OR) Data Breach Affects Personal Info of 21,325 PatientsAnonymous Call Informs Sentara Healthcare (VA) of Data BreachLSUs Online Services Restored Tuesday After Network Outage: ‘Not Cyber Event’APT-C-36 Strikes Again: Blind Eagle Hackers Target Key Industries in ColombiaSCARLETEEL Hackers Use Advanced Cloud Skills to Steal Source Code, DataCISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability
2/27/2023 February 28, 2023February 28, 2023 ~ The Cyber Beat ~ Leave a comment U.S. Marshals Service Investigating Ransomware Attack, Data TheftCISA Tells Agencies What to Prioritize to Meet Cybersecurity Log MandateAustralia Plans to Reform Cyber Security Rules, Set up AgencyChina Makes It Even Harder for Data to Leave Its ShoresKrebs: When Low-Tech Hacks Cause High-Impact BreachesResearchers Discover Nearly 200,000 New Mobile Banking Trojan InstallersResearchers Share New Insights Into RIG Exploit Kit Malware’s OperationsChatGPT Is Down Worldwide – OpenAI Working on IssuesA Year After Russia’s Invasion, Cyberdefenses Have Improved Around the WorldMinneapolis Public Schools Still Investigating What Caused ‘Encryption Event’Hacker Leaks Alleged Activision Employee Data on Cybercrime ForumAlvaria (MA) Announces Data Breach Following Hive Ransomware AttackAdvanced Health Media Leaked SSNs Following Recent Data BreachCrum & Forster (NJ) Announces Data BreachNew Exfiltrator-22 Post-Exploitation Kit Linked to LockBit RansomwareRIG Exploit Kit Still Infects Enterprise Users via Internet ExplorerPlugX Trojan Disguised as Legitimate Windows Debugger Tool in Latest AttacksCritical Flaws in WordPress Houzez Theme Exploited to Hijack Websites
2/24-26/2023 February 26, 2023February 26, 2023 ~ The Cyber Beat ~ Leave a comment CISA Calls For Increased Vigilance One Year After Ukraine’s Russian InvasionRussian IT “Brain Drain” Decentralizes CybercrimePentagon Investigating Two-Week Email Server LeakRoyal Mail Appears to Call LockBit’s Ransomware Bluff – Loses Gigabytes of DataNews Corp Says State Hackers Were on Its Network for Two YearsA Basic iPhone Feature Helps Criminals Steal Your Entire Digital LifeKrebs: Who’s Behind the Botnet-Based Service BHProxies?Tesla to Change Camera Settings in Europe Over Privacy FearsEU Commission Bans TikTok on Corporate Devices‘Ethical Hacker’ Among Ransomware Suspects Cuffed by Dutch CopsBitcoin Mining Rig Found Stashed in Massachusetts School CrawlspaceThese Experts Are Racing to Protect AI From Hackers. Time Is Running OutTelus Source Code, Staff Info for Sale on Dark Web ForumDish Network Goes Offline After Likely Cyberattack, Employees Cut OffStanford University Discloses Data Breach Affecting PhD ApplicantsEncino Energy Says ‘No Impact’ Seen After CyberattackCleveland Brothers Holdings Data Breach Affects Thousands of SSNsEmtec (FL) Breach Affects Over 7,000 People Following CyberattackRockler Companies (MN) Data Breach Impacts More than 8,600 IndividualsPureCrypter Malware Hits Gov’t Orgs With Ransomware, Info-StealersChromeLoader Campaign Lures With Malicious VHDs for Popular GamesBrave Browser to Block “Open in App” Prompts, Pool-Party AttacksGoogle Teams Up with Ecosystem Partners to Enhance Security of SoC ProcessorsCybersecurity to Be Least Hit by Layoffs in Economic Downturn
2/23/2023 February 23, 2023February 23, 2023 ~ The Cyber Beat ~ Leave a comment How the Russia-Ukraine War Has Changed CyberspaceUkraine Says Russian Hackers Backdoored Gov’t Websites in 2021Batteries Are Ukraine’s Secret Weapon Against RussiaRussian Authorities Claim Ukraine Hackers Are Behind Fake Missile Strike Alerts in Almost a Dozen CitiesWinorDLL64 Backdoor Linked to Lazarus GroupHow I Broke Into a Bank Account With an AI-Generated VoiceU.S. Regulators Warn Banks to Be on Alert for Crypto-Related Liquidity RisksValve “Honeypot” Used to Ban 40,000 Dota 2 Players Using CheatYou Can’t Trust App Developers’ Privacy Claims on Google PlayForsage DeFi Platform Founders Indicted for $340 Million ScamFTX Fiasco Founder SBF Faces Further Fraud ChargesFTC: Americans Lost $8.8 Billion to Fraud in 2022 After 30% SurgeU.S. Extradites Russian Individual for Allegedly Selling Malicious SoftwareDatacenters in China, Singapore Cracked by Crims Who Then Targeted TenantsLockBit Leaks 44GB of Royal Mail’s Data and Sets Fresh £33 Million RansomVice Society Ransomware Gang Leaked 2K Los Angeles Student Health Records OnlineHutchinson Clinic (PA) Posts Notice of Data Breach Affecting Sensitive Patient InformationClasiopa Hackers Use New Atharvan Malware in Targeted AttacksHackers Using Trojanized macOS Apps to Deploy Evasive Cryptocurrency Mining MalwarePython Developers Warned of Trojanized PyPI Packages Mimicking Popular LibrariesA World of Hurt for Fortinet and Zoho After Users Fail to Install PatchesApple Warns of 3 New Vulnerabilities Affecting iPhone, iPad, and Mac DevicesMicrosoft Urges Exchange Admins to Remove Some Antivirus ExclusionsHow Cybersecurity Executives Make the Case for Continued Tech Investments in a Tough Economy
2/22/2023 February 22, 2023February 22, 2023 ~ The Cyber Beat ~ Leave a comment Hackers Use Fake ChatGPT Apps to Push Windows, Android Malware and Send Victims to Phishing PagesUkraine Suffered More Wiper Malware in 2022 Than Anywhere, EverGcore Thwarts Massive 650 Gbps DDoS Attack on Free Plan ClientOpen Source Flaws Found in 84% of CodebasesNSA Shares Guidance on How to Secure Your Home Network2023 Budget Conversations: Prioritizing Cybersecurity During Economic DownturnGoogle Paid $12 Million in Bug Bounties to Security ResearchersHydrochasma Group Targets Asian Medical and Shipping SectorsNew S1deload Stealer Malware Hijacks Youtube, Facebook AccountsCyberattack on Food Giant Dole Temporarily Shuts Down North America ProductionAttackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing LinksHackers Now Exploit Critical Fortinet Bug to Backdoor ServersVMware Patches Critical Vulnerability in Carbon Black App Control Product
2/21/2023 February 22, 2023February 22, 2023 ~ The Cyber Beat ~ Leave a comment Researchers Warn of ReverseRAT Backdoor Targeting Indian Government AgenciesA New Kind of Bug Spells Trouble for iOS and macOS SecurityHackers Exploit Privilege Escalation Flaw on Windows Backup ServiceGoogle Will Boost Android Security Through Firmware HardeningAccidental WhatsApp Account Takeovers? It’s a ThingAT&T Seeks to Shed Cybersecurity DivisionSublime Nabs $9.8M for Anti-Phishing Email Security Platform Built on Collective, Crowdsourced RulesThree City Fund Managers Jailed for $8m FraudSensitive U.S. Military Emails Spill Online via Exposed ServerRussian State TV ‘Hit by Cyber Attack’ During Putin’s SpeechActivision Confirms Data Breach Exposing Employee and Game InfoVirgin Media TV Hack May Cause Disruption to Some ProgrammingSophisticated MyloBot Botnet Spreading Rapidly Worldwide: Infecting Over 50,000 Devices DailyExploit Released for Critical Fortinet RCE Flaws, Patch NowWhy Security Culture Is Key To Cybersecurity ResilienceCyberthreats, Regulations Mount for Financial Industry
2/20/2023 February 20, 2023February 21, 2023 ~ The Cyber Beat ~ Leave a comment Here’s How to Secure Your Twitter Account Without Paying for BlueDNA Testing Biz Vows to Improve Infosec After Criminals Break Into Database It Forgot It HadMajority of Ransomware Attacks Last Year Exploited Old BugsHardBit Ransomware Wants Insurance Details to Set the Perfect PriceMicrosoft AI Chatbot Threatens to Expose Personal Info and Ruin a User’s ReputationSpanish Court Authorises Extradition to U.S. Of Briton Who Allegedly Hacked Biden, ObamaInglis Retires as National Cyber Director Ahead of Biden’s Cybersecurity EOCoinbase Cyberattack Targeted Employees With Fake SMS AlertEureka Casino Resort (NV) Announces Data Breach Impacting Nearly 230k IndividualsCentraState Healthcare System Announces Data Breach Impacting as Many as 617k PatientsLehigh Valley Health Network (PA) Hit by CyberattackO’Neal Industries Reports Recent Data BreachTom James Company (TN) Files Notice of Data Breach Affecting 8,656 IndividualsNew Stealc Malware Emerges With a Wide Set of Stealing Capabilities
2/17-19/2023 February 19, 2023February 19, 2023 ~ The Cyber Beat ~ Leave a comment EU Cybersecurity Agency Warns Against Chinese APTsGoogle Report Reveals Russia’s Elaborate Cyber Strategy in Ukraine‘Russian Hacktivists’ Brag of Flooding German Airport SitesExperts Warn of RambleOn Android Malware Targeting South Korean JournalistsArmenia and Azerbaijan Hackers Use OxtaRAT to Monitor ConflictCloud Infrastructure Used By WIP26 For Espionage Attacks on TelcosKrebs: New Protections for Food Benefits Stolen by SkimmersSamsung Has Created a Zero-Click Antivirus for MessagesHow to Unlock Your iPhone With a Security KeyTwitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers OnlyEuropol Busts ‘CEO Fraud’ Gang That Stole €38M in a Few DaysNorwegian Police Recover $5.8M Crypto From Massive Axie Infinity HackFBI Says It Has ‘Contained’ Cyber Incident on Bureau’s Computer NetworkHackers Ran Amok Inside GoDaddy for Nearly 3 YearsData Leak Hits Thousands of Liverpool NHS WorkersMKS Instruments (MA) Data Breach Affects Current and Former EmployeesPaul Smith’s College (NY) Data Breach Impacts Over 10k IndividualsSuffolk County, N.Y., Restores Systems After September CyberattackNew WhiskerSpy Malware Delivered via Trojanized Codec InstallerCritical RCE Vulnerability Discovered in ClamAV Open Source Antivirus SoftwareFortinet Issues Patches for 40 Flaws Affecting FortiWeb, FortiOS, FortiNAC, and FortiProxyAppSec Threats Deserve Their Own Incident Response PlanHere’s the 12 Best Ways to Avoid Being Scammed OnlineThe Five Important Moments In History That Shaped The Modern Cybersecurity Landscape
2/16/2023 February 16, 2023February 16, 2023 ~ The Cyber Beat ~ Leave a comment DOJ, Commerce Department Strike Force to Fight Technology Threats From AdversariesESXiArgs Ransomware Hits Over 500 New Targets in European CountriesMicrosoft Exchange ProxyShell Flaws Exploited in New Crypto-Mining AttackNew Mirai Malware Variant Infects Linux Devices to Build DDoS BotnetCISA Warns of Windows and iOS Bugs Exploited as Zero-DaysPrivacy Regulators Step Up Oversight of AI Use in EuropeBEC Groups Target Firms With Multilingual Impersonation AttacksHackers Leverage PayPal to Send Malicious InvoicesCrypto Buyers Beware: 1 in 4 New Tokens of Any Value Is a ScamProtecting More With What You Have: Cybersecurity Resilience In 2023New Threat Actor WIP26 Targeting Telecom Service Providers in the Middle EastBurton Snowboards Cancels Online Orders After ‘Cyber Incident’German Airport Websites Hit by Suspected Cyber AttackScandinavian Airlines Says Cyberattack Caused Passenger Data LeakAtlassian Says Recent Data Leak Stems From Third-Party Vendor HackHackers Using Google Ads to Spread FatalRAT Malware Disguised as Popular AppsHackers Start Using Havoc Post-Exploitation Framework in AttacksHackers Backdoor Microsoft IIS Servers With New Frebniis MalwareResearchers Warn of Critical Security Bugs in Schneider Electric Modicon PLCs