Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 19 October 2020

Data Breaches Digest - Week 43 2020

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 19th October and 25th October 2020.

25th October

14% of Americans Using COVID in Online Passwords, New Survey Reveals

Canada: The computer failure at the Société de transport de Montréal (STM) still not restored

Cyber Security Advice From Industry Experts for Businesses in a Pandemic World

Cyberattack on Dr Reddy's Labs sharp reminder to strengthen digital infrastructure

Cybercriminals are finding new ways to leverage ransomware, targeting ordinary users, warns Kaspersky

Defending Against the Inevitable Ransomware Attack on Backups

Finland: President Sauli Niinistö - "This affects all of us"

Finland: There may have been two data breaches – Do this if you suspect your data has been stolen or you have received a blackmail message

Hackers Hit Yorktown & Croton School Districts

How Hackers Exploited Twitter's VPN Problems, Obtained God Mode and Took Over Accounts

How Indian Enterprises can be secured from threats emerging due to Phishing?

Louisiana National Guard (LNG) called in to thwart cyberattack on government offices

Malicious Insiders: The Threat Within

Microsoft did some research. Now it's angry about what it found

Multiple Mobile Browsers Suffer Address Bar Spoofing Vulnerabilities

Netflix Arabic users could be victims to phishing attacks

New police warnings about blackmail demands for leaked therapy records

Phishing groups collecting user data via fake voter registration forms in US

Press Trust of India (PTI) services disrupted after massive ransomware attack on servers

Psychotherapy centre reveals two separate data breaches of sensitive patient information

Russian hacker behind attacks on the West unmasked after posting pics buying Kinder Eggs for his kids

Russians who pose threat to US elections have hacked nuclear plants and power grid

Securing Bank Account, Funds From Prowling Fraudsters

Small Business Administration (SBA) urging disaster loan applicants be alert to phishing campaigns and scams

State and Local Cybersecurity: Defending Our Communities from Cyber Threats Amid COVID-19

Tips to stay secure while working from home

U.S. Presidential Election Voting infrastructure in Georgia County Falls Victim to a Ransomware Attack

Will Dr Reddy’s step up IT investment after cyberattack?

24th October

Address bar flaw and big rise in spear-phishing shows why better defences are needed against Covid-19 cyber attacks

Cyber hackers pretend to be council leader in targeted attack

Cybercrime In Nigeria Demands Public-Private Action

Everything you need to know about cyber security in 2020

How Vulnerable Is Critical Infrastructure to a Cyberattack?

Indian startups, SME’s most vulnerable to cyberattacks

Ireland: How consumers are falling for crafty online scams in the pandemic

Post data breach at Dr Reddy’s, firms urged to combat cybercrime

Protecting data in the age of digital health

Protecting enterprise secrets and intellectual property in a volatile world

Psychotherapy center security breaches receive blackmail emails

Psychotherapy centre data breach victims receive extortion emails

Russian-based ransomware attacks Boyne Resort's online systems

Striking: These are the 10 most used brands for phishing

Teaching Cybersecurity To Our Kids: Making Sure They're Safe Online

Universities Back on Iranian Hackers’ Radar as the School Year Begins

Victim Support calls increase after psychotherapy centre data hack

Why You Should Stop Using This ‘Dangerous’ Wi-Fi Setting On Your iPhone

23rd October

5 tips to reduce the risk of email impersonation attacks

5 Ways to Protect Online Learning Environments

$17 million Cryptocurrency Phishing Spree Comes to an End

63 billion credential stuffing attacks hit retail, hospitality, travel industries

75% of all 56 US states and territories show signs of vulnerable election IT infrastructure, report finds

A Hacker’s Perspective on Your Infrastructure

Be aware of remote working risks

Best Practices for Securing Your Online Classrooms

Blackmailers resume extortion of psychotherapy center Vastaamo

Bookstore Giant Barnes & Noble hit by Cyberattack

British Airways Faces Significantly Reduced £20M Fine for GDPR Breach

British Airways' Fine Reduced To £20 Million

BTC-e Operator Faces Jail in France for Ransomware, Money Laundering

CISA and FBI release joint advisories regarding Russian and Iranian APT actors

Company Making COVID-19 Vaccine Forced To Shut Down Worldwide Operations

COVID-19 Related Phishing Scams are Increasing – How to Not Fall Prey for Them!

COVID-19 Vaccine-Maker Hit with Cyberattack, Data Breach

Criminal cyberattack is 'morally repugnant' says angry mayor, as council battles to restore services

Cyber attacks on Internet-connected devices rising, says Nokia

Cyber insurance - is it necessary?

Cyberattacks hit Louisiana government offices as worries rise about election hacking

Cybercrime: It’s Not About How, But Why?

Cyberexperts Warn of ‘Turbulent Air’ in Election Ramp Up

Cybersecurity incident causes Indian River County network to shutdown

Cybersecurity is a must when expanding digitisation

Cybersecurity is failing due to ineffective technology

Cybersecurity needs to become a habit, like washing our hands

Cybersecurity remains a constant concern for consumers, says study

Data breach at Dr Reddy’s shuts down data centre services, promises to return within 24 hours

Data break-in may have compromised privacy of thousands of psychotherapy clients in Finland

Distance learning amplifies need for focus on student data privacy

Don’t let ransomware shut down your business

Election Security: Beyond Mail-In Voting

Email Security Threats and Data Leaks: How to Cope with Them?

ESET takes part in global operation to disrupt Trickbot

Essex Police Warn Residents about Common Scams During National Crime Prevention Month

EU Sanctions 2 Russians for German Parliament Hack

Fraudsters exploit employees’ social networks

Georgia County's election infrastructure hit by ransomware attack

Georgia Election Data Hit in Ransomware Attack

Global cyber community can do more to stop state-sponsored malware

Halton residents warned of scam DVLA email

Hennepin County Sheriff's Office is responding to data breach

Hennepin County Sheriff’s Office Working With FBI To Monitor And Respond To Data Breach Over The Summer

Hewlett Packard Enterprise (HPE) fixes maximum severity remote auth bypass bug in SSMC console

How CIOs Are Innovating Security in a Remote Setting

How Covid-19 created an environment ripe for ransomware

How Cyber Criminals Are Attacking Businesses in 2020

How Do Malware Breaches Actually Occur?

How One Malicious Message Could Exploit an Enterprise

Incident Of The Week: Despite Patch, Zerologon Attack Still A Big Deal

IoT Device Takeovers Surge 100 Percent in 2020

Is COVID-19 increasing cryptocurrency scams?

Isle Of Man: New suspicious e-mail reporting service launched

IT services giant Sopra Steria falls victim to Ryuk ransomware

Japanese drug firm Shionogi hit by cyberattack and data breach

Judge Signs Off on $7.75m Equifax Settlement

Keep these 4 things in mind while using Internet to get rid of fraud

Lessons from COVID-19 Cyberattacks: Where Do We Go Next?

LockBit Ransomware Uses Automation Tools to Pick Targets

Louisiana Calls Out National Guard to Fight Ransomware Surge

Machine identity related cyberattacks grew by 433% between 2018 and 2019

Major Security Threats That Small Businesses Face

Microsoft adds protection for critical accounts in Office 365

Microsoft is Fighting Back Against a Malware Botnet

Mid-Prairie Alerts Residents of Data Breach

National Guard called in to thwart cyberattack in Louisiana weeks before election

New Framework Released to Protect Machine Learning Systems From Adversarial Attacks

New RAT malware gets commands via Discord, has ransomware feature

New WFH Era, New Cybersecurity Arena

New York Department of Financial Services Issues Report on Recent Twitter Hack

Online Threats and How to Protect Yourself

Pandemic hoaxes and IoT infections flare by 100%

PayPal scam alert: These are the warning signs to look out for

Phishing attack hits thousands of Microsoft Teams users

Phishing Campaign Mimics Microsoft Teams Alerts

Phishing groups are collecting user data, email and banking passwords via fake voter registration forms

Planetary Reef: Cybercriminal Hosting and Phishing-as-a-Service Threat Actor

Protecting Company Data From Disaster

Ransomware – How To Fend Off The Formidable Foe

Ransomware is becoming an inevitability, officials say

Ransomware threats mean SMBs must focus on cyber basics

Ransomware trends in Q3: a new attack every day

Rapid Threat Evolution Spurs Crucial Healthcare Cybersecurity Needs

Researchers find huge, sophisticated black market for trade in online 'fingerprints'

Russian hackers targeting state and local governments have stolen data, US officials say

Security amid the telemedicine explosion

Security lapse puts data of Thrillophilia's registered users at risk

SendGrid Amazon SES compromise leads to phishing email

Service Providers Most Frequent Target of DNS Attacks With 11.4 Annual Attacks Per Company

Should You Use a 'Dark Web Scan' to Protect Your Identity?

SMEs and Startups Face More Cyberattacks in India

Sopra Steria cyberattack hits “all geographies”, will take “several weeks” to recover

Startups, SMEs most vulnerable in India to cyberattacks

The most common online, email scams Canadians are falling for now

The Trials and Tribulations of Paying Ransomware Hackers

Threats Targeting VoIP Networks As Usage Surges During Pandemic

Toll Group still mopping up after ransomware attacks

Top Five Tips to Protect Privilege in a Data Breach

U.S. charges six Russian military officers with ‘destructive’ global hacking campaign

US Sanctions Russian Government Center for Creating 'Triton' Malware

US Treasury sanctions Russian research institute behind Triton malware

WastedLocker ransomware hits Boyne Resorts ski resort operator

West Dunbartonshire Trading Standards are warning Bankies to be aware of scam

What is cloud security (and how do you secure the cloud today)?

22nd October

1 in 4 Businesses Has Experienced Cyber Event, Travelers Survey Finds

6 Easy Ways to Boost Security in Microsoft Defender and Windows 10

12 Cyber Threats That Could Wreak Havoc on the Election

42% of Ransomware Attacks in 2020 Occurred in the Battleground States of the Upcoming U.S. Presidential Elections

2020 Election Infrastructure Still Vulnerable to Email Hackers

Account Takeover Risks of Small Businesses: How to Avoid Them

Adapting Security Strategies to Growing Digitalization

Addressing email security’s false positive problem

Africa is not immune to evolving Advanced Persistent Threat (APT) techniques

Apple, Opera and more aim to tackle address bar spoofing browser bug

Attackers prey on Microsoft Teams accounts to steal credentials

Attackers Spoof Microsoft Teams

Back-up and running: How businesses can protect their data in a world full of risk

Bank-related phishing scams using messaging apps, social media

Big engineering consultancy takes a hit from REvil ransomware

Center for Internet Security (CIS): Top 10 malware in September 2020

Chenango County hit with cyberattack

City of Shafter hit by ransomware attack

Cyber threat landscape

Cybercrime capitalizing on the convergence of COVID-19 and 2020 election

Data protection predictions for 2021

Data security and your company

Database of 186M registered voters distributed on hacking forums

Days after Russian COVID-19 vaccine trial approval, data breach forces Dr Reddy's plants shut

DNS attacks target telecoms companies with 83% hit pre-Covid

Dr Reddy's to shut key plants after data breach

EU sanctions Russian hackers over 2015 German parliament attack

EU sanctions Russia over 2015 German Parliament hack

Ex-Century 21 Employee in New York City Breaches Payroll Data, Gives Others Paid Holidays

Exploring the prolific threats influencing the cyber landscape

Fraud Analysts Miss Dark Web Data

French IT giant Sopra Steria hit by Ryuk ransomware

Fully therapy client data may have been exported in a hack

GCC countries see sharp spike in financial malware in H1 2020

Hackers Breach Psychiatric Practice in Finland, Hold Patient Data to Ransom

Hacked psychotherapy centers; patients’ mental health data were held for ransom

Hackers impersonate Marks and Spencer CEO Steve Rowe in £35 free gift voucher scam

Hackney Council’s services likely to face disruption ‘for some time’ following ‘serious’ cyber attack

Hint to Brad Smith: getting rid of Windows will halt most cyber attacks

Historic data breach exposes practically all US voters ahead of election

How a culture of privacy can help protect your business from ransomware

How Online Security Threats Hurt Work-From-Home Businesses

How tech trends and risks shape organizations’ data protection strategy

KashmirBlack Botnet Uses DevOps to Stay Agile

Kaspersky Findings Show a 42.5% Increase in Financial Attacks in the United Arab Emirates

Malicious SharePoint and OneDrive links are a phishing scammer’s dream

MBTA Commuter Rail operator hit by ransomware

Microsoft Teams Phishing Attack Targets Office 365 Users

Microsoft Teams Users Become a Target for Phishing

More sensitive data is moving to the cloud than ever

Mounting cyber threat to critical infrastructure ramps up UK countermeasures

New Windows RAT can be controlled via a Telegram channel

New Zealand: Kiwis dont care enough about cybersecurity

Northwest Territories government funds lost to phishing scam recouped, says RCMP

NVIDIA patches high severity GeForce Experience vulnerabilities

Oregon Retailer Suffers Sustained Data Breach

Organizations with remote workforces need new security solutions

Pandemic poses increasing cyber security risks to Germany

PayPal move on digital currencies will make cyber criminals richer

Pfizer suffers huge data breach on unsecured cloud storage

PR rule book amidst a data breach

R_Evil WordPress Hacktool & Malicious JavaScript Injections

Ransomware hackers donate 1.76 Bitcoin (BTC) to charities

Reducing Costs through Cybersecurity

Researchers warn over mobile browser address bar spoofing vulnerabilities

Responding to the cybersecurity threat

Retail, Hospitality and Travel Hit by 64 Billion Credential Stuffing Attacks

Russia, Iran Email Campaigns Target U.S. Presidential Election

Russian state hackers stole data from US government networks

Scalable Capital sees large data breach

Securing medical devices from cyberattack ‘challenge,’ Israeli experts say

Singapore: Cyber security threats on the rise as more people work from home

Sopra Steria falls victim to ransomware attack

Tactics for Defending Against Credential Stuffing

Texting scams are on the rise

The blackmail publisher publishes more sensitive information about patients in psychotherapy centers

The Economic Value of Prevention in the Cyber Security Lifecycle

The hacking of therapy patients affects the relationship of trust between the therapist and the patient, says the president of the psychotherapy association

The hacking of therapy patients may have compromised the privacy of thousands of people, it is a completely “exceptional event”

The importance of security for medical device firms

The JobKeeper scam Australians need to be aware of - as it's revealed young people are getting caught out by fraudsters more than ever

The Three Key Elements of Zero-Trust

The whys and hows of keeping your cloud secrets

US: Iran Was Behind Proud Boys Email Campaign

US blames Iran for spoofed Proud Boys emails threatening Democrat voters

US ranks 10th on cyber literacy

US Treasury Department ban on ransomware payments puts victims in tough position

Using risk analytics to fight fraud and maintain compliance

Vodacom and MTN have not notified Information Regulator of location data breach

Watch Out For This New Amazon Email Phishing Scam

What Remote Teams Need to Know About the 2020 Data Breach Investigations Report (DBIR)

Why cybercriminals have ‘Gone Vishing’ during the COVID-19 Pandemic

Why is cyber security everyone’s responsibility?

Working, Learning And Playing From Home Means Overlapping Devices - And Threats

21st October

5 Steps to Recovering from a Ransomware Attack

2020 Verizon Data Breach Investigations Report: Summary and key findings for security professionals

400,000 Facebook users targeted in phishing campaign

Account Fraud is Killing Streaming Services: What Providers Can Do

Address bar spoofing vulnerabilities disclosed by security researchers

After February ransomware attack, La Salle County bolsters network security

Amazon Prime scam that customers need to watch out for ahead of Christmas sales

Anti-Phishing Technology

Are Insecure Downloads Infiltrating Your Chrome Browser?

Are You One COVID-19 Test Away From a Cybersecurity Disaster?

Ban All Ransomware Payments, in Bitcoin or Otherwise

Banks need to be more agile to tackle fraud

Barnes & Noble (B&N) cyberattack calls into question the retailer’s network segmentation practices

Beware of Malicious URLs and Rogue Redirects

Biotech Startups Face a Growing Wave of Cyberattacks

'Blackmail, pure and simple': IT expert guilty of $2m extortion bid

Boston commuter operator hit by ransomware attack

Brand impersonation attacks targeting SMB organizations

Can we take business lessons from cybercriminals?

Canadians lost more than $37 million to scammers in 2020, officials say

Changing the culture of information sharing for cybersecurity

Corporate mobile devices cyber risks

COVID-19 and health care cybersecurity: How to protect practices and patient data

Cyber attacks becoming more sophisticated, targeted, widespread and undetected says ENISA

Cyber protection essential in a world of pervasive IT

Cyber security is everyone’s responsibility

Cyber Sparring Is One Of The Best Ways To Build Cyber Resilience

Cyberattacks are second-biggest concern for businesses during pandemic

Cybercrime booming during the pandemic

Cybersecurity: Do these things to keep your business safe from hackers, retailers told

Cybersecurity firm finds hacker selling info on 186 million U.S. voters

Cybersecurity is no mystery: Be organized, proactive and vigilant

DarkSide Ransomware Group Donates $10,000 to Charities

Dealing With Insider Threats in the Age of COVID

Death by cyberattack should motivate Hong Kong hospitals to lock down on cybersecurity – they haven’t

Devil in Disguise – New Malware Scam enters as Windows 10 Update

Do You Consider Yourself Cyber-Literate?

Egregor takes responsibility for the Barnes and Noble Ransomware attack

Employees using social media, messengers, cloud services face potential scams

Ensuring Transparency: Language to Avoid in HIPAA Breach Notifications

Five practical steps to implement a zero-trust network

Foreign hackers who targeted Trump, Biden campaigns are turning to malware, Google says

Get a Security Boost from Cybersecurity Awareness Month

Google Meddling With URLs In Emails, Causing Security Concerns

Google Says Company Mitigated 2.5 Tbps DDoS Attack, Largest Ever

Hackers Donate Bitcoin From Ransomware Attacks to Charities

Hackers hold patient information for ransom in psychotherapy data breach

Have Hackers Drained Your Miles And Points During The Pandemic?

How managed security services helps drive digital transformation in higher education

How to Ensure Data Remains Safe in the Age of Ransomware

‘Imminent need to strike a balance between digital innovation and right to privacy’

Iranian Cyberattack Group Deploys New PowGoop Downloader Against Mideast Targets

Is Encryption the Answer to Data Security Post Lockdown?

Is Telco Cybersecurity the New Competitive Edge for Service Providers?

Jekyll Island Authority Continues Ransomware Mitigation Work

Kaspersky reveals 38.7% increase in financial malware in Egypt

Kaspersky warns of top IT security threats in Africa

Kela warns of email phishing scam

Lightning Network discloses "concerning" crypto vulnerabilities

LockBit ransomware moves quietly on the network, strikes fast

LockBit Used Automated Tools to Sleuth Out Specific Tax and Point-of-Sale Software on Breached Networks to Determine Ransomware Targets, Sophos Research Reveals

Majority of industrial enterprises face increase cyber threats since COVID-19

Marks & Spencer (M&S) Boss Spoofed in Gift Voucher Scam

Microsoft and Partners Continue To Block Trickbot To Protect Elections

Microsoft is most mimicked brand to steal personal information

Microsoft vs. Botnet: The Battle Rages Ahead of Election

Microsoft's anti-Trickbot ransomware disruption holding up

Montréal Public Transport Agency Discloses Ransomware Attack

Montreal's STM public transport system hit by ransomware attack

MSPs grapple with managed cybersecurity services challenges

My 'Ah-Ha' Moment: Phishing Will Forever Be A Problem

Nearly two-thirds of Canadian companies failed to report cyber breaches during COVID-19

Nobody Gets Hacked? That's Only True in a Fantasy World

Online learning company K12 exposes student data in Missouri

Organisations are never the same after being hit by ransomware

Patient data exposed in breach of Pfizer cloud storage

Phishing Emails Target Coinbase Exchange Users

Proctortrack breach must be investigated

Protecting yourself from new email phishing scams

Psychotherapy centre's database hacked, patient info held ransom

QNAP warns of Windows Zerologon flaw affecting some NAS devices

Ransomware Attacks Threaten IT Confidence

Ransomware group donates $20,000 in BTC to two charities

Ransomware groups are going corporate

Recent Closing of Three Tribal Casinos Provides Cyberattack Lessons

Robo-advice firm suffers data breach

Royal Canadian Mounted Police (RCMP) investigating fraudulent invoice paid by Government of Northwest Territories (GNWT)

Russia launched cyber attack on Pyeongchang Winter Olympics, American and British investigators say

Safari, other mobile browsers affected by address bar spoofing flaws

Securing Medical Devices from Cyberattacks ‘Big Challenge,’ Israeli Experts Say

Security lapse puts data of Thrillophilia's registered users at risk

Security Think Tank: Essential tools to mitigate double extortion attacks

Sophisticated phishing

St. Lucie County Sherriff's Office pays thousands for anti-virus software to protect against ransomware attacks

State-sponsored criminals accused of Maersk IT cyber attack

Surprise! Phishing tests using file attachments have highest rate of failure

Survey reveals 7 out of 10 people will avoid festive shopping with brands that have experienced a data security incident in the last year

The Media Must Prepare for Another Hack-and-Leak

The Pandemic Affecting the Healthcare Sector – A Call for Amending the HITECH Act

The Rise and Rise of Cybercrime

The User Is The Edge In The ‘New Normal’ Of Remote Connectivity

There’s been an uptick in the delivery service text scam

Three quarters of UK consumers won’t shop with a organization which has experienced a successful cyber attack

Training Trainers: How IBM Uses Data Breach Simulations to Build Real-World Competency

Trial of Alleged Crypto Launderer and BTC-e Operator Alexander Vinnik Starts in France

Trump and Biden election apps ‘compromised' by hackers days after president told rally ‘nobody gets hacked’

UK imposed €132.7m of GDPR fines, more than Germany and Italy combined

US Cyber Command Teams With Microsoft To Limit TrickBot Botnet Ahead of Expected Election Interference

US government: Iran behind fake Proud Boys voter intimidation emails

US retailer Made in Oregon confirms website data breach

Utilizing Automation in New Security Architecture

Warning over Marks & Spencer (M&S) giveaway scam that steals your bank details

What Are the Gains and Risks of Internet of Behavior

What Is a Ransomware Attack? What Can You Do?

What is a VPN and why is it important to have when travelling?

Why remote working has exacerbated cyber-security concerns

Wider issues for Government data security

20th October

7 key cyber security threats for businesses – and how to tackle them

10 top tips for ensuring a company’s cybersecurity is not put at risk

88% of Government Agencies Say Misconfiguration of Cloud Services is a Top Security Threat; Pre-Pandemic, Only 25% Considered it Critical

A ransomware attack can entirely alter your business to the whole next level that you can't even imagine

Accenture: Cybercriminals Becoming More Brazen

AI and machine learning: A gift, and a curse, for cybersecurity

Albion Online Forum Breach Exposes User Info

Amazon Faces Allegations It Harvested and Stored Sensitive Voice Data

Amazon Prime Day led to phishing spike

Anticipating the unknown

Apple, Opera, and Yandex fix browser address bar spoofing bugs, but millions more still left vulnerable

Barnes & Noble Alerted Customers of Data Breach That Leaked Personal and Transaction Information

Barnes & Noble confirms cyberattack, ransomware group leaks allegedly stolen data

Beware paying ransomware: How MSPs should protect companies

British Airways fined £20m for data breach

British Airways fined record £20m for data breach

British Airways sees data breach fine significantly reduced

British Airways Ultimately Fined £20m For Personal Data Breach By The UK ICO Under The GDPR (Reduced From £183.39m)

Can Cybersecurity Weather Election, COVID-19 Perfect Storm?

Can we trust passwordless authentication?

CISO Alert: Expect “Brazen” Cyber Crews to Step Up Ransomware Tactics, Strategies

City of Shafter hit with ransomware attack

Cost of non-compliance: 8 largest data breach fines and penalties

COURTS slapped with SG$9,000 fine for data breach

Customers of Columbus Checkers eligible for up to $5000 in class action lawsuit

Cybersecurity And The Remote Classroom

Defend yourself from social engineering attacks

Dickinson County Healthcare System responding to malware attack

Don’t accept New terms of service to avoid Coinbase phishing

E-commerce and Data Breaching: The Next Cyberthreat

Eliminating the Threat of Look-alike Domains

Eyewear giant Luxottica hit by Windows Nefilim ransomware, data leaked

Facebook: A Top Launching Pad For Phishing Attacks

Fancy Bear DDoS attacks against organizations' websites are growing

Fighting Back Against The Fraud Plaguing P2P Payment Apps

‘Fling Enough Mud, Some Will Stick’: US Routinely Levies Hacking Accusations It Can’t Prove

French court tries Russian for multi-million-euro cyberfraud

GRU Agents Indicted for Hacking Multiple Targets

Hackers find opportunity in pandemic, work from home setups

Hackers impersonating antivirus software in clever phishing attacks

Home Affairs concerned with Facebook's plans to create world's 'biggest dark web'

Insider Threats Continue to Plague Enterprise Security Teams

Inspired by GDPR, here is how Brazil’s new data privacy law will work

Iowa City Community School District (ICCSD) student info may have been stolen in data breach with billing company

Iranian-American businessman accuses two Indian firms of hacking, stealing his data

Is poor cyber hygiene crippling your security program?

Kaspersky spots new version of GravityRAT

Made in Oregon notifies 7,800 customers of possible data breach

Major Data Breach at Ohio School District

“Majority” of alumni and donors affected in May ransomware attack

Managing employee security risks during lockdown

Massive July Twitter hack aided by stolen VPN credentials

Microsoft becomes the most-spoofed brand for phishing attacks

Microsoft tops list of most imitated brands for phishing attempts in Q3 2020

Mysterious 'Robin Hood' hackers donating stolen money

National Security Agency (NSA) List Shows Chinese Hackers Exploiting 25 Different Security Bug Vulnerabilities

New Zealand launches data breach notification tool

North Korean group accused of phishing attack against Russian defense industry

OSF HealthCare hit by data breach

Pharma giant Pfizer exposes patient data on unsecured cloud storage

Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts

Preventing Business Email Compromise Calls for Analyzing Email Language

PM Modi’s Website Data Leak Highlights India’s Poor Cybersecurity Infrastructure

Ransomware Attacks Show Little Sign of Slowing in 2021

Ransomware gang donates part of ransom demands to charity organizations

Ransomware variants continue to evolve as crooks chase bigger paydays

Remote working leaves UK businesses more vulnerable to cyberattacks

Russian “government hackers” charged with cybercrimes by the US

Russian intelligence accused of bringing down Maersk’s IT infrastructure

Russian Intelligence Officers Allegedly Behind Malware Attack Of Western Pennysylvania Health System

Secure remote access for administrators is possible - without VPNs

Seven mobile browsers vulnerable to address bar spoofing attacks

Size Doesn’t Matter for Cybercrooks: Your Business is Next on the Hacking Block

Skripal probe hackers unmasked: Six Russians accused of trying to infiltrate Salisbury poisoning probe are named

Solve the Cybersecurity People Problem with Security Awareness Training

Survey reveals 7 out of 10 people will avoid Christmas shopping with brands that have experienced a data security incident in the last year

The Covid effect on cybercrime

The email scams to watch out for during COVID-19

The importance of cyber-resilience in a COVID-19 era

The 'real consequences' of ransomware against schools

This is how a ‘ransomware’ attack has affected one of the largest insurers in Spain

Threat actors shifting tactics to launch more destructive cyberattacks

Time to start a data security sweep

Trial of Russian Charged in Bitcoin Fraud Begins in Paris

Trickbot Rebounds After 'Takedown'

Trickbot Tenacity Shows Infrastructure Resistant to Takedowns

Trinidad And Tobago: Hack Attack

Trump claim that “nobody gets hacked” slammed as “dumb and dangerous”

Trump Says ‘Nobody Gets Hacked’ – And He’s Wrong

Two in five employees are not sure what a mobile phishing attack is

U.S. Charges Russian Military Officers Behind ‘NotPetya’ Cyber Attack

UK: Russian GRU Hackers Targeted Tokyo Olympics

URL address spoofing flaw keeps mobile victims from determining fake, real sites

US: Justice Department Charges Six Russian GRU Officers

US charges six Russians with being behind numerous computer intrusions

US Indicts GRU Officers for NotPetya, Olympics Attacks and More

US indicts Sandworm, Russia's most destructive cyberwar unit

Victim Stung for BTC 22 as DoppelPaymer Scammers Claim Latest Victim

Warning to Amazon Prime customers at risk from new scam email

Work from home revolution during coronavirus pandemic powers spike in cybercrime

Your business has been breached – now what?

Zoopla hit with fake listings of luxury flats for just £750 a month

Zurich North America outlines top cyber concerns for risk managers

19th October

350 million customer details leaked in Broadvoice scandal

A Closer Look at the Attempted Ransomware Attack on Tesla

'Active Threat' Warning: Patch Serious SharePoint Flaw Now

Addressing the growing security threat of credential stuffing in the media industry

Albion Online game maker discloses data breach

Alexander Vinnik heads to trial in France on ransomware, money laundering charges

Australian consumers put a price on privacy: almost half would pay more to do business with an organisation committed to protecting their personal data

Barnes & Noble Went Down Following Cyber Attack

Building a human firewall to address insider threats

Business continuity is more than backup

Carnival Corp confirms hackers stole guests’ personal data

Carnival warns of cyber attack across three of its brands

Clop Ransomware Attack Hits German Software Giant Software AG; Confidential Documents Stolen, $23 Million Ransom Demanded

Coinbase phishing hijacks Microsoft 365 accounts via OAuth app

Containerchain wards off ransomware attack over weekend

Courts fined $9,000 for second data breach in two years

COVID-19 Pushed Most Firms To Adopt Zero Trust Security Model, a New Study Found

Criminals behind July's infamous 'Twitter hack' accessed famous accounts by duping employees working from home into handing over their credentials with a fake website

Criminals leak Software AG data after Windows ransomware attack

Crisis and an Incontestable Need for Security - A Business Viewpoint

Cyber attack investigation continues with council systems still paralysed

Cyber-attack on Mississippi Schools Costs $300k

Cyber-related ransomware and business interruption top concerns of risk managers

Cybercrime in Nigeria demands public-private action

Cybercrime losses amount to $17.8M for thousands of victims, Ontario Provincial Police (OPP) say

Cybercriminals can put you out of business in a heartbeat

Cyberthreats growing more sophisticated, harder to find, experts say

DDoS Attacks Triple in Size as Ransom Demands Re-Emerge

Department of Justice (DOJ) Charges 6 Sandworm APT Members in NotPetya Cyberattacks

Digitally ready: Start-ups need to factor in the cost of cybersecurity

Discord desktop app vulnerability chain triggered remote code execution attacks

Emotet malware using fake Windows Update templates

EU investigates Instagram over handling of children's data

Five Ways to Secure a Work-From-Anywhere Environment

Foxtons data breach but “no sensitive data compromised”

Foxtons hit by cyber attack

French court tries Russian for multi-million-euro cyberfraud

From simulation to emulation: Four ways email attack simulation tools fall short

Global adoption of data and privacy programs still maturing

Google removes 3,000 YouTube channels linked to China spam network

Google Reveals it Was Hit by 2.5Tbps DDoS

Google shares more details on some of the biggest DDoS attacks ever recorded

Government Spooks Urge Firms to Patch SharePoint Bug

Hackers Claim To Have Leaked Watch Dogs: Legion’s Source Code

Hackers pose as McAfee staff to trick users into installing malware, Google says

Hackney Council can’t pay housing benefit after cyber attack

How to protect yourself from fraud

Hundreds of charities lose £3.6m to scammers during coronavirus pandemic

Insider threats: How to protect your organisation from an inside job

Instagram's Handling of Children's Data Under Investigation

Iranian Hacking Group Linked With Ransomware Attack Targeting Prominent Organisations

Keolis Commuter Services takes Boston systems offline following ransomware attack

Kleenheat customer names and addresses exposed in system breach

Legal Firm Seyfarth Shaw Suffered Ransomware Attack

Linguists team up with computer scientists to spot trends on cybercrime forums

Magento, Visual Studio Code users: You need to patch!

Major Recent Cyber Attacks Of 2020 And Precautions

Malware Hits Banks By Mimicking Video Conferencing App

Microsoft is Most Imitated Brand for Phishing Attempts in Q3 2020

Microsoft Issues Out-of-Band Security Patches for the Window Codec Library and Visual Studio Code

Microsoft now the most impersonated brand in phishing attacks

Microsoft’s experts offer up new insight into the world of cybersecurity

Most cybersecurity pros believe automation will make their jobs easier

Most US states show signs of a vulnerable election-related infrastructure

Nevada employment agency warns claimants, employers about phishing email scam

Nevada employment department warns of phishing email scam

New Gitjacker tool lets you find .git folders exposed online

Nine factors to check when choosing your IT services provider

No data breach in cyberattack against Clearwater River Casino

Now more than ever...#CharityFraudOut

People, visibility and timely updates key steps for SMEs to improve cybersecurity

Phishing Attacks Impersonate Microsoft's Brand the Most

Phishing for secrets: Russian cyber experts believe defense industry is being attacked by North Korea

Phishing scams use redirects to steal Office 365, Facebook credentials

Popular project management tool used in phishing attacks

Protecting yourself from cybercrime during the COVID-19 pandemic

Royal Caribbean CEO warns crew members of e-mail scam

Russian National’s Bitcoin Ransomware Trial Begins in Paris

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Secureworks: Remote working exposes new security vulnerabilities

Securing IT During the Pandemic: Report Reveals Cyber-Readiness Challenges

Singapore: Banking-related phishing scams see 20-fold increase in first half of 2020; move to messaging apps and social media

SMB Cybersecurity Still Lacking Due to Misperception About Attacks

State-sponsored hackers and ransomware gangs are diversifying tactics to inflict more harm

The encryption war is on again, and this time government has a new strategy

The human cost of cyberattacks should never be underestimated

This new malware uses remote overlay attacks to hijack your bank account

This scam is the number one financial fraud facing Americans

Three Million Credit Cards Harvested and Sold on Joker’s Stash; Dickey’s BBQ Hack Undetected for Over a Year

Tokyo Olympics: Russian hackers targeted Games, UK says

Trends point to a rise in data breach claims

Trial of Alexander Vinnik, accused of Bitcoin fraud, begins in Paris today

Trial of Russian charged in bitcoin fraud begins in Paris

Trickbot, Phishing, Ransomware & Elections

UK says Russia was preparing cyber-attacks against the Tokyo Olympics

US charges Russian hackers blamed for Ukraine power outages and the NotPetya ransomware attack

Verificient Technologies' anti-cheating software suffers data breach

Waze Vulnerability Lets Attackers Track and Identify Users

Webroot warns of COVID-19 clicks, why phishing still works and how to stay unhooked

What Are Data Breaches Actually?

What is the impact of COVID-19 on cybersecurity in 2020 and beyond?

Why hospitals can’t ignore this cybersecurity awareness month

Why ransomware has become such a huge problem for businesses

Why security and digital transformation should be best friends

Windows GravityRAT malware now also targets Android, macOS

Your People are Being Hacked: How to Defend Against Social Engineering During WFH