Editor's Message

Welcome to DBD. On March 8th we celebrated our 3rd Anniversary and officially launched PRiSM, our Real-Time Ransomware Research Portal. For a while now, you have been requesting further visibility of our Ransomware Research which we publish every week, and PRiSM is our answer to your requests, so we hope you will find it a useful addition to DBD. We would like to take this opportunity to thank you once again for all your continued support, it is very much appreciated. Stay safe. :)

Monday, 20 March 2023

General Bytes: Florida Cryptocurrency ATM Manufacturer Suffers Cyber Attack Using Zero-Day Vulnerability Resulting In $1.5 Million Stolen

Data Breaches Digest - Week 12 2022

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 20th March and 26th March 2023.

24th March

Banks must improve cybersecurity as attacks rise

New Zealand: More than half of Kiwi businesses hit by cyber-attack last year

The Philippines: Pinoys ‘cyber harassed’ 20x more in 2022

23rd March

20% of Ransomware Attacks Involve Victim Harassment

2023 Cybersecurity Maturity Report Reveals Organizational Unpreparedness for Cyberattacks

82,000 Kroger Customers Impacted By Healthcare Data Breach

A closer look at Transportation Security Administration’s new cybersecurity requirements for aviation

A common user mistake can lead to compromised Okta login credentials

A detailed look at Silicon Valley Bank (SVB) phishing attacks

Arctic Wolf Annual Threat Report Highlights Broad Attacks and Innovative Tactics Become the Norm in Tumultuous Cybercrime Landscape

Associates in Dermatology Patients Affected by Business Associate Ransomware Attack

Beware of Phishing Scams 3.0 - The email you receive might not be from who you think it is

Billions of Android and iPhone users warned to delete messages immediately after ‘bank-draining’ attack alert

Blackbaud Inc. to Pay $3 Million to SEC for Alleged Misleading Disclosures in 2020 Ransomware Attack

Businesses Must Move Beyond the Reactive Approach to Cybersecurity

Chico bank suffers data breach after February cyber attack

China-Aligned "Operation Tainted Love" Targets Middle East Telecom Providers

CISA Wants You To Report Anything You Know About Ransomware Activity

City of Toronto and Virgin confirm hackers accessed data through file transfer systems

CloudPanel installations use the same SSL certificate private key

Cyber attack disrupts Spanish medicine distribution

Cyber threats to EU transport sector sends urgent call for enhanced cybersecurity

Digital fraud surpasses pre-pandemic levels

Emerging Chatbot Security Concerns

Epidemic of Insecure Storage, Backup Devices Is a Windfall for Cybercriminals

Exploit released for Veeam bug allowing cleartext credential theft

Fake ChatGPT Chrome Browser Extension Caught Hijacking Facebook Accounts

Fake ChatGPT for Google extension hijacks Facebook accounts

Ferrari Hits a Roadblock as Cyber Criminals Hold it to Ransom

Ferrari refuses to pay hackers in cyber ransom plot

Four Best Practices For Sustaining A Culture Of Security

Frustrated Dish customers still spending hours on hold weeks after ransomware attack

German and South Korean Agencies Warn of Kimsuky's Expanding Cyber Attack Tactics

Getting Ahead of the Ransomware Epidemic: CISA’s Pre-Ransomware Notifications Help Organizations Stop Attacks Before Damage Occurs

GRS Roadstone warns staff following cyber attack

Hacked off: banks demand answers after Ion cyber attack

Hackers access Dole employee data in ransomware attack

Hackers unleash cyber attack on mining group Rio Tinto

Hong Kong regulator to further amend rules on personal data protection

How scammers use social media and other online platforms to lure victims

How should businesses avoid a ransomware attack?

How to enhance the cybersecurity of operational technology environments

How to protect your money and assets from cyber security risks in Australia

Human Intelligence (HUMINT) in Cybersecurity

India: In massive data breach, details of 168 million citizens, defence staff leaked

Iran-linked incidents spurred Cyber Command to send 'hunt forward' team to Albania

Irish Food Giant Dole Admits Employee Data Breach

Is Trafficking in Hacking Information a Crime?

Kaspersky Exposes Phishing Attack Trend in Africa

Kenworth Adjusts after Parts Manufacturer Hacked by Ransomware

Kids tech camp iD Tech still silent weeks after data breach

Latitude Financial notifies insurers over malicious cyber attack

Latitude Financial Services Data Breach Leaked Customer Data From Two Service Providers

Malicious ChatGPT Chrome Extension Hijacks Facebook Accounts

Malware affected server was isolated following the attack: Biman

Microsoft fixes Acropalypse privacy bug in Windows 11 Snipping Tool

New Android Botnet Nexus Being Rented Out on Russian Hacker Forum

New Post-Exploitation Attack Method Found Affecting Okta Passwords

New Zealand: Online scammers cost Kiwis a record $20m last year

Nexus: A New Rising Android Banking Trojan Targeting 450 Financial Apps

North Korean Hacker Attempts To Phish Euler Finance Exploiter Via Encrypted Message

Oak Ridge city officials explain how cyber attack impacts customers

Only 6% of Australia and New Zealand (ANZ) businesses alerted of breach and data loss

OpenAI’s GPT-4 used as bait to launch phishing campaigns

Operation Soft Cell: Chinese Hackers Breach Middle East Telecom Providers

Preventing 2022’s Application Security Fails: What We Can Learn

Python info-stealing malware uses Unicode to evade detection

Ransomware Protection Cost Analysis: How Much Will Security Cost?

Red Canary's Threat Detection Report Reveals Top Threats and Techniques Used by Cybercriminals

Role Of Security Compliance In Mitigating Cyber Threat

Scammers’ latest trick: Getting you to open a OneNote document

SharePoint Phishing Scam Targets 1600 Across US, Europe

Small firms face same risk from hackers as bigger counterparts, travel warned

SMB security: preventing phishing attempts

Stop using your browser's built-in password manager. Here's why

The Access Transaction As The Building Block Of IT

Three things businesses should know about ransomware attacks

Top 5 security risks for enterprise storage, backup devices

Top Data Breaches in 2022 and 2023 Point to Increases in Phishing and Ransomware

Transport and logistics in Europe pushed to beef-up cybersecurity

UK Government Sets Out Vision for NHS Cybersecurity

US cyber officials make urgent push to warn businesses about vulnerabilities to hackers

Using Deception to Learn About Russian Threat Actors

Virgin Group added to Cl0p gang’s victim leak site

Walsall Healthcare NHS Trust dealing with aftermath of 'cyber attack'

What cyber attack risks do the railways face?

What Is Doxware and Is It Dangerous?

What Shell, Hitachi, and Rubrik attacks reveal about Cl0p

Why Zero Trust Is Necessary In The Fight Against Ransomware

22nd March

9 Million customers affected in AT&T data breach

80% of security leaders predict increase in cybersecurity automation

92% of Organizations Fell Victim to Phishing in Last 12 Months

Agriculture the Second-Largest Target for Cyber Criminals

AI-themed project riding ChatGPT wave steals over $1M from users

Attackers Are Probing for Zero-Day Vulnerabilities in Edge Infrastructure Products

Australia: Energy industry is now one of major targets for cyber attack

Australia: Health worker sacked over 'serious breach' of patients' privacy as ACT government investigates data misuse

Average enterprise storage/backup device has 14 vulnerabilities, three high or critical risks

Bangladesh: Probe begins into ransomware attack on Biman's email server

Banks, Financial Industry Hit by Rising Ransomware Attacks

Billions of Gmail and Outlook users given ‘red alert’ over dangerous AI ‘hiding in your inbox’ – it’ll take everything

BreachForums Administrator Baphomet Shuts Down Infamous Hacking Forum

BreachForums Shuts Down After Admin's Arrest

Bridging the cybersecurity readiness gap in a hybrid world

Canada: Health-care officials bracing for even more cyberattacks

Circle Executive’s Twitter Account Hacked to Promote Fake USDC Airdrop

CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems

CISA and NSA Enhance Security Framework With New IAM Guide

CISA revises cybersecurity performance goals

CISA, NSA push identity and access management framework as risks grow

Class Action Lawsuit Filed Against Cardiovascular Associates Over 441K-Record Data Breach

Clop ransomware gang lists luxury brand retailer Saks Fifth Avenue as a victim

Cloud Malware: Types of Attacks and How to Defend Against Them

Companies vulnerable to cyber-attack via suppliers

Convergent Outsourcing, Inc. Files Notice of Data Breach That Leaked Consumers’ SSNs

Cyber insurance carriers expanding role in incident response

Cybersecurity Developments and Legal Issues

Cyprus: Land Registry portal offline until mid-April

Daily QR scan scams phishing users on mobile devices

Darkweb Cryptocurrency Mixer ChipMixer Shut Down for Allegedly Laundering $3 Billion Worth of Crypto

Data reportedly stolen as Dutch ship monitoring company hit by cyber-attack

Days After Missed Ransomware Deadline, Stolen Minnesota Schools’ Files Appear Online

Dole discloses employee data breach after ransomware attack

Email, phone calls, and apps like Slack are vulnerable to ransomware

Enhance security while lowering IT overhead in times of recession

EU cybersecurity agency reports on threat to rail

Exploring The Opportunities Of Generative AI For Improving Security Operations

Facebook accounts hijacked by new malicious ChatGPT Chrome extension

February 2023 Healthcare Data Breach Report

Ferrari Data Breach: The Industry has its say

Ferrari falls victim to ransomware attack

Ferrari Has Been Hit by a Cyberattack That Exposed Customer Data, and the Hacker Is Demanding Ransom

Fraud Prevention Tip: Choose Credit Over Debit for Online Purchases

Fresh wave of Russian cyberattacks on Italian sites

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Google Suspends Chinese Shopping App Pinduoduo Over Malware Concerns

Hackers Are Actively Exploiting Unpatched Adobe ColdFusion

Hackers are Increasingly Targeting Auto Dealers

Hackers inject credit card stealers into payment processing modules

How ChatGPT Can Help You Improve Your Phishing Incident Response

How Cyber-Criminals are Circumventing Multifactor Authentication

How to combat hardware Trojans by detecting microchip manipulations

IBM Report: Ransomware Persisted Despite Improved Detection In 2022

India second most targeted country by ransomware in APAC and Japan region

Indigenous health organisation says personal details of 8,000 people accessed in cyber attack

Israel: Here's how to protect yourself from Anonymous cyberattacks next week

Journalists Targeted by USB Drives That Explode When Inserted Into PCs

Just 1% of Dot-Org Domains Are Fully DMARC Protected

Latest cyber security threats in Africa revealed

LockBit 3.0 can now dismantle malware detection, Feds warn

Luxury car maker Ferrari says hackers stole customers' personal data, demanded a ransom

Malaysia Experienced 37% More Ransomware Attacks in 2022, and That’s Pretty Worrying

Massive Data Breach at Healthcare Provider ILS Compromises Millions of Patients

McDonald's Korea fined 696 million won for breach of customers' personal data

Medusa group publishes data stolen from Minneapolis Public School after ransom deadline expires

Michigan's Lansing Community College forced to cancel classes following a disruptive cyber attack

Microsoft investigating reports of ‘aCropalypse’ image-crop vulnerability in Windows

Most Fortune 500 Firms Were Victim of Phishing in Last Year

NAPLISTENER: New Malware in REF2924 Group's Arsenal for Bypassing Detection

New Android Banking Trojan 'Nexus' Promoted As Malware-as-a-Service (MaaS)

New data-stealing malware targets state entities in Russia-occupied Ukraine

New hacker attack in Italy, the website of the Ministry of Transport has been taken offline

New Kaspersky Tool Allows for Decryption of Conti Ransomware

New victims come forward after mass-ransomware attack

New Zealand: New ASB Netcode scam adds to flurry of recent bank cons

North Korean APT group ‘Kimsuky’ targeting experts with new spearphishing campaign

North Korean hackers using Chrome extensions to steal Gmail emails

Oakland finds no evidence of second ransomware attack despite LockBit claims

Palo Alto Networks - ransomware is becoming more aggressive

Partisan suspects turn on the cyber-magic in Ukraine

Phishing Detection & Prevention: What Businesses Should Know

PoC exploits released for Netgear Orbi router vulnerabilities

Preventing Insider Threats in Your Active Directory

Pro-Russian hackers once again attack Italian government websites

Ransomware attack exposed Ferrari customer data

Ransomware Attack Hits Ship-Tracking Firm Royal Dirkzwager

Ransomware Attacks Double in Europe's Transport Sector

Ransomware attacks in Philippines rise by 57.4% in 2022

Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager

Remote patient monitoring devices’ major privacy concerns

Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware

Royal Mail-owned logistics company GLS hit by infostealing cyberattack

Scammers use GPT-4 launch to send phishing emails and steal crypto

ScarCruft's Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques

Securities and Exchange Commission (SEC) Proposes Data Breach Notification and Incident Response Requirements

Security Researchers Spot $36 Million BEC Attack

ShellBot DDoS Malware Targets Linux SSH Servers

Ship Monitoring Firm Experiences Cyber Attack

Six Reasons Why Cybersecurity Pros Need the “Human Element”

Skylink hit by hacker attack

Stung by Free Decryptor, Ransomware Group Embraces Extortion

Sunland Asphalt and Construction, LLC Reports Data Breach Affecting 7,884 Individuals’ Personal Information

Surge in compromised credentials highlights rampant cyber hygiene failings

Tax season 2023: IRS warns of phishing email and text scams regarding refunds

The REvil Gang Story: The “Good Guys” Can Still Prevail

The role of cyber negligence in insider threats

Too many enterprises have shadow IT – unlocked doors with no cameras

UAE jobs: Over 2,400 fake listings targeting Arabic speakers uncovered

UC San Diego Health Discloses Healthcare Data Breach Stemming From Vendor Pixel Use

UK issues strategy to protect National Health Service from cyberattacks

Uncharted Territory: Managing The New Security Risks Of Connected Cars

Understanding Social Engineering in Cybersecurity: How to Stay Protected

USDC issuer Circle issues warning about hacked executive account

Visa uncovers the dark side of token bridges – What to know

Vulnerability in Crypto ATMs Allowed Hacker to Drain $1.5 Million

Weak Passwords Offer Easy Access to Enterprise Networks

What Are Reconnaissance Attacks and How Do They Work?

What do you do if a hacker takes over your ship?

What lawyers need to know about the Latitude cyber-attack

Why the employee factor in IT security is vital to protecting your company’s data

Why You Don’t Need 300 Gbps DDoS Simulation Tests

Windows 11 and 10’s Snipping Tools Vulnerable to Data Exposure

Xfinity Data Breach: How It Happened (and Are You Affected?)

You Need To Turn Off Wi-Fi Calling If You Have These Phones Or You’ll Get Hacked

21st March

2022 witnessed a drop in exploited zero-days

Associate of ‘Cryptoqueen’ fraudster arrested and brought to US

At least 17 members of Congress had sensitive information exposed in data breach

Australia: More Aussie employees receiving security training

Barracuda reveals three novel tactics being used by attackers in phishing

Blackbaud Settles With Securities and Exchange Commission (SEC) For $3M On Donor Data Breach

Braintree GP surgery warns of data breach after ‘confidential’ information blows across roads

Breach Forums to Remain Offline Permanently

Breached hacking forum shuts down, fears it's not 'safe' from FBI

BreachForums owner Pompompurin arrested by the FBI

BreachForums says it is closing after suspected law enforcement access to backend

ChatGPT Bug Exposes Conversation History Titles

CISA Announces Launch of Ransomware Prevention Initiative

Clop ransomware claims Saks Fifth Avenue, retailer says mock data stolen

Coinbase Wallet 'Red Pill' flaw allowed attacks to evade detection

CommonMagic Targets Entities in Russo-Ukrainian Conflict Zone

Crypto ATM Manufacturer General Bytes Suffers $1.5m Bitcoin Theft

Cyber attack on DC Health Link compromised the data of US House and Senate members

Cyber attack on Tanbridge House School in Sussex locks staff and students out of their systems

Cyber Warfare is Upon Us: Why the Next Generation of ‘War Games’ so Important

Cybercriminals using novel phishing tactics to get their target

Cybersecurity Leaders Stressed Over Email Security

Cybersecurity Risk Quantification: A New Way to Understand Risks

Data backup, security alerts, and encryption viewed as top security features

Data Breach At ChatGPT? Users Report Seeing Unknown Conversations On Their Screens – Here's What Happened

Data breach leak site BreachForums shuts down

DNA Diagnostics Center Settles Data Breach with Ohio and Pennsylvania Attorneys General

Euler Finance hacker sends message to an Ethereum address belonging to the DeFi platform

Euler Finance receives message from hacker via Ethereum, but no clarity yet

Expert speaks out after City of Allen Park hit with ransomware attack

Experts warn of healthcare sector cybersecurity risks

FBI Internet Crime Complaint Center (IC3): Victims Racked Up $10.3B in Losses Tied to Internet Crime Last Year

Feds Release Updated Threat Intelligence on LockBit 3.0 Ransomware

Ferrari data breach: Client data exposed

Ferrari Discloses Ransomware Attack; Refuses to Pay Ransom

Ferrari Hacked – Attackers Stolen Payment Data & Demand For Ransom

Ferrari hit by data breach and ransom demand: says no impact on operations

Ferrari rejects ransom demand after cyber attack

Ferrari Reveals Data Breach Ransom Attack

Ferrari says ransomware attack exposed customers’ personal data

Ferrari victim of extortion by anonymous hacker collective

Ferrari working with law enforcement after ransom demand from cybercriminals

From Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022

General Bytes Bitcoin ATMs Hacked to Steal Funds

Hacker tied to D.C. Health Link breach says attack ‘born out of Russian patriotism’

Hacker vs. Hacker: North Koreans Attempt to Phish Euler Exploiter of $200M in Crypto, Experts Say

Hackers Steal Over $1.6 Million in Crypto from General Bytes Bitcoin ATMs Using Zero-Day Flaw

Hackers use new PowerMagic and CommonMagic malware to steal data

Hackers Use NuGet Packages to Target .NET Developers

Hitachi Energy hit by ransomware attack on third-party provider

How can Ransomware Spread Through a Network?

IBM Report: Ransomware Persisted Despite Improved Detection in 2022

Independent Living Systems Sued Over 4 Million-Record Data Breach

India ranks second in Asia-Pacific and Japan Region for ransomware attacks in 2022, says report

India second-most targeted by ransomware: Palo Alto research

Italia’s pride tarnished as the Prancing Horse of Ferrari falls prey to ransomware

Kaspersky blocks over 50K financial phishing attacks vs businesses in The Philippines

Largest telecom in Guam starts restoring services after cyberattack

LockBit ransomware gang now also claims City of Oakland breach

Massachusetts Pharmacy Falls Victim to Email Phishing Attack, Results in PHI Exposure

Maternal and Family Health Services sued over data breach

National Cyber Security Agency (NCSC) Launches Two New Tools for Small Businesses

New 'Bad Magic' Cyber Threat Disrupt Ukraine's Key Sectors Amid War

New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers

New York City Special Needs Students' Records Found Exposed on Web

Oakland suffers second ransomware attack in weeks at hands of LockBit

OneNote, Many Problems? The New Phishing Framework

Over 2400 Fake Pages Found Targeting Job Seekers in Middle East, Africa

Phishing: Who Takes the Bait?

Queensland skin cancer study hit by data breach

Ransomware gangs’ harassment of victims is increasing

Ransomware ‘likely’ to target transportation Operational Technology (OT) systems, warns EU cyber agency

Ransomware Risk Management: A Cybersecurity Framework Profile

Ransomware-As-A-Service: managing the productized ransomware threat

'Red alert' scam warning issued to Google and Microsoft Outlook users

Takedown of the biggest hackers’ forum in the world

Threat actors are experimenting with QR codes

Use an iPhone or Mac? Don’t fall for this iCloud email promising free storage

Wartime hacktivism is spilling over into the financial services industry

Why CISOs Are Looking to Lateral Security to Mitigate Ransomware

Why Cybersecurity Should Still Be A Top Priority For Businesses

Why Organizations Need A Data-Driven Cybersecurity Strategy

Wilkes-Barre Tech Center Gives Update on Cyber Attack

Windows 11 Snipping Tool privacy bug exposes cropped image content

20th March

7 guidelines for identifying and mitigating AI-enabled phishing campaigns

'Active' cyber attack to keep Latitude systems offline for days, company suspended from trading

After BreachForums arrest, new site administrator says the platform will live on

AI dApp Harvester Keeper gets hacked for almost $1 Million

Akamai research shows 193 million mobile malware attacks flagged for consumers in EMEA

Another tax scam: beware of improperly filing the Employee Retention Credit

Arbitrum: Hacker compromised 2,400 wallets to sweep ARB tokens upon launch

Australian Cyber Security Centre (ACSC) Ransomware Profile – Lockbit 3.0

Bangladesh: Biman's email server down with ransomware

Beware! 'FakeCalls' Voice Phishing scam could steal your bank account information

BECs double in 2022, overtaking ransomware

BianLian ransomware group shifts focus to extortion

Bitcoin ATM maker shuts cloud service after user hot wallets compromised

Bitcoin ATM Manufacturer General Bytes Shuts Cloud Service After Hacker Compromise User Hot Wallets

Black Basta ransomware group targets healthcare, feds warn

BreachForums Admin Arrested in New York

BreachForums cybercrime website down, admin busted

Business Email Compromise (BEC) overtakes ransomware as cyber crime of choice

Changing Cyber Landscape Poses Challenges For Health-Care Market

Check Point finds potential cybercrime scenarios in ChatGPT4

Chick-fil-A Confirms Data Breach

CISA kicks off ransomware vulnerability pilot to help spot ransomware-exploitable flaws

CISA starts ransomware vulnerability pilot program

CISA, FBI, MS-ISAC Warn Critical Infrastructure of LockBit 3.0 Ransomware Attacks

Community Raises Alarm Over Fraudulent Arbitrum Airdrops

Crypto ATM manufacturer General Bytes hacked, at least $1.5 million stolen

Cyber risk is a business risk

Cybercriminals introduce three novel phishing tactics to net victims

Data breach at NorthStar Emergency Paramedic Services impacts 80,000 patients

Detecting face morphing: A simple guide to countering complex identity fraud

Dish Network updates on ransomware attack

DotRunpeX: The Malware That Infects Systems with Multiple Families

Emotet Rises Again: Evades Macro Security via OneNote Attachments

Ferrari discloses data breach after receiving ransom demand

Fightcamp Users Targeted in Email Phishing Scheme

Finance company warns customers that scale of data breach may widen

First Dero cryptojacking campaign targets unprotected Kubernetes instances

General Bytes Bitcoin ATMs hacked using zero-day, $1.5M stolen

Gmail and Microsoft Outlook users issued red alert warning

Google Pixel flaw allowed recovery of redacted, cropped images

Google urges Android phone users to switch off Wi-Fi calling

Greek defense minister says he was hit by cyber attack on Twitter

Hacker Exploits Months-Old Bug to Steal Crypto From ATMs

Hacker selling U.S. Marshals Service data on a Russian-speaking cyber criminal forum

Hacker who ran BreachForums could face 20 years in prison

Hackers can hijack Samsung and Pixel phones by knowing phone number

Hackers mostly targeted Microsoft, Google, Apple zero-days in 2022

Hackers target .NET developers with malicious NuGet packages

Healthcare data breach affects more than 4.2 million people

"Hinata" Botnet Could Launch Massive DDoS Attacks

Hitachi Energy confirms data breach

Hitachi Energy Blames Data Breach on Zero-Day as Ransomware Gang Threatens Firm

Hitachi Energy is the latest victim of GoAnywhere attacks

Hitachi, Rubrik, Hatch Bank among those hit after file transfer software exploited

Hospital sends sensitive patient letters to man awaiting treatment instead of doctors

How Automated Vulnerability Detection Mitigates Fraud and Hardens Financial Systems

How Hackers are Exploiting Cloud Organizations

How To: Improve Your Company’s Cybersecurity Training

How to protect online privacy in the age of pixel trackers

Is cyber insurance a must-have?

Is Your Cybersecurity Strategy Falling Victim to These 6 Common Pitfalls?

Khalistan Referendum voting in Australia hit by cyber attack

KillNet Group Uses DDoS Attacks Against Azure-Based Healthcare Apps

Kingdom of Saudi Arabia (KSA) continues to be targeted by cyber threat actors

Kronos Malware: What You Need To Know So You’re Not Affected

Lansing Community College cancels online classes after cyberattack

Lansing Community College (LCC) says it's back online, tells students, workers to reset passwords

Latitude admits it STILL has hackers lurking inside its computers after they stole data from Harvey Norman, JB Hi-Fi and Apple clients - as finance firm is forced to stop taking on new customers

Latitude Financial warns customer data breach could widen and hack 'remains active'

Living with data breaches in unregulated cyberspace

Malaysia ranks tenth among countries targeted by spam emails

Mispadu Banking Trojan Targets Latin America: 90,000+ Credentials Stolen

Mispadu Trojan Steals 90,000+ Banking Credentials From Latin American Victims

Most mid-sized businesses lack cybersecurity experts, incident response plans

Move, Patch, Get Out the Way: 2022 Zero-Day Exploitation Continues at an Elevated Pace

National Basketball Association (NBA) alerts fans after hack of third-party service provider

National Basketball Association (NBA) warns fans over data breach, personal details copied

New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads

New Research Reveals Only 6% Of Australia and New Zealand (ANZ) Businesses Alerted Of Breach & Loss Of Data From 2022-23

New Trigona ransomware strain up and running, but still evolving

‘No Intention of Keeping What Is Not Ours,’ Euler Finance Hacker Says

Phishing attempts are growing like wildfire and becoming harder to detect

Private records of some Canberra Health Services patients 'deliberately' sent to industrial partner

Ransomware Trends 2022: UK Attacks Rose 17%

Researchers Shed Light on CatB Ransomware's Evasion Techniques

Romanian and Dutch police arrest online phishing gang

Scam Robocalls Forecast to Cost $58bn This Year

SEC issues new cybersecurity requirements for risk management

Skin cancer survey hack may have 'compromised' personal details, Medicare numbers of participants

SMBs don't see need for cyber insurance since they won't experience security incidents

‘SMS OTP no longer secure’: Data security threats in digital banking bared

South Korea: Coupang hacked by Russians, report says, company denies

Take the cybersecurity conversation to the board

The new and great challenges in cybersecurity, according to experts: artificial intelligence, ‘ransomware’ and ‘hacktivism’

The silent spreaders: How computer worms can sneak into your system undetected?

The Top Five Cybersecurity Concerns

There are nearly 300 Arbitrum Airdrop Phishing Sites Already

These are the top internet scams, according to a new FBI report

Threat Actors Using Go-based HinataBot to launch DDoS Attacks

Trinity Health of New England breach impacts more than 45,000 patients

UK Ransomware Incident Volumes Surge 17% in 2022

US, European Authorities Dismantle Darknet Cryptocurrency Mixer

What is a Data Breach? (And How Vulnerable is Your Business?)

What is Automated Clearing House (ACH) Fraud and How to Prevent It

What Is Shoulder Surfing? How Does It Affect Cybersecurity

What is the National Cybersecurity Strategy? A cybersecurity expert explains what it is and what the Biden administration has changed

Ransomware Operator Claims - Week 11 2023

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 13th March and 19th March 2023, kindly provided by our partners.

For further analysis on this week's (and any historic) Ransomware Operator Claims, including the Industry Sectors attacked, please use our FREE PRiSM application.

Flag Icons created by Freepik and provided by Flaticon.

Monday, 13 March 2023

Centre Hospitalier Universitaire Saint-Pierre: Belgian Hospital's Cyber Attack Results In IT Systems Shutdown And Ambulance Diversions

Data Breaches Digest - Week 11 2023

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 13th March and 19th March 2023.

19th March

4 Common Ways Scammers and Hackers Stole Crypto in Projects in 2022

6 Ways Hackers Hack Your Smart TV & How To Avoid It

Atlanta man sentenced to prison for multi-million dollar cyber fraud scheme

Australia: Brisbane Khalistan Referendum voting hit by cyber-attack

BianLian ransomware crew goes 100% extortion after free decryptor lands

Complacency of staff to blame for data breaches

Customers of these banks are most likely to be a victim of fraud

Cybercriminals used 3 new tactics for phishing users in January 2023

Cyberespionage campaign expands

Cybersecurity threats in Malaysia on the rise

Euler Finance hacker sends 100 ETH to red-flagged North Korean address

FBI Nabs Infamous Hacker Forum Owner Behind Major Data Breaches of Many Indian Companies and Government Agencies

Hackers Can Gain Full Control Of Certain Samsung Phones With Just Contact Number: Google's Project Zero Report

India: Scammers sending fraud messages to HDFC, SBI and other bank customers to update PAN details, don’t fall for it

It's impossible to review security cameras in the age of breaches and ransomware

Largest Crypto ATM manufacturer hacked over security hitch - Over $1.5 bitcoin (BTC) stolen

Lawmakers are sounding the alarm after recent cyber attacks at hospitals

LockBit 3.0 Ransomware: Inside the Million Dollar Cyberthreat

Millions of iPhone and Android users warned over popular feature that could cost you dearly

New ‘HinataBot’ botnet could launch massive 3.3 Tbps DDoS attacks

Poolz & Euler Hit With Back-to-Back DeFi Exploits Totaling $2.3 Million

Pro-Russia hackers are increasingly targeting hospitals, researchers warns

Researcher creates polymorphic Blackmamba malware with ChatGPT

Russian Hackers Hit Indian Health Ministry's Website

Sorry for the inconvenience: How cross-border cyber attacks impact you directly

Taiwan: Bureau warns of online phishing

Urgent phishing warning issued to anybody who uses Gmail or Microsoft Outlook

What Do You Do if a Hacker Takes Control of Your Ship?

18th March

34 Most Common Types of Network Security Protections

Beware of New Trigona Ransomware Attacking Finance and Marketing Industries

Blackbaud to Pay $3M Fine for 'Misleading' Customers Following 2020 Ransomware Attack, Data Breach

BlockSec Foils Hackers’ Attempt To Steal $5 Million From ParaSpace

Chinese Hackers Exploit Fortinet Zero-Day Flaw for Cyber Espionage Attack

Circle phishing campaign promises fake USDC DeFi swap

Cyber Defenses Should Be on High Alert

Data breaches cost Canadian businesses nearly $6M on average: Mastercard data

Don’t Click on the Email that Promises a Free Shein Gift Card – It’s a Scam!

Emotet malware now distributed in Microsoft OneNote files to evade defenses

Euler Finance hacker starts returning stolen Ether

Hitachi Energy Latest Victim of Clop GoAnywhere Attacks

Hospitals risk becoming major targets for cyberattacks following Saint-Pierre hacking

India: Health Ministry Website Allegedly Targeted By Russian Hackers, CERT-IN Support Sought

Internet users urged to be vigilant as cybercrimes are on the rise

Jordan: National Cybersecurity Center reports increase in ransomware attacks

Latitude customers are furious: some have had data hacked before through Medibank and Optus

LockBit 3.0 Ransomware: Inside the Cyberthreat That's Costing Millions

More than 3,000 customers' data stolen in Latitude Financial cyberattack

National Basketball Association (NBA) Notifies Fans of Data Breach That Led to Stolen Private Information

New password rules to secure your accounts

Nigerian Man Sentenced to 7 Years for Cyber Fraud in the United States

Owner of Breach Forums Pompompurin Arrested in New York

ParaSpace hack in retrospect: $5M rescued, large withdrawals time-locked, hacker wants fees back

Phishing in EU: How to become cyberaware and protect yourself

Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York

'Red alert' warning for people who use Gmail or Microsoft Outlook over phishing scams

Samsung Exynos Modems Are Facing Major Vulnerabilities, Come On Samsung, Fix Them Now!

Taiwan: Authorities block phishing page for NT$6,000 tax rebate

The Hidden Costs of Insider Threats

Twitter silent as hackers scam users with stolen high-profile verified accounts

What Are Giveaway Bots and How Are They Used in Scams?

You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?

17th March

5 Reasons Why Cyber Matters for CFOs

5 Security Tricks to Avoid Potential Facebook Hacks in 2023

Addressing the upward march of cyberattacks

AllCare Plus Pharmacy, Inc. Notified Patients of Recent Data Breach Leaking Their SSNs and PHI

Alleged BreachForums owner ‘Pompompurin’ arrested on cybercrime charges

Are Paid Online Survey Sites Legit? Watch Out for These 7 Red Flags

Beware Of Online Payment Frauds, This Is How Scammers Can Steal Your Money

Binance, Tinder, Costco, and Walmart – Top Phishing Scams of the Week

China-backed espionage is getting harder to spot, researchers say

Chinese Hackers Exploiting 0-day Vulnerability in Fortinet Products

Clop ransomware expands GoAnywhere victims list, as Hitachi and more confirm incidents

Cloudflare uses its global network to identify the top 50 most impersonated brands

Cybercrime in Fast-Paced Digital Economy: Challenges and Ways Forward

Cybercriminals add three novel tactics to phishing in latest attempts to sneak past security

Digital crimes are getting more sophisticated. Here's what to watch out for

Dutch shipping giant Royal Dirkzwager confirms Play ransomware attack

Education Leaders Need to Prioritize Cybersecurity to Protect Schools and Students

Essendant confirms ransomware attack

Eufy security cams 'ignore cloud opt-out, store unique IDs' of anyone who walks by

Euler Finance Hacker Rejects $20M Offer, Mixes 1,000 ETH in Tornado Cash

Experian data breach fraudster re-arrested, denied bail

Fake Telegram and WhatsApp clones aim at crypto on Android and Windows

FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps

FBI: Critical Infrastructure Hit 860 Times by Ransomware in 2022

Free decryptor released for Conti ransomware variant infecting hundreds of organisations

Google Exposes 18 Zero-Day Flaws in Samsung Exynos Chips

Google Uncovers 18 Severe Security Vulnerabilities in Samsung Exynos Chips

GPT-4 Can’t Stop Helping Hackers Build Cybercriminal Tools

Hackers target Horsham school in 'malicious cyber attack'

Happy State Bank Notifies 10,069 Customers of Recent Data Breach

HC3 Raises Alarm Over Black Basta Ransomware Group as a Threat to Healthcare

Healthcare services provider Independent Living Systems notifies 4.2m individuals about data breach

Healthcare software company ILS reveals data breach affecting 4 million people

Hitachi Energy confirms data breach after Clop GoAnywhere attacks

How ChatGPT is changing the cybersecurity game

How healthcare CISOs can automate cloud security controls

How to prevent data theft by existing and departing employees

India: Health ministry approaches CERT-In over attempt to hack its website

Information Commissioner’s Office (ICO) Reprimands Metropolitan Police for Data Snafu

Insecuring Your Home And Data: Ring Vendor Apparently Hit With Ransomware Attack

Japan: Firms spend millions, weeks recovering from cyberattacks

Joint European task force takes down darkweb money laundering platform ChipMixer

Lansing Community College (LCC) to resume some classes but remain offline next week

Latitude Financial Scrambles to Contain Large Data Breach

List of famous brands that are mostly impersonated for phishing attacks

LockBit group claims responsibility for a ransomware attack on Essendant

Lookalike Telegram and WhatsApp Websites Distributing Cryptocurrency Stealing Malware

Malaysia faces increasing cybersecurity threats

Meta Proposes Revamped Approach to Online Kill Chain Frameworks

Microsoft shares script to fix WinRE BitLocker bypass flaw

Microsoft Warns Russian Hackers May Plan More Attacks, Inside and Outside of Ukraine

Minneapolis Public School data released on dark web after ransomware attack

Most security pros turn to unauthorized AI tools at work

National Basketball Association (NBA) alerts fans of a data breach exposing personal information

National Cyber Security Centre (NCSC): ChatGPT Won’t Democratise Cyber-crime

New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries

New GoLang-Based HinataBot Exploiting Router and Server Flaws for DDoS Attacks

New Jersey latest state to implement cyber incident reporting requirement

New Microsoft SmartScreen Bypass Technique Causes Concerns

New Study Claims ChatGPT Can't Outperform Human Designed Email Phishing Scams

New Vishing Attack Spreading FakeCalls Android Malware

Oakland ransomware attack: Leaked data has more than 3.1K views on dark web

Pro-Russian Winter Vivern APT Targets Governments and Telecom Firm

Ransomware Attacks in Manufacturing and What Business Leaders Fear Most

Ransomware down 57% but other threats looming, warns report

Ransomware Gangs Release Naked Photos of Cancer Patients, Student Sexual Assault Records

Ransomware group claims massive data leak but Minneapolis schools files’ whereabouts a mystery

Ransomware group posts Minneapolis Public Schools data to dark web

Ransomware Strongly Influencing SOC Modernization Strategies, Cybereason Research Shows

Ransomware-as-a-Service (RaaS): Definition & Examples

RAT developer arrested for infecting 10,000 PCs with malware

Red alert warning issued to anybody who uses Gmail or Microsoft Outlook

Rubrik discloses data theft in a GoAnywhere zero-day attack

Rural US Hospitals Are Getting Clobbered by Ransomware

Russian hackers allegedly target health ministry website over 'India's support to Ukraine'

Russian Military Preparing New Destructive Attacks: Microsoft

Samsung, Vivo, Google phones open to remote compromise without user interaction

Samsung’s Exynos chips cited for potentially hackable flaws

Should Your Organization Be Worried About Insider Threats?

Silicon Valley Bank (SVB) account holders targeted with phishing, scams

Silicon Valley Bank’s collapse is a scammer’s dream: Don’t get caught out

South Africa: Are there potential cyber security challenges around selling energy back to the grid?

Suspected China-linked hackers exploit Fortinet zero-day in spying campaign

Taiwan's Acer confirms data breach

Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets

The Convergence Of Data Privacy And Digital Trust

The Internet Dilemma: Leveraging the Value While Reducing Vulnerabilities

The One Place IT Budget Cuts Can’t Touch: Cybersecurity

The Tipping Point for Operational Technology (OT) Cybersecurity

Tracking the global spread of malware

Vishing Campaign Targets Social Security Administration

Wallet Guard Reveals Massive DDoS Attacks, Says It's Ongoing but Mitigated

Watch out: Four common scams worming their way into your inbox

Wave of telecom data breaches highlight industry's weaknesses

Which Financial Information Should You Avoid Sharing Publicly?

Who was behind the cyberattack on Newfoundland and Labrador's health-care system? A security expert explains

Why CISO burnout is a growing threat to organisations in Saudi Arabia

Will AI replace humans in phishing attacks?

Will Consumers Punish Vendors That Suffer a Data Breach?

Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials

Worrying Twitter Scam Preys on Banking Customers

16th March

2023 cybersecurity outlook: Crime keeps on slippin’ into the future

A Ransomware Gang Claims to Have Hacked the Security Camera Company Amazon Ring

Acer Confirms Data Breach After Hacker Lists Stolen Data on Hacking Forum

Adobe Acrobat Sign abused to push Redline info-stealing malware

After Cyber Attacks, Pennsylvania Police Warn Residents

AI tool or scammers’ playground? ChatGPT exploited for fraudulent activities

APT Actors Exploited Telerik Vulnerability in Government IIS Server

AT&T Confirms Third-Party Data Breach Exposing 9 Million Customer Accounts

Atlantic General Hospital (AGH) CEO Provides Update On Cyber Attack; Reports Medical Records Not Hacked

Aussie drivers losing hundreds of thousands of dollars to toll phishing scam

Australia Inc roiled by raft of cyberattacks since late 2022

Australia's Latitude Group, IPH hit by cyber attacks amid wave of hacks

Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme

BianLian ransomware gang shifts focus to pure data extortion

BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion

Business Email Compromise (BEC) attacks doubled in 2022, outstripping ransomware

Business Email Compromise (BEC) Volumes Double on Phishing Surge

ChatGPT could make phishing more sophisticated

Check Point Research conducts Initial Security Analysis of ChatGPT4, Highlighting Potential Scenarios For Accelerated Cybercrime

Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection

Chinese cyber crime tool believed to be acquired by Russian ransomware gangs

Chinese SilkLoader Malware Sold to Russian Cyber-Criminals

ChipMixer Crypto Laundromat Shut Down By German, US Authorities

CISA Establishes Ransomware Vulnerability Warning Pilot Program

CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild

Conti-based ransomware ‘MeowCorp’ gets free decryptor

Convincing Twitter 'quote tweet' phone scam targets bank customers

Crypto exchange Fiatusdt leaked trove of users KYC data

Cryptojacking Group TeamTNT Suspected of Using Decoy Miner to Conceal Data Exfiltration

Cyber attribution: Vigilance or distraction?

Cyber Risk Report Finds Ransomware the Lowest Cyber Risk Overall but Check the Details for Your Industry

Cybercrime in Japan hits record high in 2022 as ransomware cases surge

Daily QR “Scan Scams” Phishing Users on their Mobile Devices

DNV recovers from fleet management system ransomware attack

Double extortion ransomware explored: handling the business risk

Euler Hacker Gives out Stolen ETH to Random Users, Here's What's Happening

FakeCalls Android malware returns with new ways to hide on phones

FBI says 860 critical infrastructure organizations hit by Ransomware in 2022

Finance firm gives cyber hackers too much Latitude

Fortinet zero-day attacks linked to suspected Chinese hackers

Fraud of the Rings: Can Amazon be Trusted with Your Data?

Global Cyber Attacks: Where Does the UK Land?

Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets

GPT-4 Can’t Stop Helping Hackers Make Cybercriminal Tools

HC3 Shares Black Basta Ransomware Threat Intelligence Data

Healthcare software firm ILS announces data breach affecting more than 4 million people

Hong Kong Privacy Regulator Highlights Data Security Guidance as Cyberattacks Increase

How to Protect Your Company in a ChatGPT World

Humans Still Better Than AI at Phishing — For Now

Hundreds of thousands of customer records stolen from lender Latitude in cyber-attack

Incident of the Week: Ransomware gang allegedly hacks Ring doorbells

India: Hackers Target Manufacturing Firms To Extort Crypto Using Ransomware

Intellectual Property (IP) firm IPH is latest Australian company to suffer data breach

Kaspersky releases decryptor for ransomware based on Conti source code

Kaspersky Updates Decryption Tool for Conti Ransomware

Latitude cyberattack leads to data theft at two service providers

Latitude Financial hit by cyber attack, more than 300,000 identity documents stolen

Leading Brussels hospital fends off a major cyber attack, restores emergency services

Lockbit ransomware victims more than double in February

Magniber Ransomware Group Exploiting Microsoft Zero-Day

Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency

National Cyber Security Centre (NCSC) Calms Fears Over ChatGPT Threat

Navigating the future of digital identity

On-the-Run Hacker Who Allegedly Breached Federal Cop Database Arrested in Florida

Orlando Family Physicians data breach class action settlement

Over a Year of Log4j Lingering: Why We Need to Stop Viewing High-Severity Breaches as Anomalies

Phishing Campaigns Leverage Silicon Valley Bank (SVB) Collapse in New Schemes

Portable health device company suffers data breach

Ransomware gang claims to have stolen 3,000 designs for SpaceX ROCKETS from Elon Musk's team - and is threatening to sell them to rival manufacturers

Research finds 48% of global critical manufacturing at significant risk of breach

Reventics Inc. Faces Class Action Investigation for Failure to Adequately Protect or Notify Customers of Medical Data Breach

Royal Mail ransomware attack result of putting profit before security

Russia-aligned ‘Winter Vivern’ hackers spotted targeting Ukraine, Europe, India

Russian hacker group Phoenix targets health ministry systems

Russian hackers target Indian Health Ministry's website

Scam warning: Circle phishing campaign promises fake USDC DeFi swap

Securities and Exchange Commission (SEC) proposes new cyber incident reporting rules for financial orgs

Security experts warn of GPT-4 risks

Sobeys parent says total impact of cyber attack could be over $54 million

Three Healthcare Providers Report Phishing Attacks

Two US Citizens Charged for Hacking into DEA Portal in 2022

US Government IIS Server Breached via Telerik Software Flaw

US Marshals Service Data Sold on Russian Hacker Forum

Users Lost Over $300K From Phishing Blur Airdrop Website, Still Active!

Winter Vivern APT hackers use fake antivirus scans to install malware

15th March

5 strategies for boosting endpoint management

11 lawsuits filed against California medical group over ransomware attack that affected 3 million patients

57% of financial firms at risk of data breach due to mismanaged data

A ransomware gang claims it has breached Ring and is threatening to leak data

Agribusinesses Vulnerable to Phishing Scams

Arizona agencies possibly exposed in LastPass data breach

AT&T reveals data breach affecting 9 million wireless accounts

Authorities take down darknet cryptocurrency ‘mixing’ service

Authorities Target ChipMixer for Alleged Money Laundering

Bermuda Bankers Association: Beware Of Phishing Scams

Blackbaud Pays $3M to Settle “Misleading Disclosures” Following Ransomware Attack

Browser Security Without Compromising on Productivity or Experience

Businessman convicted for Experian data breach re-arrested after failing to appear in court, saying his child was sick

Cancer patient sues hospital after ransomware gang leaks her nude medical photos

ChatGPT may be a bigger cybersecurity risk than an actual benefit

Check Point reveals top threats and targeted industries for February 2023

Chinese Silkloader cyber attack tool falls into Russian hands

ChipMixer platform seized for laundering ransomware payments, drug sales

CISA: US agency breached by cybercriminals, government hackers

CISA Establishes Ransomware Warning Pilot

CISA warns of Adobe ColdFusion bug exploited as a zero-day

Company at centre of Labour data breach hit by $3m US penalty for ‘misleading’ over ransomware attack

Consumers Believe Vendors Don’t Adequately Protect Their Personal Data, Report Finds

Critical Microsoft Outlook bug PoC shows how easy it is to exploit

Cybersecurity in Africa: Many still believe cybercrime won’t affect them

Cybersecurity Solutions for Fintech Startups

Dangers from hacks stretch beyond broken computer systems

Data loss prevention company hacked by Tick cyberespionage group

DirectDefense Reports the Top Threats from 2022 and What’s Trending for 2023

Dish customers kept in the dark as ransomware fallout continues

Drivers lose more than $660k to toll road scam as phishing attempts surge in Australia

Energy industrial control systems in Africa are a top cyberattack target

Euler Finance’s offer to hacker: Keep $20M or face the law

Exfiltration malware takes center stage in cybersecurity concerns

Experts warn of scams tied to Silicon Valley Bank collapse

"FakeCalls" Android Malware Targets Financial Firms in South Korea

FBI: Ransomware hit 860 critical infrastructure orgs in 2022

First-known Dero cryptojacking operation seen targeting Kubernetes

For credentials, these are the new Seven Commandments for zero trust

Generative AI and cybersecurity

Good Guys Decrypt Ransomware Targeting Charitable Groups

Hacker selling data allegedly stolen in US Marshals Service hack

Hawaii Health Department Says Death Records Compromised in Recent Data Breach

HC3 Report Uncovers Key Data Exfiltration Trends in Healthcare

Healthcare provider ILS warns 4.2 million people of data breach

Homeland Security Investigations (HSI) Arizona investigation leads to takedown of cryptocurrency mixer that processed over $3 billion in unlawful transactions

How do consumers react to a security breach?

How do you know your identity security delivers?

How to better secure your fleet of mobile devices

How to stay safe from fraud and scammers in the tax season's final innings

Humans are still better at creating phishing emails than AI — for now

Humans Still More Effective Than ChatGPT at Phishing

Humans write better phishing emails than AI

Huntress Research Survey Pulls Back Curtain on Security Threats to Mid-Sized Businesses

IBM reveals UK energy sector is top target for cyberattacks

Indians lost Crores to Crypto Scams

Israeli Intel staff uncover critical world-wide cyber security weakness

LockBit claims ransomware attack on SpaceX contractor Maximum Industries

LockBit lurked inside Los Angeles housing authority's network for a year, exfiltrated personal data

LockBit ransomware claims Essendant attack, company says “network outage”

LockBit targeted SpaceX vendor Maximum Industries, stole sensitive aerospace data

Microsoft Patches Two Zero Days This Month

Microsoft Rolls Out Patches for 80 New Security Flaws — Two Under Active Attack

MKS Instruments hit by class-action litigation following ransomware attack

MKS Instruments hit with lawsuit following ransomware attack

MKS Instruments Ransomware Attack Results in $200M Sales Hit

Montenegro Readies for Cyber Attacks in Presidential Elections

More than 80,000 could be affected by data breach at Tuscaloosa ambulance service

New Cryptojacking Operation Targeting Kubernetes Clusters for Dero Mining

North Korean Hackers Attack Cybersecurity Specialists by Offering Them Jobs via LinkedIn

NSA releases information for advancing zero trust

Paul Smith’s College (PSC) students, staff may have had personal information stolen

Personal info from data breach that affected lawmakers appears on hacker site

Phishing Campaigns Use Silicon Valley Bank (SVB) Collapse to Harvest Crypto

Phishing for Financial Fears

Phishing scam alert is issued to Qantas, ANZ, and NAB Bank customers

‘Prolific’ crypto money laundering platform ChipMixer shuttered by Germany, US

Protecting Against Wire Fraud Scams

Protecting Investors from Cyberattacks and Enhancing Cybersecurity in U.S. Capital Markets

Province refuses to say whether ransom was paid to group behind 2021 attack on Newfoundland and Labrador health systems

Raising Awareness of Connected Device Security

Ransomware gang exploited a zero-day in Microsoft security feature, Google says

Research indicates humans are still better than ChatGPT at phishing – for now

Rubrik confirms data breach but evades Cl0p ransomware allegations

SAP releases fixes for some serious flaws in its business software

Scammers used compromised police accounts in extortion scheme, prosecutors say

Scams Are Getting Way More Dangerous Due to ChatGPT

Scourge of Ransomware Attacks Spark New Focus for SOCs

SEC Charges Software Company for Downplaying Scope of Ransomware Attack in Public Disclosures

Singapore businesses stumbling over what security culture entails

Singapore's data protection watchdog fines Eatigo S$62,400 for breach of 2.8m customers' data

South Africa: With phishing on the rise, it's worth being prepared

South Korea warns Asean of cyber attacks by North Korea

Specialist cyber crime team investigates major Chichester school ransomware attack

The Dangers of Using Home-Grown Backup Systems

The Different Methods and Stages of Penetration Testing

The Downside to March Madness – a Busted Bracket and a Data Breach

Tick APT Group Hacked East Asian DLP Software Firm

Tick APT Targeted High-Value Customers of East Asian Data-Loss Prevention Company

Top 5 Security Trends for CIOs

Top 50 most impersonated brands by phishing URLs

TV licence email scam: What to look out for and how to avoid

UK Bank Limits Crypto Payments to Smother Fraud

United Arab Emirates: Rise in AI-driven cyberattacks feared

US federal agency hacked using old Telerik bug to steal data

User forgetfulness drives preference for biometrics over passwords

What are Rootkits? How to prevent them

What Is Data Exfiltration And How To Prevent It

What is Reverse Tabnabbing and What Can You Do to Stop It?

Why Your Business Needs Effective Data Protection Services

Will ChatGPT Democratize the Development of Evasive Malware?

YoroTrooper Stealing Credentials and Information from Government and Energy Organizations

Zoll Suffers Massive Data Breach

14th March

4 evasive web browser attacks targeting federal agencies

60GB Deutsche Bank data allegedly for sale on dark web

88% of breached passwords are 12 characters or less

2022 Data Breaches: What Happened and What Did We Learn?

2022 saw a 61% increase in the rate of phishing attacks

14,000 Mediacorp meconnect accounts compromised in data breach

Africa comes under cyber attack

AI-generated personas used in YouTube phishing campaigns

Akamai flags prevalence of malware on corporate networks

ALPHV ransomware gang claims it has hacked Amazon’s Ring

Amazon-owned Ring denies ‘ransomware event’ following darknet listing

Amazon-owned Ring reportedly suffers ransomware attack

Attack campaign on edge appliance: undetected since 2021 and resists firmware update

Australia: Ministry of Health finds data details dubbed

Bank failure panic fuels moment of opportunity for threat actors

Beaver Medical Group Files Notice of Data Breach Leaking Patient’s PHI

Beware: Wire transfer fraud can occur if your email has been hacked

BlueVoyant Research Illuminates Latest Cyber Attack Techniques and How to Defend Against Them

Bone & Joint Reports Recent “System Outage” Resulted in Data Breach Affecting Patients and Employees

Cambridge Student Union (SU) axe student-led inquiry into data breach

ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

ChatGPT Can Be Used To Create Chatbots That Impersonate Humans

CISA Creates New Ransomware Vulnerability Warning Program

CISA Launches Ransomware Warning Pilot for Critical Infrastructure

CISA warns Critical Infrastructure (CI) operators about vulnerabilities on their networks exploited by ransomware gangs

Coinbase: How to Protect Yourself from Phishing Attacks

Current Turmoil and Future Risks in Resolving Data Breach Class Actions

Cyber incidents in Israel down 18 percent in 2022

Cybercriminals exploit Silicon Valley Bank (SVB) collapse to steal money and data

Cyprus: Cyberattacks are common, police chief says

D.C. Health Link hacker exposes lawmakers’ personal information

Darknet Markets Thrive Despite Repeat Disruptions by Police

Data of Skoda India Customers Leaked from Official Website

DEV-1101 Updates Open Source Phishing Kit

Don't Leave Your Law Practice Vulnerable: The Legal Obligation To Protect Against Cyberattacks

FBI warns of spike in ‘pig butchering’ crypto investment schemes

Financial services DDoS resilience starts with understanding attack surface

Forest Hills Hacker Used Federal Database For Blackmail

Fortinet FortiOS Flaw Exploited in Targeted Cyberattacks on Government Entities

From Power Plants to eWallets: The role of Zero Trust Network Access (ZTNA) in the gig economy

GoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks

H-Hotels: Identity card copies stolen in cyberattack

Hacker posts data stolen from Swiss cyber security company Acronis on BreachForums

Hackers target South Asian government entities with KamiKakaBot malware

Hackers threaten to release sensitive information from Sussex schools following ransomware attack

Hackers used Fortra zero-day to steal sales data from cloud management giant Rubrik

Hacking ChatGPT: 'The Dark Web's Hottest Topic'

Hacking is like Marketing: and Patch Tuesday is always a Campaign Launch Day

Has Amazon’s Ring Been Hacked? Ransomware Gang Posts Threat To Leak Data

Here’s how to prepare for the SEC’s proposed breach regulations

Keeping your data safe: how to prevent a cyber-attack

Key aerospace player leaks sensitive data

Kremlin-backed hackers blamed in recent phishing attempts on EU agencies

LA Housing Authority Suffers Year-Long Breach

LockBit Ransomware Claims Data Breach at SpaceX Contractor

LockBit Ransomware Group Claims SpaceX Contractor Data Theft

McAfee Invoice Scam Email Poses as Subscription Renewal Receipt

Merced College Provides Notice of Data Breach to Students Following Malware Attack

MI5 Launches New Agency to Tackle State-Backed Attacks

Microsoft fixes Outlook zero-day used by Russian hackers since April 2022

Microsoft fixes Windows zero-day exploited in ransomware attacks

Microsoft March 2023 Patch Tuesday fixes 2 zero-days, 83 flaws

Microsoft patches zero-days used by state-sponsored and ransomware threat actors (CVE-2023-23397, CVE-2023-24880)

Microsoft squashes Windows bug exploited to inflict ransomware misery

Microsoft Warns of Large-Scale Use of Phishing Kits to Send Millions of Emails Daily

Millions of Ring customers warned as notorious cyber gang threatens to expose data

New Data From ThreatX Reveals 90% of Consumers are Concerned Poor Vendor Security Will Negatively Impact Their Lives in 2023

Organizations need to re-examine their approach to BEC protection

Personal data vs Sensitive Data: What’s the Difference?

Prevent Identity Theft: 3 Basic Cybersecurity Principles You Should Know

Profiling a Massive Portfolio of Domains Involved in Ransomware Campaigns

Ransom crooks claim legendary music tech company Marshall as victim

Ransomware attacks have entered a heinous new phase

Ransomware Group Claims Hack of Amazon's Ring

Ransomware still a threat, but watch out for hackers invading to steal health care data

Ransomware, compromised credentials were behind Newfoundland heathcare attack

Recent SMS Phishing Attacks Reveal the Dangers of MFA Lookalike Domains

Reservation platform Eatigo fined S$62,400 for data breach, 'uncooperative' & 'evasive' during investigations

Ring won’t say if it was hacked after ransomware gang claims attack

Rubrik confirms data theft in GoAnywhere zero-day attack

SAP releases security updates fixing five critical vulnerabilities

Snap-on data breach class action settlement

Software firm Blackbaud to pay $3 million for misleading disclosures on ransomware attack

STALKER 2 hacker demands Ukrainian game developer reinstates Russian language support, or else

Still using authenticators for MFA? Software for sale can hack you anyway

Success of National Cybersecurity Strategy Rests on Swift Action

Supply Chains Need The Protection Of Unified Multifunctional Cybersecurity

Tech leaves food industry more exposed to cybersecurity threat

The evolving landscape of Canada’s cyber insurance market

The Prolificacy of LockBit Ransomware

The Zeus Trojan Malware — Definition and Prevention

Threat posed by mainland hacker forced Guam Memorial Hospital (GMH) to shut down network

Tips to select the right personal cyber cover

Top ransomware controls and where MDR fits in

Trinity Health Corporation Reports Data Breach Following Compromised Employee Email Account

Two U.S. Men Charged in 2022 Hacking of Drug Enforcement Agency (DEA) Portal

UK Crypto Firm Loses $200m in Cyber-Attack

UK’s largest state boarding school announces ‘sophisticated cyberattack’

Ukraine Scrambles to Draft Cyber Law, Legalizing Its Volunteer Hacker Army

Understanding the Difference Between Spoofing vs Phishing

Universities and colleges cope silently with ransomware attacks

Upcoming Microsoft OneNote Update will Provide Protection Against Phishing Attacks

US CISA to Warn Critical Infrastructure of Ransomware Risk

Using AI Cybersecurity Solutions to Stop Ransomware

Why Cyber Mindfulness is the Future of Cybersecurity

Why Cyber Threats Increase During a Banking Crisis

Why Cybersecurity Training Is Critical in Healthcare

Why SMEs need to take cyber liability insurance more seriously

Why the Tech Industry Needs to Rethink Product Security

Wymondham College hit by sophisticated cyber attack

YoroTrooper cyberspies target CIS energy orgs, EU embassies

YoroTrooper Espionage Campaigns Target CIS, EU Countries

Zoll Medical notifies 1 Million patients of data breach tied to LifeVest device

13th March

3 Causes of Data Breaches and How You Can Prevent Them

5 Lessons Learned From Hundreds of Penetration Tests

5 signs you’ve fallen for a scam – and what to do next

6 reasons why your anti-phishing strategy isn’t working

7 Strategies for Improving Your Business’s Security in the Cloud

10K patients affected in Massachusetts health center ransomware attack

AI in Phishing: Do Attackers or Defenders Benefit More?

Amendments to Pennsylvania data breach notification law will take effect soon

Analysts tracking $197 million theft from DeFi lender Euler Finance

APT group targeting military in India, Pakistan through malicious Android messaging apps

Are you protected from AI-generated online scams?

AT&T Data Breach Hits Nine Million Customer Accounts

Bank executives: Precautions can thwart online fraud, cyber crime

Blackbaud Settles $3m Charge Over Ransomware Attack

Blackbaud settles with SEC over misleading ransomware information

CatB Ransomware - File Locker Sharpens Its Claws to Steal Data with MSDTC Service DLL Hijacking

Cerebral says 3 Million affected by a patient data breach

CISA now warns critical infrastructure of ransomware-vulnerable devices

CISA Warns of Plex Vulnerability Linked to LastPass Hack

'Classified' documents behind Russian Sputnik vaccine posted online

Cyber attack affecting Gloucester museum's system one year on

Cyber-Attacks in the Media Industry Making Headlines

Cybersecurity in Africa: Many Still Believe Cybercrime ‘Won’t Affect Them’

Cyberthreat on New Email By Exotic Lily

Dark Pink APT Group Deploys KamiKakaBot Against South Asian Entities

Dark Pink APT group linked to new KamiKakiBot attacks in Southeast Asia

Death registry system in Hawaii had data breach, health department says

Durham District School Board wraps up cyber incident investigation

Eatigo fined S$62,400 for data breach leading to sale of 2.8 million users’ personal data

Ecommerce Fraud: What is it and how do we Prevent it?

Estonian official says parliamentary elections were targeted by cyberattacks

Evolving Cyber Insurance To Examine An Organization’s DNA

Fake ChatGPT Chrome Extension Hijacking Facebook Accounts for Malicious Advertising

Fortinet: New FortiOS bug used as zero-day to attack government networks

Fraudsters Step Up Phishing Attacks On HDFC Bank Customers, Employ a New Technique

GSC Game World suffers Stalker 2 leak after latest cyber attack

Hacker Steals $200 Million From Euler Finance

Hackers steal $197 million in crypto in Euler Finance attack

Hacks on hospital records are surging. Here's why your medical data is vulnerable

How cloud migration can increase colleges’ data security: protecting the people that matter most

Indigo faces union demands for additional support after cyber attack

Indonesia: Bawaslu Receives 7,650 Cyber Attacks Ahead of 2024 Elections

Hospital in Brussels latest victim in spate of European healthcare cyberattacks

How Cybercrime and Economic Uncertainty Intertwine

How internet-facing webcams could put your organization at risk

How secure are one-time passwords?

How to Implement a Data Privacy and Protection Strategy for Remote Teams

How to Recognize and Prevent Social Engineering Attacks in Gaming

Iceland At Bottom Of List In Terms of Cyber Security

Indigo faces union demands for additional support after cyber attack

Infostealers Spread Via AI-Generated YouTube Videos

Investment Fraud is Now Biggest Cybercrime Earner

Investment fraud tops list of internet crimes in FBI’s new report

KamiKakaBot Malware Used in Latest Dark Pink APT Attacks on Southeast Asian Targets

LA housing authority discloses data breach after ransomware attack

Large-scale Cyber Attack Hijacks East Asian Websites for Adult Content Redirects

Let’s Stop Talking About the ‘Largest’ DDoS Attack

Look out! These AI-generated YouTube tutorials are spreading dangerous malware

Microsoft hardens OneNote against Phishing attacks

Most lauded ChatGPT capability also brings big risk to businesses

New algorithm may change the future of secure communication

New Hiatus malware campaign targets routers

Nigeria: Telco, four banks, 105 others under probe for data breach

Northern Essex Community College shuts classes following a cyber attack

Online mental health provider's use of tracking tech highlights dangers

OpenSea patches vulnerability that potentially exposed users’ identities

Oregon Health System Uncovers 9-Year HIPAA Violation by Physician

Pakistani hackers leak Kerala school students data

PayPal attracts class action lawsuit for December breach that compromised 35k users

PeopleDAO hacked via Google Sheets, $120,000 worth of ether stolen

Public sector organisations shouldn’t rely on mobile-based authentication

Ransomware Attacks Have Entered a ‘Heinous’ New Phase

Ransomware gang claims responsibility for cyberattack on Minneapolis schools

Red Teaming As A Service: What It Is And What It Should Do

Remote Code Execution and Camera Access Flaws Found in Smart Intercoms

Researchers Uncover Over a Dozen Security Flaws in Akuvox E11 Smart Intercom

Revenetics Facing Class Action Lawsuit Over Royal Ransomware Attack and Data Breach

Security risks threaten the benefits of the edge

Shining a Light on Malware Beaconing

Singapore: Man arrested for alleged involvement in compromising 14,000 Mediacorp meconnect accounts

STALKER 2 game developer hacked by Russian hacktivists, data stolen

Surging cloud computing paving way for cyberattacks

SYS01 stealer targets Facebook business accounts and browser credentials

Taking Steps Toward Better Critical National Infrastructure (CNI) Security

The changing face of ransomware attacks

The Dangers of Using Home-Grown Backup Systems

The Silicon Valley Bank (SVB) demise is a fraudster’s paradise, so take precautions

Three in Five SMEs Experience Cyber Attack

Transportation Security Administration (TSA) issues additional cybersecurity rules for the aviation sector

Transportation Security Administration (TSA) Lays Out New Cybersecurity Requirements for Aviation Sector

UK launches new agency to tackle state-sponsored threats to business

Understanding password behavior key to developing stronger cybersecurity protocols

Unlocking the Benefits and Trade-Offs of Agentless Cloud Security

"Very possibly a Russian-linked cyber criminal" is behind Congress data breach

Warning: AI-generated YouTube Video Tutorials Spreading Infostealer Malware

Waynesboro ransomware attack isn’t the only security issue the city has faced

Ways your credit card info might be stolen and how to prevent it

When Managing Cybersecurity, Operate Like You’ve Already Been Compromised

Why You Need to Emphasize Cloud Security

Zoll Medical Data Breach Impacts 1 Million Individuals