Editor's Message

Welcome to DBD. We hope you like the changes we are making to the site to give you more visibility of what we consider the top stories and advice of the day, and to allow you to search through content using labels. Any feedback, positive or negative, would be gratefully received to enable us to give you the best experience on any device.



Monday, 5 October 2020

Data Breaches Digest - Week 41 2020

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 5th October and 11th October 2020.


11th October

Account Takeover Attack Research: Arctic Wolf Findings

BlackBerry uncovers hack-for-hire group Bahamut targeting governments, high-profile personalities

CISO’s are key to make companies security safe under COVID-19

Deepfake Voice Technology Iterates on Old Phishing Strategies

FIFA 21 warning: Don't fall for these common FIFA scams

Former NSA Head: Pandemic Increases Cyber Threats For Companies

Four areas where Nigeria may lose the cybersecurity battle

German tech giant Software AG hit by Clop ransomware attack

How Cybersecurity Leaders Can Understand the Value of Their Organization’s Security Solutions

Microsoft alerts Android users of new ransomware that could render smartphone useless

Microsoft sheds light on a new Android ransomware that pops up when users press the home button

National Guard cyber experts working to protect Washington state’s election security

Older people in West Mercia were scammed out of £140,000 last year

Over 90% of domains linked to Trump, Biden websites vulnerable to cyberattacks

Pandemic Displays Cyber Criminals’ Innovation and Malevolence, Europol Warns

Paying Ransomware Demands Could Lead to Federal Fines - for Victim and Insurer Alike

Permanent TSB issues warning to customers over cunning text message scam

Rare spy malware hits diplomats of NGOs from Asia, Europe

Researchers warn against a new malware toolset used for industrial espionage

Risk of serious data breach in New South Wales, union warns

Scammers exploit Covid to steal from stressed bank customers

‘Scareware’ pop-ups trick mobile users into clicking malware

The most common malicious email attachments infecting Windows

These are the top scams you need to be aware of

Why You Should Stop Using SMS Security Codes - Even On Apple iMessage

10th October

Android ransomware has picked up some ominous new tricks

Attacks by ‘ransomware’ soar in Spain due to teleworking

British student saves YouTube star Logan Paul from huge data breach on website

Capitec warns of new scam targetting customers

Children and parent info exposed in Georgia Department of Human Services (DHS) data breach

Cyber criminals leave some Robinhood users with looted accounts

Cybersecurity firms fighting ever-smarter business email attacks

DNS over HTTPS (DoH) and Phishing Risks. What You Need to Know Now

Document-signing service Docsketch discloses security breach

Dr Lal PathLabs leaks millions of patients' sensitive data as part of major data breach

Experts push cybersecurity awareness amid COVID-19 concerns for small businesses

Greenwich Hospital: Some data exposed in Blackbaud breach

Greenwich Hospital Announces Blackbaud Breach

Hawaii: Potential data breach exposed in state’s travel exemption request system

Lessons for the Universal Health Services ransomware attack

Malware alert: Avoid this fake workers’ compensation phishing attack

Microsoft gave a big warning to Android phone users

Microsoft warns Android users about a new ransomware

Microsoft Warns Of Sophisticated Android Ransomware That Hijacks Your Home Button

Phishing emails are being sent out claiming to be from HM Courts & Tribunals Service

Prevention proves best protection against ransomware

Prime Day 2020 warning: Clicking on this e-mail 'from Amazon' could cost you ahead of sale

Private information spotted on dark web in fallout from Fairfax County schools cyberattack

Software AG: Clop Ransomware Attack Recovery Update

Software AG discloses ransomware attack

Software AG Hit by Clop Ransomware, Steals Data & Demands $20 Million

Tyler Technologies paid ransomware gang for decryption key

U.S. Cyber Command Behind Trickbot Tricks

U.S. government moves to regulate cryptocurrencies after Attorney General unveils enforcement framework

US Cyber Command attacks world's largest bot network of 1 million hijacked computers amid fears hackers plan to wreak havoc on the election

US Warns: Hackers Chaining Zerologon, Other Vulnerabilities

Verimatrix Reports a Data Breach

What to Do If You've Been Hacked

9th October

55 Apple vulnerabilities risked iCloud account takeover, data theft

A look at the mysterious world of Windows malware developers

Alarming Reports Of Cyber Threats Ahead Of Amazon Prime Day

Arming smart factories with the right tools to keep threats at bay

ATM cash-out: A rising threat requiring urgent attention

Attack Surface Monitoring: Two Ways to Detect Phishing Subdomains

Australia: Former Labor leader accuses Liberals of data leak

Clever new ransomware locks down your phone so you can’t get in

Community Health Systems (CHS) to pay $5M to 28 states to settle 2014 data breach

Community Health Systems (CHS) to pay $5M to 28 states to settle 2014 data breach

Critical Zerologon Flaw Exploited in TA505 Attacks

Crown Prosecution Service guilty of 1,500-plus data breaches in last 12 months

Cyber-attacks on Angolan Journalists Who Reported Government Corruption

Cyber teams are getting more involved in merger and acquisition (M&A)

Cyberattack Shuts Down Major Nationwide Hospital System

Dark web monitoring and how it can help protect online identities

Data exposed at Dr Lal PathLabs

Department of Homeland Security (DHS): Unknown hackers targeted the US Census Bureau network

DHS CISA Issue Warning About Emotet Malware

Document-signing service Docsketch discloses security breach

Don't Get Suckered by Phishing Scams About Trump's Health

Email Scammers Are Targeting B2B Firms In Today’s Work-From-Home Era

Enabling Off-Network Endpoint Protection: A Critical Part of Your Remote Worker Cybersecurity Strategy

eSewa data breached! A hacker releases nearly two dozen eSewa users’ details including passwords

Fake Azerbaijani website stealing money from Armenian charity brought down by Anonymous Greece

Five Ways To Secure A Work-From-Anywhere Environment

Former Medical Transcriptionist Accused of Trying to Extort Toronto Hospital Using Stolen Patient Data

Franklin warns residents of phishing scam after losing more than $500K

German tech giant Software AG down after ransomware attack

Google boosts malware protection for high-risk accounts

H&M Hit With €35 Million GDPR Fine for Profiling Private Lives of Employees

Hacker Opportunities Have Skyrocketed: Protect Yourself

Hackers eye their next targets, from schools to cars

Hackers Share Fairfax County Schools Employees' SSNs Online

Had Your Face Stolen Lately?

Happy Cybersecurity Awareness Month: OFAC and FinCEN Issue New Advisories on Ransomware Payments

Here are the questions Congress asks after a ransomware attack

Hospital Investigates Serious Patient Data Breach

How the enterprise can shut down cyber criminals and protect a remote staff

How Windows malware developers are selling their exploits to ransomware gangs and spies

Implications of the Chowbus data leak revealed

It’s never too early to teach your kids about cybersecurity

Kaspersky uncovers firmware bootkit malware

Largest cruise line operator Carnival confirms ransomware data theft

Magecart strikes website of school payments service Wisepay

Marketing Firm Spills Nearly Three Million Records

Massachusetts Public School District Cancels Online Classes after Alleged Cyberattack

Microsoft claims discovering most dangerous mobile Android ransomware

Microsoft warns of ‘continuously evolving’ Android ransomware

Morgan Stanley to Pay $60 Million Fine for 2016 Data Breach

National Bank of Pakistan (NBP) denies reports of cyberattack on its systems

National Information Technology Board (NITB) Warns Users After Critical Vulnerabilities found in Web Browsers

Negligent data center shutdowns bring $60 million fine for Morgan Stanley

New APT targets industrial holdings

New Ransomware Campaign Targets Teachers Working Remotely

New US 'Cryptocurrency Enforcement Network' Takes Aim At Bitcoin Scammers

North American Governments Hit Hardest by Rise in Ransomware Attacks

OFAC’s New Ransomware Advisory

Opening the Conversation about Website Security

Parents Using School Payment Service Have Card Details Compromised

Paying or Facilitating Payment of Ransomware Demands May Result in Criminal and Civil Penalties From OFAC

Phishing Email Disguising as Google Info on Donald Trump's Health Downloads Malware

Phishing scam lures employees by teasing secrets of Trump COVID diagnosis

Phishing scheme targets Amazon shoppers

Protect Your Finances from “Cyberthieves”

Protecting Family Offices In Remote Working Age

PWC Survey Finds One in Five UK Workers Feel More Vulnerable to Cyber-Crime Since the Start of COVID-19

Ransomware and Viruses: Top differences you should know

Ransomware Attacks Increase by 50% in Q3

Ransomware gang now using critical Windows flaw in attacks

Ransomware makers are turning to outsourcing

Ransomware Protection Tips for Individuals and Businesses during Covid-19

Remote work can make a business tempting cyber prey. Here's what the experts recommend

REvil Ransomware Gang Deposits $1 Million for Recruitment on a Russian-Speaking Hacker Forum

Robinhood Users Vent Frustration After Some Accounts Were Hacked

‘Sam’s Club’ Accounts Targeted by Credential Stuffing Actors

Scamwatch: Fake Amazon Prime and My Health Record scam calls

Singapore, UN to cooperate on checklist for countries to implement cyber-security norms

So you thought your personal data was deleted? Not so fast

Software AG IT giant hit with $23 million ransom by Clop ransomware

Some Longmont NextLight customers’ service affected by Friday cyberattack

South Africa: SARS ‘Emergency Notification System’ - Latest scam targeting taxpayers

Taiwan's new eID a juicy target for Chinese hackers

Tennessee Health Data Management Firm Agrees to $2m Data Breach Settlement

The impact and cost of ransomware in 2020

This fiendish Android ransomware hijacks your home button

Truckers’ personal information exposed after Daseke ransomware attack

Tyngsborough Police Warn Residents about Common Scams During National Crime Prevention Month

University’s new spin-out will tackle the ransomware threat

US unveils enforcement framework to combat terrorist, criminal cryptocurrency activities

Waiting to strike: Hackers are 'sitting on' computers of small businesses

What 4 facilities did after ransomware attacks: Permanent closures, temporary service suspensions & more

Why are certain employees more likely to comply with information security policies than others?

Why cybersecurity needs to be a top priority for small businesses

Why Robust Email Verification Is The First Fraud Barrier For Consumer Onboarding

World's largest 'hack-for-hire' group is executing the most sophisticated phishing scams yet

You Only Have One Voice - Don't Let Hackers Steal It

8th October

5 Reasons CISOs Need Security Operations, Automation, And Orchestration (SOAR)

21% of UK Workers Feel More Vulnerable to Cybercrime During COVID-19

240+ Android apps caught showing out-of-context ads

A Cybersecurity Checklist For The New Norm

A Quarter of Canadian IT Decision Makers Report Coronavirus-Themed Cyberattacks During Pandemic

Amazon Prime Day Spurs Spike in Phishing, Fraud Attacks

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

Android ransomware authors have a new trick to go with an old shakedown technique

Android Ransomware Has Picked Up Some Ominous New Tricks

Attorney General Morrisey announces settlement in hospital data breach

Boards Increase Investment in Cybersecurity in Face of Threats and Regulatory Fines

Buyers beware: Hackers poised to make Amazon Prime Day into a prime phishing day

Chowbus food delivery service suffers breach; trove of data stolen

CISA warns of resurgence of Emotet cyberattacks

Cisco security warning: Patch Webex Teams for Windows and surveillance camera now

Cloud misconfiguration continues to pose a huge threat

COVID-19 Vaccine Trials Slowed Down by a Ransomware Attack

Credential Stuffing Attacks on the Rise. What Can You Do?

Crown Prosecution Service (CPS) Under Fire Again After Data Breach Cases Jump 18%

Cyber threats to industrial enterprises increase due to pandemic

Cyberattack surge highlights Africa security risk

Cyberattacks never actually stop

Cyberattacks Up, But Companies (Mostly) Succeed in Securing Remote Workforce

Cybercrime Victims Are Not Calling the Police

Cybersecurity best practices for small to mid-sized businesses

Deepfakes: Novel trend or novel threat?

Donald Trump health information used to hide phishing campaign

Dr Lal PathLabs, one of India’s largest blood test labs, exposed patient data

Emotet Is Back and It’s Targeting Local and State Governments, CISA Warns

Emotet rated September’s ‘most popular’ malware

Europol: COVID-19 Causes Spike in Cybercrime

FBI Warns Teleworkers of the Risks of Using Hotel Wi-Fi Networks

Fighting the bot invasion: how to clean up your data and stop losing money

Financial Sector Suffers the Costliest DNS Attacks at $1.275 Million Per Attack

FINRA Warns Members of Scams Using Spoofed Domain

For only the second time, security researches found UEFI malware in the wild

Friendly Reminder: Beware of Phishing Emails

Garda warning issued over jury service scam

Getting your remote employees cyber-secure at home

Google adds password breach alerts to Chrome for Android, iOS

Government Woe as Education Department Fails GDPR Test

Hacker electronically steals several hundred thousand dollars in town funds in Franklin

Hacker-for-hire group targets activists

Hacker-for-Hire Group Watches Targets for About a Year Using Fake Social Media Accounts, Websites Before Attack

Hackers disguise malware attack as new details on Donald Trump’s COVID-19 illness

Hall County hit by ransomware attack

Hall County phone services restored after Wednesday ransomware attack, recovery work ongoing

Healthcare cybersecurity needs a dose of threat modeling

Here’s How You Can Protect Yourself From Increasingly Sophisticated Cybercriminals

HMCTS warning on email scams

Hospital network reports patient data breach

How CISOs Can Address Cybersecurity Challenges of COVID-19

How SMBs can better protect their data from cyberattacks

How to beef up cybersecurity in a remote work environment

How to Prevent and Respond to Ransomware

How to prevent cybercrime breaches

In the fight for cyber security, these sectors are slipping behind

IT Security: Find Profitability in a Service No One Wants to Use

Kaspersky Researchers Spot Russia-on-Russia Cyber-Espionage Campaign

Lancashire's over 55s are falling victim to cyber criminals

LemonDuck Crypto-Miner – a KingMiner Successor

More scoring, less boring: How companies can gamify security training

New CSC Research Finds Over 90% of Websites Linked to Donald Trump and Joe Biden Campaigns at Risk for Potential Redirection, Disinformation, and Data Theft

North Dakota Launches Statewide Cybersecurity Campaign

Number of corporate credentials exposed on the dark web increased by 429%

OldGremlin hacker group targets Russian companies with ransomware

One-fifth of organizations did not make cybersecurity a priority during the pandemic

One in five employees download commercially sensitive files onto personal devices

Only 27.9% of organizations able to maintain compliance with the PCI DSS

Pennsylvania Transit Agency Still Recovering from Cyberattack

Phishing emails are being sent out claiming to be from HM Courts & Tribunals Service

Phishing Emails Pose Biggest Cybersecurity Threat In Election

Polish Police Bust Super Hacking Group

Premera Blue Cross Settles with OCR for $6.85 Million for Breach of 10.4 Million Records

RainbowMix apps generate $150,000 in daily ad fraud profit

Ransomware: Cybercrime Public Enemy No. 1

Ransomware: It’s time to bring cybersecurity audits up to GDPR status

Researchers Find Vulnerabilities in Microsoft Azure Cloud Service

Ryuk Ransomware Attack Disrupts Universal Healthcare Services Operations Resulting in Ambulance Diversions and Alleged Deaths

Safe manufacturing is smart manufacturing

Sam's Club customer accounts hacked in credential stuffing attacks

Securing mobile devices, apps, and users should be every CIO’s top priority

Sophisticated new Android malware marks the latest evolution of mobile ransomware

Stimulus check scam can steal your info — avoid this now

Targeted ransomware groups spotted in Southeast Asia

Telecom Corporate Accounts at Highest Risk for Cyber Attacks

Tesla accuses employee of Californian factory sabotage

The importance of cybersecurity for UK financial advisors

This is the partnership we need to fight global cybercrime

This stealthy hacker-for-hire group is using phishing, malicious apps and zero-day attacks against its victims

To protect endpoints, agencies must get their priorities straight

Trojan Malware Targets Trump Supporters

Trump-Themed Phishing Campaign Demonstrates Hacker Reflexes

Twitter Hack Spurred Copycats, But Other Businesses Don’t Have to Fall Prey

Types of Cyber Attacks: A Closer Look at Common Threats

US seizes Iranian government domains masked as legitimate news outlets

Verizon security report flags risks in card transactions

Vietnam remains malware hotspot

Warning: Smartphone malware can steal passwords, banking info from 226 apps

Waterbear malware used in attack wave against government agencies

What is phishing?

Why focusing only on Disaster Recovery is a ransomware disaster waiting to happen

Wisepay: School payments service hit by cyber-attack

World Economic Forum (WEF): Cyber-Attacks Remain Top Business Risk in the West

7th October

7 IT security best practices for organisations in the new normal

37% of remote employees have no security restrictions on corporate devices

Amazon and PayPal users at risk from new email scam tricking them into giving crooks access to payment details

An inside look at how ransomware groups go stealth

Ardonagh cyber breach – new report sheds light on breach

Biggest Healthcare Breaches of 2020 – The Top 10 and Why They Matter

Chowbus users say hundreds of thousands of customer emails, phone numbers exposed in data breach

CISA Warns of Emotet Attacks Against Government Agencies

Comcast cable remotes hacked to snoop on conversations

COVID-19 Exacerbated Existing Cybercrime Patterns, Europol Says

Covid-19 poses cyber risks and investors need to be cautious while managing online portfolios

Cyber Intelligence Suffers From 'Snobby' Isolationism, Focus on Rare Threats

Cyber-Espionage Group BAHAMUT Responsible for “Staggering” Number of Attacks

Data Management Pitfalls Of Online Learning

Decrypted: The major ransomware attack you probably didn’t hear about

Department of Justice (DOJ) tells public how to spot, avoid online banking scams

Emerging Cyber Threats and Their Unintended Consequences

Europol analyzes latest trends, cybercrime impact within the EU and beyond

Fake FINRA Survey Is a Phishing Scam, Regulator Warns BDs

Financial Services Sector Becomes Vulnerable to Ransomware

Google Calendar & Drive scams return, how to avoid getting caught

How Hybrid Learning is Changing K-12 Cybersecurity

How to Prepare for Cybersecurity Incidents and Enforcement Actions

Is 'Ransomware-as-a-Service' a symptom of innovation?

Java Ransomware (Literally): Not Even Your Coffee Maker Is Safe

Kaspersky spots customised UEFI firmware bootkit

Medical data of 150 Toronto hospital patients allegedly used to extort money from company

Microsoft adds consent phishing protection to Office 365

Mitigating the risk of cyberthreats in the era of COVID-19

National Information Technology Board (NITB) alerts public after critical vulnerabilities found in web browsers

New Valak Variant Makes “Most Wanted Malware” List for First Time

Not If But When: Cybercrime Targets Telework

Phishing emails lure victims with inside info on Trump's health

QNAP fixes critical flaws that could lead to device takeover

Raccine: A ransomware 'vaccine' with a few catches

Ransomware: Surge in attacks as hackers take advantage of organisations under pressure

Ransomware attacks in healthcare doubled in Q3

Ransomware attacks skyrocketed in past three months - Check Point

Ransomware gangs add DDoS to their arsenal to put pressure on victims

Remote Workers Keep IT Issues to Themselves

REvil cyber gang lodge $1 million BTC in a recruitment push

Scary new malware can survive even if you erase and reinstall Windows

Some employees more likely to adhere to information security policies than others

Study reveals 94% of global organisations suffered one or more business-impacting cyberattacks

Targeted ransomware groups such as Maze spotted in Southeast Asia

Tax debt scam sees 85 reports to Kent Police in one month

Ten days on and CMA CGM is still struggling to get all its systems back online

Tesla Fires Employee That Was Caught Sabotaging Fremont Factory

The 6 phishing sins

The AI Imperative: Today's SOC Teams Are Responsible For The Impossible

There's a contactless 'code' that heightens security risk

This FBI Wi-Fi warning could spoil your working from home escape plan

Threat of ransomware looms over schools and other institutions

Three common mistakes in ransomware security planning

Treasury Department Warns Against Paying Ransomware Hackers

Two thirds of businesses saw rise in security incidents in the past 12 months

UK Firms Attacked Every 45 Seconds Over Summer

UK ransomware attacks surged 80% in latest quarter

University of New Mexico Police Department (UNMPD) files leaked in large-scale law enforcement hack

US brokerage firms warned of widespread survey phishing attacks

US government issues warning following uptick in Emotet malware attacks

US warns: Big surge in Emotet malware campaigns makes it one of today's top threats

VISA Warns of POS Malware Campaigns in North America

Warner Music Group Customer Sues Over Data Breach

Why health care must prioritise data protection

Why zero trust remote networking is key to thriving in the ‘new normal’ business world

Wisepay 'outage' is actually the school meal payments biz trying to stop an intruder from stealing customer card details

6th October

10 Years Since Stuxnet: Is Your Operational Technology Safe?

After ERT hit by ransomware attack, the trial company kicks out old chief amid delayed COVID-19 work

Another Gang Hides Ransomware Inside Virtual Machines

APT Attack Injects Malware into Windows Error Reporting

Arctic Wolf Security Operations Report: Corporate Credentials Exposed on Dark Web Up Over 400 Percent

As ATO attacks surge, consumers expect merchants to protect them from fraud

Aussie Social News App Leaks 80,000 User Records Online

Boom! Mobile falls prey to Magecart card-skimming attack

Breach at food delivery service Chowbus reportedly affects hundreds of thousands of customers

Canada Bombarded with COVID-19-Themed Cyber-attacks

Cellmate: Male chastity gadget hack could lock users in

Charities might have had data stolen in ransomware attack, Blackbaud indicates

CISA: Emotet increasing attacks on US state, local governments

City of Knoxville says it's mailing out hundreds of letters about compromised data

Corporate Credentials on the Dark Web Up by 429% This Year

Customer records stolen in data breach of Asian food delivery service Chowbus

Cyber scams and ransomware booming amid Covid-19 lockdowns – Europol

Cybersecurity practices are becoming more formal, security teams are expanding

Data breach for 630 patients at University Hospital Limerick

Despatches from the Battle of Bradford

Distracted people low hanging fruit for hacker

Emotet is back and phishing state and local governments, CISA warns

Endpoint Security Primary Pain Point in 2020

Europol Warning as Cybercrime Adapts Quickest to New Normal

Former Mayo Clinic employee improperly accessed 1,600-plus patient health records

Gone phishing: workplace email security in five steps

Hackers abuse Windows error service in fileless malware attack

Hackers Are Getting Bolder With Ransomware Attacks on Schools and Hospitals

Had your face stolen lately?

How schools can ensure data remains safe in the age of digital learning and ransomware

How This Sex Toy Lockdown Hack Could Mean An Awkward Emergency Room Visit

How to boost the effectiveness of your cybersecurity operations

How to defend your organization against the surge in ransomware attacks

How to Spot the Most Common COVID-Related Scams

How to Take Down Social Media Threats

If You Connect It, Protect It

India 2nd most targeted country for ransomware

Insurance firm Ardonagh Group disabled 200 admin accounts as ransomware infection took hold

Malware campaigns deliver payloads via obscure paste service

Malware infiltrates the defenses of common antivirus softwares like McAfee, Kaspersky, Symantec and others

Microsoft blocked 13 billion malicious emails in 2019

Mississippi ambulance service reports ransomware data breach

New Attack Abused Windows Error Reporting Service to Evade Detection

New Cryptojacking Malware Variant Targeting Cloud Systems Discovered

New HEH botnet can wipe routers and IoT devices

New York Attorney General (NYAG) Reaches Settlement with Dunkin’ Over Cyberattacks

Over Half of IT and OT Professionals in Industrial Enterprises Experiencing Rise in Cyber-Threats

Palo Alto Networks Exposes Multi-Million-Dollar Cloud Misconfigurations

Payment card security remains lax, says Verizon Business report

PCI DSS Compliance Slumps 28% Since 2016

Physicians, nurses and support staff respond differently to data breach security policies

Protect Your Business from Cyber Intrusions

Ransomware Attack Hits Clinical Trial Software Vendor

Ransomware attack on health tech firm disrupted COVID-19 medical trials

Ransomware attacks go through the roof

Ransomware attacks on the rise in the US

Ransomware threat surge, Ryuk attacks about 20 orgs per week

Research: Some employees more likely to adhere to information security policies than others

REvil Hackers Place $1 Million of Bitcoin on Public Forum

REvil Ransomware Gang Offers $1 Million As Part Of Recruitment Drive

Sanctions: US toughens stance on ransomware payments

Scammers Targeting Lubbock Residents Using a Legit Company’s Name

Securing Higher Education's Growing Number of Remote Devices

Securing Remote Desktops During a Pandemic

Security Authentication Models for Enterprise Cybersecurity

Security Awareness Training: How Often Should Your Employees Get Retrained?

Singapore: Data breaches - Stiffer fines, mandatory notification proposed

Sisters of Charity Health System Informs Patients of Data Breach

Skimming Attack on Boom! Mobile

Social Engineering Attacks: Prevention and Best Practices

South Africa: POPIA Compliance

Tesla Fires Employee Caught Attempting to Sabotage and Plant Ransomware: Charges Will be Filed

The anatomy of a $15 million cyber heist on a US company

The COVID-19 Pandemic Has Become a Catalyst for Cyberattacks

The History and Evolution of DDoS Attacks

There’s an answer to pandemic-related scams

Thirty-five percent of high-risk security operations incidents happen after most employees are offline for the day

Three Strikes, and Maze Was Out

Types of Cyber Attacks: A Closer Look at Common Threats

UK tax office hit by 500,000 malicious emails

UN maritime agency says it was hacked

Universal Health Services (UHS) restores IT service to hospitals, corporate data centers following massive ransomware attack

University Hospital Limerick writes to 630 patients after alleged data breach

Unpatched QNAP NAS devices vulnerable to AgeLocker ransomware attacks

US: Sanctions for payment of ransom to hackers under sanctions

US Government Seeks to Sanction Companies that Pay Ransomware Operators

US government warns against paying off ransomware attackers

Verizon reports sharp decline in PCI compliance

Visa Alert: POS Malware Attacks Persist

Vulnerabilities in connected chastity device could allow hackers to lock users in

What is data loss and how does it work?

5th October

3 Ways Data Breaches Accelerate the Fraud Supply Chain

30 Ransomware Prevention Tips

A China-Linked Group Repurposed Hacking Team’s Stealthy Spyware

Avoid getting caught in a bank-related phishing scam

Children and technology: Is your child safe online?

Chinese hacker group spotted using a UEFI bootkit in the wild

Chinese Hackers Steal Personal Data of Half of Taiwan's Workforce, What Next?

Companies Turn a Deaf Ear To Security

Court systems still at risk of hacks

Critical Grindr Account Takeover Bug Rings Alarm Bells

Crypto-mining malware adds Linux password stealing capability

Cyberattackers Turn To Payments Fraud, Ransomware As Tech Firms Fight Back

Cybercriminals are capitalising on the fear of COVID-19 to launch phishing attacks, says Microsoft

Cybercriminals May Steal Passwords From Windows 7 Users via Free Upgrade

Data breach during CMA CGM cyber attack

Data Security During The Coronavirus Crisis – The Lessons Behind The Breaches

Department of Treasury releases advisory on potential sanctions risks for facilitating ransomware payments

Diplomats Attacked with Firmware Bootkit

Edureka Suffered Data Breach Affecting Up To 2 Million Users

ESET researchers discover XDSpy, an APT group stealing government secrets in Europe since 2011

Five Practical Ways To Instill A Healthy Security Culture

Four npm packages found uploading user details on a GitHub page

Fresh Wave of Phishing Emails Use Election as a Lure

Gallagher hit by ransomware attack

George W. Bush Center says donors’ information hacked in ransomware attack

Hacker group compromises mobile provider to steal credit cards

Half of All Organizations Experienced Cyber Security Incidents During the Remote Working Period

HMRC Hit by Multiple Phishing and Spam Emails

HMRC hit with 5,000 malicious email attacks every day

HMRC urges universities to warn new students of tax scams danger

How a VPN Protects You From Phishing Attacks

How Can Organizations Ensure Data Security

How defence in depth can sink cyber attacks

India: Ransomware attack on Pooja Bedi’s website

International Maritime Organization (IMO) site back up while CMA CGM struggles to get back online

Malware Families Turn to Legit Pastebin-Like Service

Meet 'Egregor,' a New Ransomware Family to Watch

Microsoft: Iranian hackers actively exploiting Windows Zerologon flaw

Microsoft blocked 13 billion malicious emails in 2019

Microsoft puts lipstick on a pig to avoid scrutiny over security

Microsoft says Iranian hackers are exploiting the Zerologon vulnerability

Modern Healthcare Tech Also Means Modern Security

MosaicRegressor: Second-ever UEFI rootkit found in the wild

Most Healthcare Apps Are Riddled with Bugs

Nursing body recovers from ransomware attack, but does not reveal if info was stolen

OFAC advisory highlights sanctions risks associated with ransomware payments

OFAC Warns Americans Against Facilitating Ransomware Payments

Outmoded Training Methods Fueling Ever-Increasing Cyberattacks

Phishing Awareness Training is Far From Permanent; New Study Shows the Effects Last Only a Few Months

Phishing or Fake Contest Scam? If it sounds too good to be true...it probably is!

Preventing ecommerce fraud: A look at current trends and patterns

Previously unknown XDSpy hacker group has been stealing sensitive government data since 2011

Ransomware attack hit clinical trials software player ERT - two weeks later, they’re coming back online

Ransomware attackers threaten to sell narcotics on Pooja Bedi’s e-commerce website

Ransomware attacks are increasing at an unprecedented rate - and the US is now begging people not to pay ransoms

Ransomware Disrupts COVID-19 Medical Trials

Ransomware victims aren't reporting attacks to police. That's causing a big problem

Schools need to ensure data remains safe

Singapore: Proposed changes to PDPA include stiffer fines for data breaches, mandatory notification when they occur

Six cybersecurity threats the financial services sector faces

SMB Security: Backups Need to Include More Than Data

Softening the impact of ransomware attacks

The pandemic opened cybersecurity gaps in the supply chain. How do managers close them?

The Phish Scale: A New Email Classification System Introduced by NIST

The ransomware attack that turned into a horror story

This new 'linkless' phishing scam is even tricking tech experts

Treasury Warns Against Paying Ransomware Demands

UK's HMRC 'bombarded' by 5,000 malicious email attacks every day

UN Shipping Agency Forced Offline After Cyber-Attack

Universal Health Services making 'substantial progress' in restoring IT systems after cyberattack

US Government Threatens To Punish Anyone Who Pays Ransomware Ransoms, Or Even Negotiates With, Sanctioned Hackers

US Treasury threatens sanctions for Ransomware payments

Voter registration scam can steal your personal info - what to do

We blocked 13 billion malicious emails in 2019, says Microsoft

What businesses can learn from Hartford’s ransomware attack

What is a data breach?

Why CIOs need to focus on password exposure, not expiration

Why developing cybersecurity education is key for a more secure future

Why effective data management is vital for financial firms

Why Visibility Is the Most Important Endpoint Security Capability