Editor's Message

Welcome to DBD. On March 8th we officially celebrated our first anniversary. What started as a small idea unexpectedly evolved into a larger project, thanks to an overwhelming interest in the website and the information we provide. Therefore we would like to take this opportunity to thank each and every one of you who has supported us in our first year of operation, and we pledge to endeavour to continue providing you with the service you have come to expect from us going forward. Thank you for your support. Stay safe. :)

Monday, 14 June 2021

Invenergy: Chicago Sustainable Energy Company's "REvil" Ransomware Attack Results In Stolen Data Leaked On The Dark Web

Volkswagen: German Automotive Manufacturer's US Division's Third-Party Unsecure Server Compromises 3.3 Million Audi And VW Customer's Data

Data Breaches Digest - Week 24 2021

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 14th June and 20th June 2021.

15th June

Apple fixes ninth zero-day bug exploited in the wild this year

Critical remote code execution flaw in thousands of VMWare vCenter servers remains unpatched

Cyber criminals are targeting digital artists

Experts Shed Light On Distinctive Tactics Used by Hades Ransomware

Instagram‌ ‌Bug Allowed Anyone to View Private Accounts Without Following Them

Largest US propane distributor discloses '8-second' data breach

Microsoft 365 Defender Researchers Disrupted Large-Scale BEC Campaign

Microsoft disrupted this large cloud-based business email scam operation

NATO: Series of cyberattacks could be seen as the same threat as an armed attack

No Two REvil Attacks Are the Same, Experts Warn

Pandemic prompts digital ‘boom’ in account creation - as well as password fatigue

Swedish Data Protection Authority Fines Medical Service €1.2 Million for a Data Leak

Third of Staff Use Security Workarounds at Home

To identify cybersecurity vendor sustainability, start with the fundamentals

Top threats to consumer cyber safety

Vaccine passports challenged by data privacy and security implications

VPN attacks up nearly 2000% as companies embrace a hybrid workplace

Why XSS is still an XXL issue in 2021

14th June

5 major data breaches in India in 2021: Air India, Dominos, Facebook, and more

54% of Senior Executives Struggling to Keep up with Threat Landscape

Are your cyber defenses stuck in the sandbox?

Are your details on the dark web? How a data breach could leave you at risk of a scam

Avaddon ransomware gang shuts down and releases decryption keys

Biden Opposes Conditional Handover of Cyber-criminals

Business leaders now feel more vulnerable to cyber attacks

Codecov to retire the Bash script responsible for supply chain attack wave

Covid-19 drives spike in network security incidents

Cybersecurity Beyond The Enterprise: The Top Tips Everyone Should Know

Cybersecurity Executive Order 2021: What It Means for Cloud and SaaS Security

Cybersecurity Incident Response – Tips From The Trenches

Data breach exposed data of Indian officials, claims report - But government denies

Executive Order On Cybersecurity: A Call To Fight Cyber Threats

Explained: Everything you need to know about Ransomware

FBI warns Arkansans of ransomware risk

Fujifilm resumes normal operations after ransomware attack

G7 commits to action on ransomware, digital privacy

G7 Turns Up the Heat on Putin Over Ransomware Attacks

Global Police Close Record Number of Fake Pharma Sites

Government Wants Startups to Build a More Secure Nation

Hacker Broke Into French ISP ‘Free’ and Is Now Selling Database Access

Hacker group REvil claims responsibility for Invenergy data breach

Halting hackers: How cybersecurity knowledge and best practices can prevent digital disasters

Here’s How Ransomware Is Going To Fiendishly Impede AI Self-Driving Cars

How a conference room speakerphone might let attackers into your company network

How COVID-19 has made us rethink our IT teams

How To Ensure Third Parties Don't Compromise Your Supply Chain

How we respond today impacts our security tomorrow

If personal data is comprised in a data breach, can you file a lawsuit?

JBS paid $ 11 million Bitcoin ransom to restore system and avoid further attacks

Know Thy Enemy: Fighting Half-Blind Against Ransomware Won't Work

McDonald's Corp suffers data breach

Microsoft: Scammers bypass Office 365 MFA in BEC attacks

Microsoft: SEO poisoning used to backdoor targets with malware

Millions of Volkswagen customers affected by data breach

Multiple TurboTax customer accounts hacked

NoxPlayer Supply-Chain Attack is Likely the Work of Gelsemium Hackers

Our cybersecurity in a cyberwarfare age

Over 65,000 ransomware attacks expected in 2021

Philippines: 1Sambayan volunteer app 1Sama Ako hit by data breach

Phishing maintained near-record levels in the first quarter of 2021

Preparation key to remediating a breach

Ransomware: Russia told to tackle cyber criminals operating from within its borders

Ransomware attack shuts down Illinois foodservice distributor

Ransomware attackers are leveraging old SonicWall SRA flaw (CVE-2019-7481)

Ransomware Attacks are Evolving: What You Need to Know

Ransomware hackers now bigger cyber threat to UK than hostile states

Ransomware is biggest online threat to people in UK, spy agency chief to warn

Ransomware is key cyber threat facing UK – cybersecurity boss

Ransomware is the top cybersecurity threat we face, warns cyber chief

Recent cyberattacks reveal US utilities’ extreme vulnerability

REvil Claims Responsibility for Invenergy Hack

REvil ransomware hits US nuclear weapons contractor

Russia Ready to Exchange Cyber Criminals With U.S., Putin Says

Signs, Causes and Solutions for Network Data Breaches

Sky Lakes Medical: A First-Hand Look at Fall Ransomware Attack, Recovery

Social Engineering Scam Asks for Bitcoin Wallet Recovery Codes

The Path to Passwordless Is Built on What You Already Have

The U.S. and Russia Could Negotiate a Cybercriminals Exchange Deal

This data and password-stealing malware is spreading in an unusual way

Vishing: What is it and how do I avoid getting scammed?

Volkswagen, Audi disclose data breach impacting over 3.3 million customers, interested buyers

Volkswagen Vendor Exposed Data of 3.3m Drivers

VW Vendor Leaves Data Unsecured

What if the threat comes from within? Federal agencies must address the risk

What the White House told state AGs about cybersecurity

With ransomware ignorance isn't bliss

Ransomware Operator Claims - Week 23 2021

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 7th June and 13th June 2021, kindly provided by our partners.

Flag Icons created by Freepik and provided by Flaticon.

Friday, 11 June 2021

Avaddon: Ransomware Operator Appears To Have Shut Down Operations As They Freely Release 2,934 Victims' Decryption Keys

McDonald's: US Fast Food Restaurant Company's Data Breach Results In Stolen Employees' And Customers' Data In South Korea And Taiwan

Valley National Bank: New Jersey Bank Suffers "Avaddon" Ransomware Attack Resulting In Sensitive Data Leaked On Dark Web

Edward Don & Company: Chicago Foodservice Supplier's Ransomware Attack Results In IT Systems And Operational Disruption

Monday, 7 June 2021

Colonial Pipeline: US Petroleum Pipeline Company's "DarkSide" Ransomware Attack Resulted From A Compromised VPN Password

Hertfordshire County Council: UK Council Suffers 15,964 Cyber Attacks In Q1 2021 Averaging 181 Cyber Attacks Every Day

Pine Heath Nursing Home: Patients' Medical Records, Employees' Records And Sensitive Files Discovered In Abandoned Norfolk Care Home

Apache Pizza: Irish Pizza Takeaway Chain Suffers Data Breach Potentially Compromising Customer's Personal Delivery Information