Data Breaches Digest

Editor's Message

Welcome to DBD. DBD was conceived as an independent resource for anyone to research and learn about Data Breaches and the Cyber Security threats that we all face in today's ever-evolving digital world. In recent months we have been approached by parties who have sought to acquire and commercialise us. We are therefore reiterating our pledge to you, our readers and supporters, that we intend to remain independent and we are not for sale. We are however, committed to expanding our partner network across the globe and welcome all correspondence from interested parties. Thank you for your support. Stay safe. :)

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 28th November and 4th December 2022.

4th December

3 smart tips to protect your identity online

5 Reasons to Secure Your Email Account in 2023

After AIIMS, Delhi's Safdarjung Hospital faces hacking attack

After AIIMS, Delhi's Safdarjung Hospital Reports Being Hit by a Cyber Attack in November

Android malware apps with 2 million installs spotted on Google Play

Android phones from Samsung, LG, and other manufacturers are exposed to security breaches

APAC cybersecurity trends in 2023

Australia warned that cybercrime will only get worse

CommonSpirit Health Provides Cyberattack Update and Notification of Data Breach Involving Virginia Mason Franciscan Health in Washington state

Complacency is abetting cyber crime and ransomware attacks

Could EV charging stations become targets?

Cybersecurity: Renewed focus for safe shopping online

Darknet markets generate millions in revenue selling stolen personal data, supply chain study finds

Delhi: After AIIMS, Safdarjung Hospital reports cyberattack

From fake links for online meetings to drones - South African businesses warned of cyberattacks

Google issues urgent Gmail scam warning and calls on people to be vigilant

Have you logged in on another PC that is not yours? Protect your accounts now

How to know if your mobile is tapped or hacked

India: Cyber attacks triple in last three years, but security funds underutilised

Medibank Data Breach: Hackers Upload More Customer Data, Say ‘Case Closed’ on World Cybersecurity Day

New York Ambulance Service reportedly minimized the Hive Gang hack of 300,000 members

New Zealand Health Insurer Investigates IT Provider Hack

Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) Warns On Phishing Attack

North Korean APT37 Unleashes Dolphin Backdoor on South Korea

Rackspace Hosted Exchange Outage Due to Security Incident

Security Expert Locates Sirius XM Bug That Allowed Vehicle Hacking

UK to Introduce New Law Mandating Businesses to Disclose All Ransomware Attacks

US Department of Homeland Security (DHS) Cyber Safety Board will review Lapsus$ gang’s operations

Versailles hospital targeted by cyberattack

We are still failing to learn the most important lesson in cybersecurity. That needs to change, fast

What is Bluebugging and how it is dangerous?

3rd December

6 Quadrillion Token Heist Hits BNB Chain-Based DeFi Protocol Ankr

18% of Brazilians have had digital services hacked after password leaks

A new Linux flaw can be chained with other two bugs to gain full root privileges

AIIMS Ransomware Attack Conspiracy Planned By Significant Forces

America’s Critical Infrastructure is Fragile and Vulnerable

Cambridge Water customers’ bank details published to dark web after cyber attack

CryWiper Masquerading as Ransomware to Target Russian Courts

Cyber alert: NCC-CSIRT warns Nigerians on latest Phishing attack

Darknet markets generate millions in revenue selling stolen personal data

Deconstructing the cyber-threat landscape for 2023 and beyond

Ethical Hacker Discovers SiriusXM Ability to Unlock and Start Cars Ahead of the Evil Ones

Exploit Confirmed on Ankr Protocol, Helio Money Faces Windfall

Find out if they spy on your Android mobile

Five scams to watch out for on Facebook Marketplace

Google fixed the ninth actively exploited Chrome zeroday this year

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Hackers use new, fake crypto app to breach networks, steal cryptocurrency

How cybercrime could cripple Australia's systems

How to choose between outsourced vs in-house cybersecurity

Ireland: HSE brace for likely legal actions following cyber breach disclosures

Making cybersecurity awareness training a cornerstone of the curriculum

Malware Apps Signed with Compromised Android Platform Certificates

MediaTek, Samsung and LG certificates were used to validate malware on Android

Meta faces lawsuit for harvesting financial data from tax prep websites

North Korea’s Nuclear Program Is Funded by Stolen Cryptocurrency, Could It Collapse Now That FTX Has?

Not the bargain they asked for: Cyber threats hound Filipino shoppers

Online Leak of Stolen Twitter Data Leads to the Discovery of a Greater Breach

Rackspace rocked by ‘security incident’ that has taken out some hosted Exchange services

Russia coordinating Ukraine hacks with missiles, could increasingly target European allies, Microsoft warns

San Diego Unified telling staff & students to change passwords following cybersecurity incident

SIM swapper gets 18-months for involvement in $22 million crypto heist

Think You've Just Been Exposed to a Cyber Criminal? Here Are 8 Ways You Can Save Yourself and Others From Being Scammed

Why Do Crypto Companies Keep Getting Hacked?

2nd December

360m Alleged WhatsApp Records Shared Freely on Telegram and Dark Web

After Discovery of Huge Data Breach, Twitter Alternative Hive Goes Offline

AIIMS Ransomware Attack: A Wake-Up Call For India

All of Medibank’s stolen data leaked, Australia increases maximum penalties for data breaches

Australia among top countries affected by ransomware attacks

Binance freezes $3 million worth of crypto stolen in Ankr hack

Binance pauses withdrawals after hacker exploits Ankr and Hay tokens

'Black Proxies' Enable Threat Actors to Conduct Malicious Activity

BlackProxies proxy service increasingly popular among hackers

Browser Isolation As An Enterprise Security Control?

Canada: New legal action for privacy breach doesn’t apply to hacked data aggregators

CISA Warns Against Online Holiday Shopping Scams

CISA Warns of Multiple Critical Vulnerabilities Affecting Mitsubishi Electric PLCs

Cuba Ransomware Actors Pocket $60m

Cuba Ransomware Extorted Over $60 Million in Ransom Fees from More than 100 Entities

Cybersecurity Experts On Protecting Data At The World Cup

DeFi protocol Ankr suffers exploit, Binance cleans up situation – Is a price drop for Ethereum to come?

Department of Homeland Security (DHS) Cyber Safety Board to review Lapsus$ gang’s hacking tactics

Don’t ignore the security risks of limitless cloud data

Experts argue 'sludge' could muck up cyber attacks

FBI warns about Cuba, no, not that one — the ransomware gang

Financial organizations more prone to accidental data leakage

Five Albanian state IT staff investigated over Iran hack

Five reasons why we can expect a major cyberattack on a healthcare organization in 2023

Florida's Tax Website Exposes Hundreds of Sensitive Data: Filers' Bank Accounts, Social Security Numbers

Gartner analysts reveal 8 cybersecurity predictions for 2023

Google Chrome emergency update fixes 9th zero-day of the year

Hacker Makes Off With Millions After Minting Six Quadrillion of Ankr’s BNB Staking Tokens

Hackers and Phishing, Oh My! Easing Fintech Security Concerns

Hackers Exploiting Redis Vulnerability to Deploy New Redigo Malware on Servers

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Hackers Use Archive Files and HTML Smuggling to Bypass Detection Tools

Health insurer Accuro says 30,000 customers’ data potentially exposed in hack

Healthcare cybersecurity ‘exponentially growing in importance,’ senator says

Here are a few ways to help protect your identity against hackers

How Ransomware Trends Will Drive Significant Data Management Changes In 2023

How to Overcome Challenges to Zero Trust Adoption

How To Unravel The Minefield That Is Web App Security

I am a Medibank customer. Am I affected by the cyber-attack? What can I do to protect myself?

Knox College experiences ‘system disruption’ from ransomware; cybersecurity experts to assist

LastPass admits to customer data breach caused by previous breach

Last Pass reports second data breach in three months

LastPass security breach was worse than initially thought

LastPass Suffers Second Major Data Breach in Four Months

Let's get ethical: Data privacy as an ethical business practice

Medibank prognosis gets worse after more stolen data leaked

More organisations in Africa threatened by Ransomware, Sophos reveals

More than 150 Oracle Access Management systems exposed to bug highlighted by CISA

Never-before-seen malware is nuking data in Russia’s courts and mayors’ offices

New CryWiper data wiper targets Russian courts, mayor’s offices

No Pressure: Water Utility Drips Alert 4 Months After Breach

'No-one wants our data, it's not important': Wrong

Paying the Ransom in Response to a Ransomware Attack can Sometimes Backfire

Personal data leaked in St. Michael ransomware attack

Police arrest 55 members of 'Black Panthers' SIM Swap gang

Ransomware as a Service and Rise of Metaverse can pose new cybersecurity challenges in 2023

Researchers Disclose Supply-Chain Flaw Affecting IBM Cloud Databases for PostgreSQL

Russian regions attacked by new wiper posing as ransomware

Schoolyard Bully Malware Stealing Facebook Credentials on Android

Seattle-area debt collector allegedly compromised data of 3.7 million people

SIM-swapper gets 18 months, must pay back $20 million he stole from crypto investor

Social Engineering Attacks: 3 Strategies to Mitigate Risk

Social Security numbers of Suffolk employees compromised during cyber attack

Spanish police arrest 55 people involved in wide-ranging cyberscam operation

St. Michael Medical Center patient information at risk in ransomware data attack

Swiss seek mandatory reporting of cyberattacks on key infrastructure

Trojan Steals Facebook Details from Over 300K Victims

Vanuatu: Most government servers back on after cyber attack

Watch Out! These Android Keyboard Apps With 2 Million Installs Can be Hacked Remotely

Watch out for this triple-pronged PayPal phishing and fraud scam

What Is Phishing?

Why Data Governance Must be a Key Focus for Australian Business in 2023

1st December

A Syntax Error Led to Crashing of KmsdBot Cryptomining Botnet

A year later, Log4Shell still lingers

All India Institute of Medical Sciences (AIIMS) Delhi Working On Cyber Security Policy With Investigating Agencies

Ambry Genetics data breach $12.25M class action settlement

Android malware infected 300,000 devices to steal Facebook accounts

Are you using word 'password' as your password?

As Cyberattacks Increase on K-12 Schools, Here Is What’s Being Done

Australia: State Government gets $1.7m compensation for payroll data hack

Australia amongst top targeted countries for ransomware

Australia Passes Bill Increasing Data Breach Fines from $2.2 to $50 Million

Back in Black...Basta

‘Bluebugging’ gives hackers access to chats, contacts, and more; Keep yourself safe!

California gun data breach was unintentional

Clearing the fog: Identifying blind spots in cybersecurity budgeting

ConnectWise Quietly Patches Flaw That Helps Phishers

Cuba ransomware group has stolen $60 million from at least 100 organizations

Cuba ransomware raked in $60 million from over 100 victims

Cyber attack hits North East London Foundation Trust finance systems

Cyberattacks, ransomware incidents expected to rise in 2023

Cybersecurity: Why effective data security necessary in today’s competitive world

Dallam Hartley Counties Hospital District Reports Data Breach Affecting over 69k Patients

Data Security Concerns Are Driving Changes in US Consumer Behavior and Demands

Eufy's security cameras send data to the cloud without consent, and that's not the worst part

Federal defense contractors are not properly securing military secrets

From fake ads to phishing links - five scams to watch out for on Facebook Marketplace

FTX collapse will blunt activities of North Korea hackers

Google Accuses Spanish Spyware Vendor of Exploiting Chrome, Firefox, & Windows Zero-Days

Hackers accessed LastPass customer details using information stolen in August hack

Hackers Leak Another Set of Medibank Customer Data on the Dark Web

Hackers Target Colombia's Healthcare System With Ransomware

How do hackers know my passwords?

How Thinking Outside Silos Helps Risk Management and Cyber Threat Response

How Virtual CISOs Are Reshaping SMB Cybersecurity

Hundreds of scam predatory loan platforms found on Google and Apple app stores

Hyundai app bugs allowed hackers to remotely unlock, start cars

Incident of the Week: Passwords secure in latest LastPass data breach

Increased cyber threats call for measures: is cyber insurance the answer?

IKEA confirms it was hit in significant cyberattack

LastPass Breached Again – The Second Time in 2022

LastPass Reveals Another Customer Data Breach

LastPass Suffers Another Security Breach; Exposed Some Customers Information

LastPass, GoTo announce security incident

Latest LastPass data breach involves hacker gaining access to third-party cloud storage

Leveling up your cyber vigilance: Securing your email against phishing attacks

List of Data Breaches and Cyber Attacks in November 2022 – 32 Million Records Breached

Little Rock School District reports potential data breach

Lynnwood data breach exposed sensitive info for 3.7 million across US

Manitoba Health confirms data breach after break-in at facility

Medibank hackers reportedly release all data on dark web

Medibank responds to hackers’ biggest data dump overnight

New DuckLogs malware service claims having thousands of ‘customers’

New Redigo malware drops stealthy backdoor on Redis servers

Nigeria-based group ‘Lilac Wolverine’ using COVID-19, emotional lures in BEC scams

Password manager LastPass suffers second major data breach of 2022

Phishing for likes: How cybercriminals are exploiting Instagram's copyright reports

Predatory loan mobile apps grab data, harass users and their contacts

Prestige Ransomware Attack Highlights Need to Update Cyber Security

Ransomware group may have stolen customer bank details from British water company

Researchers Accidentally Crash Cryptomining Botnet

Researchers 'Accidentally' Crash KmsdBot Cryptocurrency Mining Botnet Network

Researchers Disclose Critical RCE Vulnerability Affecting Quarkus Java Framework

Samsung, LG, Mediatek certificates compromised to sign Android malware

San Juan Regional Medical Center Reaches Settlement Following Healthcare Data Breach

Schoolyard Bully Trojan Apps Stole Facebook Credentials from Over 300,000 Android Users

Security pros feel threat detection and response workloads have increased

Social Media Platforms and Data Breaches: Are Your Secured?

Spyware Vendor Variston Exploited Chrome, Firefox and Windows 0-days

Spyware Vendor Variston Exploited N-Days in Chrome, Firefox, Windows

Stop Ransomware: Cuba Ransomware

The Delicate Relationship Between IT and OT

The Pope’s website taken offline in suspected hacker attack

These file types are the ones most commonly used by hackers to hide their malware

Twitter competitor Hive has been taken offline due to security concerns

Twitter Data Breach Nightmare – Millions of Subscriber’s Data Remains at Risk

UK Extends NIS Regulations to IT Managed Service Providers

'Unfortunate and regrettable incident': Inside the Otago University data breach

US: Treasurer's Office back online; cyber attack under investigation

Using TWS or Bluetooth devices? Here's how you can safeguard yourself from Bluetooth hacking

Vatican hit by suspected cyber attack days after Pope criticises Russia

What Developers Need to Fight the Battle Against Common Vulnerabilities

What is the W4SP Information Stealer?

WhatsApp Files on Dark Web Show Millions of Records For Sale

With ransomware on the rise, managed services providers are critical

30th November

3 New Vulnerabilities Affect OT Products from German Companies Festo and CODESYS

5 Common Twitter Scams and How to Avoid Them

5 Threats to Your Enterprise Mobile Device Security and How to Prevent Them

33% of attacks in the cloud leverage credential access

67% IaaS Cloud users hit by ransomware globally this year

16,000+ Scam Domains Aimed at FIFA World Cup Fans in Qatar

Android and iOS apps with 15 million installs extort loan seekers

Australia Passes Bill to Fine Companies up to $50 Million for Data Breaches

Australia will now fine firms up to AU$50 million for data breaches

Australian Parliament Passes Privacy Penalty Bill

Beware, Hackers target fans with phishing attacks and scams during the 2022 FIFA World Cup

Black Basta Crew Using Qakbot in Widespread Ransomware Strikes

Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds

Businesses Should Consider the SAFETY Act a Core Part of Their Ransomware Defense Program

Canadian public school board forced to suspend online classes following a cyber attack

Can you trust the US Government with your data?

China-Based Hackers Target Southeast Asia With USB-Based Malware

Chinese Cyber Espionage Hackers Using USB Devices to Target Entities in Philippines

Community Health Network notifies data breach involving tracking code

Crafty threat actor uses 'aged' domains to evade security platforms

Critical infrastructure cybersecurity

Critical RCE bugs in Android remote keyboard apps with 2M installs

Cybersecurity researchers take down DDoS botnet by accident

Encryption provider for Sony leaks data for over a year

French Electricity Provider Fined for Storing Users' Passwords with Weak MD5 Algorithm

Google accuses Spanish spyware company of ties to zero-day exploitation framework

Google discovers Windows exploit framework used to deploy spyware

Google shares details of newly found commercial spyware threats

GoTo says hackers breached its dev environment, cloud storage

Guatemala’s Foreign Ministry investigating ransomware attack

Hackers & phishing attacks could plague the Metaverse in 2023

Hackers using USB drives to spread malware in ongoing attack

Holiday Shopping Season 2022: The Complete Retail Threat Landscape

How businesses can prevent becoming the next ransomware victim

How Health Information Technology for Economic and Clinical Health (HITECH) Recognized Security Practices Boost Healthcare Cybersecurity

Immigration and Customs Enforcement (ICE) accidentally posted identities of 6,000 asylum seekers to agency website

Ingalls & Snyder, LLC Files Notice of Data Breach Following Unauthorized Access to the Company’s Computer Network

Is Your Inbox Riddled With Scams? It’s Time to Amp Up Yout Email Security

Keralty ransomware attack impacts Colombia's health care system

Knock-on effects: the risks of cyber crime for life insurers

Lastpass says hackers accessed customer data in new breach

LastPass suffers another data breach, customer data leaked

Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements

Most Small Biz IaaS Users Seeing Surge in Attacks

New "Icefall" Bugs Include Critical DoS Flaw

New Windows malware also steals data from victims’ mobile phones

North Korea Hackers Using New "Dolphin" Backdoor to Spy on South Korean Targets

NVIDIA releases GPU driver update to fix 29 security flaws

Pennsylvania Amends Breach Notification Law

Personal information of thousands of City of Edmonton workers found in data breach

Private info from December Twitter data breach leaked online

Ransomware, SMBs remain key security concerns amidst focus on critical infrastructures

Report warns of more devastating cyberattacks in 2023

Researchers Find a Way Malicious NPM Libraries Can Evade Vulnerability Detection

Researchers find bugs allowing access, remote control of cars

Russia-backed Sandworm group using novel RansomBoggs ransomware to target Ukrainian organisations

Safetradebinaryoptions Analyzes Mango Platform Hack In Crypto Theft Report

Security expert dives deeply on four types of email attack

Should Social Media Users Engage in a Tug-of-war with Hackers?

Singapore releases blueprint to combat ransomware attacks

South Staffs Water customer data leaked after ransomware attack

Tackling the Rise of Insider Threat Risk After the Great Resignation

The Changing Threat Landscape of Cyber Risk

The Optus data breach – an earthquake whose aftermath is still being felt

This cruel email-hacking gang aims to tug on your heartstrings and steal your cash

This Malicious App Abused Hacked Devices to Create Fake Accounts on Multiple Platforms

TikTok Invisible Body Challenge Trend Abused to Drop Malware

TransUnion class action claims insecure information storage led to data breach

U.S. Department of Veterans Affairs admits to improperly disclosing COVID-19 vaccine data for 500,000 staff

UK introducing mandatory cyber incident reporting for managed service providers

Unregistered work devices heighten Philippine firms’ cyber risks

Vatican website down in suspected hacker attack

Vice ransomware gang strikes IKEA Morocco and Kuwait, publishes stolen data samples on the Dark Web

What is Ransom Cartel? A ransomware gang focused on reputational damage

WhatsApp data breach reportedly leaks info of 500 million users

Zero-Day Flaw Discovered in Quarkus Java Framework

29th November

5 PayPal Scams to Watch Out For

5.4 Million Twitter User Records Hacked

7 Cyber Security Tips for SMBs

9/10 organisations say digital trust extremely important

Acer Laptop Vulnerability Allows Malware Infection During Secure Boot

Alleged WhatsApp Data Leak Compromises 500M Phone Numbers

As phishing volumes increase, experts pin hope on AI and trained employees as a last line of defense

Australia: 80% of nation’s firms hit by ransomware

Breaking down the cybersecurity risks at Elon Musk's Twitter

Building trust with reputational defense

Catching up with the evolving rules of cybersecurity

Christmas a special time for cyber criminals

CISA Warns of Actively Exploited Critical Oracle Fusion Middleware Vulnerability

CISA's Strategic Plan Is Ushering in a New Cybersecurity Era

Columbia Grain International, LLC Reports March 2022 Data Breach

Cons access LinkedIn data, employ spear-phishing to swindle users

Could EV charging stations become targets?

Current, former patients of Wright and Filippis may have been impacted by data breach

Cybercrime threat to real estate sector intensifying

Cybercriminals are cashing in on FIFA World Cup-themed cyberattacks

Cybercriminals take advantage of the chaos on Twitter to launch phishing campaigns

Cybersecurity: How to do More for Less

Cybersecurity compliance: A necessity for your business

Cybersecurity in 2022: 6 Key Trends That Defined the Year

Cybersecurity Is Founded on Simple Principles

Data Security: What You Should Know

Deploying Security Automation to Your Endpoints

Durham school board faces cyber attack

Energy bills support scam warning as fake texts urge people to apply for £400 discount

Espionage group using USB devices to hack targets in Southeast Asia

Experts Find 16,000+ Scam FIFA World Cup Domains

Facebook owner Meta fined by Irish watchdog for data breach

Fake COVID-19 Tracking App Spreads Punisher Ransomware

FTX Hacker Sent 255 BTC ($4.1 million) to Crypto Exchange OKX

Global Cyber Threats Surge to All-time Highs

Google files lawsuit accusing ‘G Verifier’ scammers of impersonating company

Hacker Attack On DraftKings Still Causing Headaches For Affected Bettors

Hacker claims to have stolen personal WhatsApp data of 7.3m Aussies as part of alleged cache of half a BILLION people worldwide

Hacker selling millions of Twitter users' data for £25,000 on the Dark Web

Hackers Using Trending TikTok 'Invisible Challenge' to Spread Malware

Hacking the Six Million Dollar Man

How gamifying cyber training can improve your defences

How The Age Of Smart Credentials Is Rewriting The Rules For Physical Verification?

How to Adapt to Tightening Security Budgets

How to maximize the safety of your digital tokens?

How to Recover From a Cyber Attack

IKEA investigating cyberattacks on outlets in Kuwait, Morocco

Ireland: Thousands of patients to be told their information was stolen during cyberattack

Ireland: Thousands of patients will be told their information was stolen in cyber attack

Ireland’s DPC Fines Meta €265m Following Large-Scale Data Leak

Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users' Data

Irish regulator fines Meta 265 million euros over data breach

Is Dark Web Monitoring Vital? How does it work?

IT and Security Leaders Face Up to One Cyberattack Per Week

Klamath County data breach

Log4j: A Year in Review

Meta Fined €265M For Facebook Data Breach That affected 500M Users

Meta fined $275m for breaking EU data privacy law

Moving Away From a ‘Checklist’ Approach to Federal Compliance in Cloud Security

New Flaw in Acer Laptops Could Let Attackers Disable Secure Boot Protection

Oracle Fusion Middleware Vulnerability Actively Exploited in the Wild

Patients in Kilkenny to be told their information was stolen in cyber attack

PII May Have Been Stolen in Virginia County Ransomware Attack

Pre-auth RCE in Oracle Fusion Middleware exploited in the wild (CVE-2021-35587)

Ragnar Locker gang steals vast amounts of personal data from Belgian Police servers

Ragnar Locker Ransomware Accidentally Attacked Belgian Police

Ransomware Gang Takes Credit for Maple Leaf Foods Hack

Ransomware Warning! Expect Hackers to Hit Harder During Holiday Season

Russian Infostealer Gangs Steal 50 Million Passwords

Sandworm gang launches Monster ransomware attacks on Ukraine

Sandworm hacking group linked to new ransomware deployed in Ukraine

Shifts in threat landscape to industrial control systems in 2023

South Africa’s online threats spiked in October

South Staffs Water reveals bank account details targeted in cyber attack

Spanish police dismantle operation that made €12M via investment scams

Spot the phish before it spots you: Tips and tricks to recognize and combat phishing attacks

Stolen Twitter Data Leaked Online, Even Bigger Breach Revealed

Telstra is now blocking more than 332 million scam emails per month

The Cloud is a Growing Target for Cyberattacks

The cybersecurity trends organizations will soon be dealing with

The top 200 most common passwords in 2022 are bad, mkay?

Third-Party Data Breach Impacts 119 Pediatric Practices, 2.2M Patients

Three security goals to focus on in 2023

Three Ways to Avoid Cyber Risks During the Qatar World Cup

Three Ways To Safeguard Higher Education Establishments From Cyberattacks

TikTok ‘Invisible Challenge’ has over 3 billion views - and hackers love it

Tips for safe shopping and avoiding scams during the holidays

Top Three Things Organizations Need to Stay Secure in 2023

Trigona ransomware spotted in increasing attacks worldwide

Twitter API Vulnerability Led to the Breach of Millions of User Data Records

UK Parliament launches inquiry into national security strategy around ransomware

Users Are Receiving More Unwanted Emails Than Ever, and It’s Causing Phishing Attacks

Vanuatu officials turn to phone books and typewriters, one month after cyber attack

Vice Society ransomware gang targets Cincinnati State College, disrupts operations

Vulnerabilities found affecting Operational Technology (OT) products from German companies Festo and CODESYS

Web App and API Attacks Surge 257% in Financial Services

What Happens When My Medical Records Are Stolen?

What Organizations Should Know Before Making The Shift To Threat Modeling

Whatsapp data breach controversy: Follow these tips to make your chats more secure

WhatsApp data leak controversy: How to make your chats more secure

Why cybersecurity training isn’t working

28th November

3 Cybersecurity Tips - How To Secure Critical Assets and Data

3 practical tips to stay cyber secure during FIFA World Cup Qatar

5G service providers struggle to keep networks secure

6 things you can do right now to protect your business data

7 Tips for Keeping Your E-Commerce Business Secure

$375,000 Cyber Theft From Seymour Government, Police And FBI Investigating

A breakdown of the Cyber Risk Index

Account Takeover & Compromised Accounts: Protecting Your Business From ATO Attacks

Acer fixes UEFI bugs that can be used to disable Secure Boot

African Police Bust $800K Fraud Schemes

AIIMS Delhi turns manual following ransomware attack

Amid Surge in Ransomware Attacks, More Organizations Are Being Rejected for Cyber Insurance - What Can Leaders Do?

Australia: ‘Flawed’ data breach penalty laws pass Parliament

Australia beefs up scrutiny of Medibank following data breach

AvosLocker Ransomware Update: Backup Targeting and Defense Evasion Techniques

Belgian Police Under Fire After Major Ransomware Leak

Beware, Scammers Are Targeting Holiday Shoppers With A USPS Phishing Scam

Binance CEO Shares Six Most Popular Crypto Scam Methods of 2022

Black Basta Gang Deploys Qakbot Malware in Aggressive Cyber Campaign

California County Warns of Social Services Data Breach

Canadian Crypto Exchange Coinsquare Confirms Data Breach

Canadian food giant refuses to pay ransom after gang threatens data leak

Cloud security starts with zero trust

Community Health Network Notifies 1.5M of Data Breach Stemming From Tracking Tech

Coordinated law enforcement operation against cyber crime yields over £107m in seized assets

Cyber-Threat Group Targets Critical RCE Vulnerability in 'Bleed You' Campaign

Cybersecurity Threats Need Fresh Data Recovery Strategies

Cybersecurity Tips for SMBs To Avoid Phishing Scams

Data Protection Commission (DPC) issues Meta with €265m fine over data scraping breach

DDoS Attacks in 2022: Trends and Obstacles Amid Worldwide Political Crisis

Eagle Bank data breach compromises Social Security numbers, financial account numbers, more

Financial fraud legislation aims to combat real estate money laundering

Hacker attempts to sell data of 500m WhatsApp users on dark web

Hacker Leaks 5.3M Twitter Accounts as Claims of Larger Breach Surface

Hackers are spreading malware via trending TikTok challenge

Has A ‘Hacker’ With Your Password Really Recorded You Watching Porn?

Here is why you should have Cobalt Strike detection in place

Here’s what WhatsApp has to say on data breach that allegedly leaked 500 million numbers

HHS warns of ‘Lorenz’ ransomware threat against larger organizations

Hope Health Systems, Inc. Experiences Ransomware Attack, Leading to Data Breach

How fraudsters are committing malvertising by targeting VPN users

How To: Secure On-Chain Data

How to address healthcare’s unique cybersecurity challenges

How to Maintain Strong Cybersecurity in the Face of Economic Headwinds

How to Protect Yourself After Massive WhatsApp Data Breach

How to Respond if Your Business is Impacted by a B2B Data Breach

How To Save Yourself From Crypto Scams

IKEA posted on ransomware gang’s leak site

Indian Hospital Hit with Bitcoin Ransomware Attack

Investing in more security tools not the answer

Ireland fines Facebook owner €265 million over data breach

Irish watchdog fines Meta 265M euros in latest privacy case

Is it worth taking out personal cyber insurance in case you are caught up in a data hack?

Malicious Android app found powering account creation service

Many Global 2000 companies lack proper domain security

Meta fined €265M for not protecting Facebook users' data from scrapers

Millions of Twitter Accounts Potentially Compromised

Meta fined $275 million for breaking EU data privacy law

Meta fined $275 million over data scraping practices that violated GDPR

New era of cyber

NHS Highland apologises to patients affected by data breach

Over a Dozen New BMC Firmware Flaws Expose OT and IoT Devices to Remote Attacks

Over a million user accounts ‘stolen’ in South Africa

Personal Data of Passengers, Employees Stolen in Ransomware Attack on AirAsia, Malaysia’s Largest Airline

Philippines urged to strengthen cybersecurity infrastructure

Phishing Campaign Impersonating UAE Ministry of Human Resources Grows

Protecting from Ransomware requires a thorough backup and recovery strategy

Punisher ransomware disguises as a COVID tracking app

RansomBoggs: New ransomware targeting Ukraine

Ransomware: Practical tips to improve resiliency

Remote working and the cost-of-living crisis: Impacts on the cyber risk landscape in the financial sector

Researchers Detail AppSync Cross-Tenant Vulnerability in Amazon Web Services

Retailers hard hit by data breaches, analysis of ICO figures suggests

Russian Sandworm Hackers Linked to New Ransomware Blitz

San Antonio nonprofit reports data breach that may have affected as many as 4,000 people

San Juan Regional Medical Center settles data breach lawsuit

Scammers are using Facebook Marketplace, Zelle, and PayPal to snare new victims

Securing the healthcare sector from the cyberthreats

Taxpayers shouldn’t let gift card scammers ruin the holidays

TD Bank and Canada Post put MyMoney consumer loan program ‘on pause’ indefinitely after apparent attack by ‘bad actors’

The 5 Cornerstones for an Effective Cyber Security Awareness Training

The Developing Connection Between Cryptocurrency and Cybercrime

TikTok ‘Invisible Body’ challenge exploited to push malware

Top 5 confidential computing uses in healthcare

Top cybersecurity threats for 2023

Twitter data breach far worse than initially reported

Twitter data leak exposes over 5.4 million accounts

UK: Cabinet Office alerted to data breach – and fails to respond for 10 days

Vice Society Claims Ransomware Attack Against Cincinnati State College

Viral claims of unsubstantiated WhatsApp data leak draw regulators’ attention

Virginia County Confirms Personal Information Stolen in Ransomware Attack

Washington County, Maryland, Hit With Thanksgiving Day Cyber Attack

What Can Scammers Do With Your Phone Number - 4 Ways to Protect Yourself

What is an Identity Verification Service and How Does it Work?

What’s next in cybersecurity

WhatsApp: 500 million phone numbers leaked according to new report, tech giant denies claims

WhatsApp denies 500 million users’ data leak

WhatsApp denies data breach, says user data is safe

Why Microsegmentation is Critical for Securing Continuous Integration/Continuous Delivery (CI/CD)

Worms of Wisdom: How WannaCry Shapes Cybersecurity Today

Pages

Editor's Message

Wednesday, 7 December 2022

VTB: Russia's State-Owned And Second-Largest Bank Suffers Massive Pro-Ukrainian "DDoS" Attack Resulting In App And Website Disruption

Tuesday, 6 December 2022

Rackspace: US Cloud Computing Provider Suffers Ransomware Attack Resulting In Customers' Hosted Exchange Email Services Outage

Amnesty International: Global Human Rights Organization's Canadian Division Suffers Chinese State-Sponsored Cyber Attack

Monday, 5 December 2022

Hôpital André Mignot: French Teaching Hospital Suffers Ransomware Attack Resulting In Operational Disruption Forcing ICU Patient Diverts

Data Breaches Digest - Week 49 2022

Ransomware Operator Claims - Week 48 2022

Friday, 2 December 2022

CryWiper: New Data Wiper Masquerading As Ransomware Discovered Targetting And Destroying Data In Russian Mayors' Offices And Courts

Thursday, 1 December 2022

Cuba: FBI & CISA Report Reveals Ransomware Operator Successfully Extorted $60 Million From Over 100 Worldwide Victims In 20 Months

Data-Leaking Ransomware Report - November 2022

Wednesday, 30 November 2022

Keralty: Colombian Healthcare Provider's "RansomHouse" Ransomware Attack Results In IT Systems And Operational Disruption

Tuesday, 29 November 2022

IKEA: Swedish Furniture Giant's Kuwait And Morocco Divisions Suffer "Vice Society" Ransomware Attack Resulting In IT Systems Disruption

Monday, 28 November 2022

Politie Zwijndrecht: Belgian Police Force Suffers "Ragnar Locker" Ransomware Attack Resulting In Sensitive Data Leaked On Dark Web

Guilford College: US Private College Suffers "Hive" Ransomware Attack Resulting In Stolen Staff And Students' Data Leaked On The Dark Web

Data Breaches Digest - Week 48 2022