Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 18 October 2021

Data Breaches Digest - Week 42 2021

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 18th October and 24th October 2021.

24th October

5 Tips For Keeping Your Computer Safe and Secure From Hackers & Viruses

25% paid extortion money in Ransomware

Avoid the most common mistakes organizations make when protecting against cyber threats

Bank card skimming concern for cybersecurity in Trinidad and Tobago

BlackMatter ransomware victims quietly helped using secret decryptor

Connected home devices posing more hacking risks for Indian firms

Crypto scams live-streamed as YouTube channels face phishing attacks

Cyber resilience paramount for data protection

Cyberattacks to critical infrastructure threaten our safety and well-being

Cybersecurity Awareness Month: FBI offers steps to protect against ransomware, what to do if it hits

Don't tap on any links! How to spot and deal with a scam text message

EU introduces new legislation ending anonymous domain registration

Facebook sues programmer who stole data of 178 million users via Messenger

Foreign scam calls 'spoofing' UK numbers to be blocked under landmark plans

Gigabyte hit by ransomware attack: NDA’d information and customer details leak out with hackers threatening worse

Grocery chain Tesco suffers two-day outage following hack

Hackers bring down Tesco's website and app

Hackers skim $4m off banks in Uganda

IPO-bound unicorn MobiKwik under RBI scanner for data breach

Microsoft – Blockchain Domains are Next Major Threat

Middle East faced wave of cybersecurity threats since start of pandemic

MORE Alarming Cybersecurity Stats For 2021

New York Times Journalist Repeatedly Hacked with Pegasus after Reporting on Saudi Arabia

Online Banking Frauds: Here’s how to protect yourself from phishing attacks

Phishing attempts target top brands online

Ransomware: To pay or not to pay, that is the question

Ransomware Requires More than Piecemeal Federal Mandates

Sinclair TV stations knocked off air after ransomware attack

SolarWinds on the road to recovery after massive cyber attack

Stolen data spreading even faster on the dark web

Strengthening cloud security in healthcare

Supply Chain Attacks Highlight Why You Should Continue to Be Careful with Third-Party Providers

Tesco outage was due to hackers trying to 'interfere' with website and app

Tesco say website and app down after hack attempt

Tesco shoppers locked out of website and app due to suspected hack

Tesco website and app crashes after 'hack attempt' with thousands of customers unable to do their online shop

Tesco website and app crashes due to a hack, causing havoc as hundreds of customers complain of issues with their shops

Tesco website and app down following hack attempt, supermarket confirms

Tesco website and app taken down by hack attempt

Tesco website down: Supermarket app and site down after hack attempt

Tesco website hacked with frustrated shoppers unable to order groceries online

Tesco website hit by hackers, leaving thousands of customers frustrated

The Federal Trade Commission is investigating the use of personal data by six of the country’s largest internet service providers, including Verizon, AT&T, Google Fi, and others

Tokyo 2020 Olympics defeated half-a-billion attempted cyberattacks

Users of YouTube, beware: malicious videos are spreading password-stealing malware - how here’s to avoid it

23rd October

6 tips to protect your computer or laptop from hacking

Chico State graduate charged in data breach; professor cleared

CISA warns of trojanized versions of JavaScript library’s NPM package

Connected home devices posing more hacking risks for Indian firms

Corry School District says ransomware attack may have exposed data on staff, students

Facebook Sues Ukrainian Hacker Who Stole Millions of Sensitive User Details From Messenger

Feds Reportedly Hacked REvil Ransomware Group and Forced it Offline

Ferrara Ransomware Attack: A US candy company struggles to keep up with demand after hackers encrypt its systems

How can you prevent a hack?

How to protect yourself from phishing attacks: Top online banking tips

Human Hacking and Multi-Channel Phishing is Surging

India’s critical infrastructure like gas and water vulnerable to cyber attacks

Microsoft Warns of TodayZoo Phishing Kit Used in Extensive Credential Stealing Attacks

Organisations facing data protection challenges

Over 3 Million Email Addresses of CoinMarketCap Users Leaked

Philippines: Cybersecurity and the new normal

Popular NPM library hijacked to install password-stealers, miners

Ransomware Attacks Perpetrated via Vulnerability in BillQuick Billing Software

Ransomware hackers nervous, allege harassment from U.S.

Ransomware Rise Pushes Organizations to Prepare for Attack

REvil Ransomware Group Threatened Apple and ‘Mysteriously’ Deleted Documents and Threatened Extortion

Russian Drivers' Personal Data Available Online for Less than the Price of an iPhone

The Sheikh, the Businessman and a Hacking Mystery on 3 Continents

Windows ransomware gang moves earnings, others slam US after REvil takedown

22nd October

3 Million CoinMarketCap Email Addresses Have Leaked

4 Common Phishing Strategies and How to Avoid Them

$6.8M in Bitcoin held by DarkSide ransomware group on the move

8 important ways to protect your social media accounts from hackers

22% of Brits Received Proof of Vaccination Phishing Email in Past Six Months

27 Unique Malware Deliverables Discovered from Discord CDN Abuse

44% of Healthcare and Pharmaceutical Organizations Have Experienced a Data Breach Caused By a Third Party in the Last 12 Months

53% of companies are left exposed to supply chain attacks

73% of UK Businesses Suffered Phishing-Related Data Breaches in Last 12 Months

A Trojan Can Ruin Your Online Shopping Experience

Almost $7M in Bitcoin Held by Colonial Pipeline Attacker Is on the Move

As We Close Digital Divide, Mind the Cybersecurity Gap

Attack that is blocking CBS shows like 'Jeopardy!' What is, Russian ransomware?

Buckle Up: Cybersecurity Rules of the Road

Candy production impacted by ransomware attack

CDR: The secret cybersecurity ingredient used by defense and intelligence agencies

Cisco SD-WAN Security Bug Allows Root Code Execution

City Of Minnetonka: Minnetonka Alerts Authorities To Online Phishing Scheme

Collective Defense Really Can Thwart Ransomware Attacks

Countries agree to 'urgent action' on ransomware, but issue few specifics

Cybersecurity Strategies Crucial Following Retail Attacks

Cybersecurity threats challenge K-12 schools’ resilience and preparedness

DarkSide ransomware rushes to cash out $7 million in Bitcoin

DHS Secretary: “Killware,” Malware Designed To Do Real-World Harm, Poised To Be World’s Next Breakout Cybersecurity Threat

DNS attacks are targeting more businesses than ever

Don’t Get Hacked: Follow These Useful Cybersecurity Tips

Embracing secure hybrid work with four foundational IT controls

Employers increase cybersecurity budgets as workplaces go hybrid

Every which way cyberwarfare attacked you in H1 is here

Ex-carrier employee sentenced for role in SIM-swapping scheme

Exploring Zero Trust Security in Healthcare, How It Protects Health Data

FBI, NSA, CISA and EPA Issued Joint Cybersecurity Advisory on Cyber Threats Targeting Water Facilities

Federal agencies issue ransomware alert related to agriculture

Feds reportedly take down top ransomware hacker group REvil with a hack of their own

Ferrara Hit With Ransomware Attack

FIN7 Bolsters Ransomware Threats With New Recruits

FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks

FIN7 Sets Up Fake Pentesting Company Site to Recruit Talent

FinCEN Reports Spiraling Suspicious Activity Reports (SARs) Relating to Ransomware

FOI Request Reveals Scale of Data Breaches at UK Councils

Gigabyte victim to ransomware again

Google details cookie stealer malware campaign targeting YouTubers

Government Agents Compromise REvil Backups to Force Group Offline

Governments Turn Tables on Ransomware Gang REvil by Pushing it Offline

Groove ransomware calls on all extortion gangs to attack US interests

Guard yourself as the fight against cyber crime intensifies

Hackers Exploit Flaw In BQE Software’s Billing System To Deploy Ransomware

Hackers Set Up Fake Company to Get IT Experts to Launch Ransomware Attacks

Hackers somehow got their rootkit a Microsoft-issued digital signature

Halloween Horror-Show for Candy-Maker Hit by Ransomware

Heads Up - That Suspicious Email From NortonLifeLock Might Be a Scam

HIV Scotland fined £10,000 for email data breach

How Can Government Protect Constituents' Digital Privacy?

How Can Zero-Trust Security Prevent Ransomware Attacks?

How common are data breaches in the UK?

How social engineering contributes to successful ransomware attacks

How to Keep Malware Away from Your Precious Devices

Illinois candy giant hit with ransomware weeks before Halloween

Is Facebook safe? We asked the experts so you don’t have to

Italian celebs' data exposed in ransomware attack on SIAE

Keep Your Account Safe From the Latest YouTube Phishing Scam

'Lone Wolf' Hacker Group Targeting Afghanistan and India with Commodity RATs

Many Canadian firms knuckle under to ransomware demands

Microsoft: WizardUpdate Mac malware adds new evasion tactics

Microsoft OneDrive Used for Ransom Operations

Missouri Officials: Teacher Information Data Breach to Cost $50M Outline

Modern-Day Cybersecurity Governance: Enabling Cybersecurity from the Top Down

Montreal police arrest two in connection with phishing via text messages

Most organizations still lack the basics to fight ransomware

Multi-government operation targets REvil ransomware group

Multiple governments involved in coordinated takedown of REvil ransomware group

My Health Record imaging services security failed ADHA password standards

Nation-State Cybercrime

New WinRAR Trialware Vulnerability Allows MiTM Attacks

Notorious ransomware group REvil knocked offline, according to report

Old Ransomware, New Tricks - Minor Hackers Pose Threat After Ryuk Attack

Over 80% of Brits Deluged with Scam Calls and Texts

Over 35,000 citizen data at stake as digital marketing agency Fimmick attacked by ransomware

Phishing Tackle releases Smishing-as-a-Service to reduce the risk of text message phishing

Popular NPM Package Hijacked to Publish Crypto-mining Malware

Privileged access management still absent in 80% of organizations

Ransomware: Looking for weaknesses in your own network is key to stopping attacks

Ransomware defence starts with vulnerability management

Ransomware Gang Built A Fake Cybersecurity Start-Up To Recruit Unwitting IT Specialists

Ransomware Gang Says the Real Ransomware Gang Is the Federal Government

Ransomware made KBOI2 do the weather without computers. Expert says all organizations need to prepare

Ransomware needs its own kill chain framework

Researchers Discover Microsoft-Signed FiveSys Rootkit in the Wild

REvil down again, this time for the count?

REvil ransomware group hacked by multiple governments

REvil Servers Shoved Offline by Governments – But They’ll Be Back, Researchers Say

Scammers alert for young online gamers

SCUF Gaming store hacked to steal credit card info of 32,000 customers

Security changes needed to protect corporate networks from non-business IoT devices

SIEM No Longer Optional For Government Entities

Sinclair Staffers Say Company in Disarray 5 Days After Ransomware Attack

Sinclair Workers Say TV Channels Are in ‘Pandemonium’ After Ransomware Attack

South African police arrest eight men suspected of targeting widows in romance scams

Stopping Ransomware Before it Starts

Strengthening IT to help withstand cyberattacks

Tech support scams becoming the top phishing threat to consumers

The Biggest Cyber-Threat Isn't Hackers, It's Insider Threats

The costly effect of a data breach damage to your business

The five W's of third-party incident management

The K–12 Cybersecurity Act Becomes Law

The many IT errors of the British government

The Tokyo 2020 Olympics saw how many attempted cyber attacks?

Thirty nations open two-day counter-ransomware meeting

This monster of a phishing campaign is after your passwords

Threat Actors Abuse Discord to Push Malware

Threat of new ransomware models is the top emerging risk facing organizations

Thwarting Insider Threats, Ransomware and Protecting Converged Systems in Water and Wastewater Facilities

'TodayZoo' Phishing Kit Cobbled Together From Other Malware

Tokyo 2020 Olympics suffered half a billion attempted cyberattacks

Understanding and Addressing Insider Threats

Unhappy customers and their own tricks used against them, REvil ransomware gang reportedly pulled offline by 'multi-country' operations

UpdateAgent malware variant impersonates legitimate macOS software

US Government Bans International Sale of Hacking Tools

US Spyware Export Rules Require Companies to Show License Before Selling to Russia and China

Virtual Currency Platforms And Ransomware Attacks: OFAC Highlights Overlap Of Sanctions And Cybersecurity Risks

What is a Botnet And Why is it Extremely Dangerous?

What is email spoofing? Definition and prevention tactics

What to do if your small business is a victim of a cyberattack

Why Not Hold Ransomware Attackers Hostage for a Change?

WinRAR vulnerability allowed attackers to remotely hijack systems

21st October

36% of Israeli companies report weekly cyberattack attempts

45 million Brits were targeted by scam calls and texts this summer

72% of Organizations Experienced a DNS Attack in the Last Year

450 million cyberattacks attempted on Japan Olympics infrastructure

$590 million in ransomware payments reported to US in 2021 as attacks surge

Acronis Cyber Readiness Report 2021 reveals critical security gaps with 53% of companies left exposed to supply chain attacks

After a massive data breach, Twitch claims that credit cards and passwords are safe

Allocators and Managers Remain Vulnerable to Cybersecurity Threats

Australian cyber warfare agents to control key infrastructure during ransomware attacks

Before and After a Pen Test: Steps to Get Through It

Bug in Popular WinRAR Software Could Let Attackers Hack Your Computer

Bugs in malware creating backdoors for security researchers

Bulletproof hosting admins sentenced for helping cybercrime gangs

Can’t find your favorite candies to hand out on Halloween? Blame ransomware

Critical Infrastructure Cybersecurity in Hybrid Environments

Cybercrime matures as hackers are forced to work smarter

Cybersecurity and privacy to evolve significantly by 2025

Data analytics firm exposed 2m Instagram and TikTok users’ data

Data Scrapers Expose 2.6 Million Instagram and TikTok Users

Decline in ransomware claims could spark change for cyber insurance

Don’t let a cyber attack affect business productivity

Evil Corp demands $40 million in new Macaw ransomware attacks

Facebook CEO Mark Zuckerberg Named In DC Lawsuit Over Cambridge Analytica Data Breach

Fimmick ransomware attack puts over 35,000 people's data at risk

FIN7 tries to trick pentesters into launching ransomware attacks

Fraud never sleeps: Why biometrics is essential for effective fraud prevention

Gigabyte Allegedly Hit by AvosLocker Ransomware

Gigabyte struck by ransomware for the second time in three months

Google disrupts massive phishing and malware campaign

Google launches Android Enterprise bug bounty program

Government help needed to prevent cyberattacks in agriculture sector

Hackers Stealing Browser Cookies to Hijack High-Profile YouTube Accounts

Hacking gang creates fake firm to hire pentesters for ransomware attacks

Hope Is Not A Strategy: How To Face The Risk Of Ransomware Head-On, Part 1

How Organizations Can Fight Back Against the Ravages of Phishing

How to mitigate ransomware risks against critical infrastructure

Identify and avoid phishing messages

Increased activity surrounding stolen data on the dark web

Indian Banks and Finance Companies Targeted by Multi-Staged JSOutProx RAT Malware

IRONSCALES Releases State of Cybersecurity Survey, Cites Email Phishing as Biggest Security Threat To Businesses

Malicious NPM Packages Caught Running Cryptominer On Windows, Linux, macOS Devices

Many organizations lack basic cyber hygiene despite high confidence in their cyber defenses

Massive campaign uses YouTube to push password-stealing malware

Microsoft 365 Will Tattle on Employees Visiting Shady Websites

Microsoft now defends nonprofits against nation-state attacks

Nine arrested for impersonating bank clerks to steal from the elderly

One in 10 users click phishing links on mobile platforms

Overcoming ransomware risks to traditional data protection

Palo Alto warns of BEC-as-a-service

Phishing Tackle - the world’s first simulated smishing-as-a-service goes live

Protecting critical infrastructure from a cyber pandemic

Rackspace highlights top security challenges of today's organisations

Ransomware attack on Atento continues to affect call centers of several companies

Ransomware gang posed as real company to recruit workers

Ransomware Sinks Teeth into Candy-Corn Maker Ahead of Halloween

Ransomware Tactics To Quickly Collect Money From Victims

RAT malware spreading in Korea through webhards and torrents

Republican Senate leaders slam new Transportation Security Administration (TSA) cybersecurity regulations for rail and aviation industry

Russian ransomware group reportedly behind Olympus attack

Some Insurers are Delaying Payment on Ransomware Claims

Spoofing, Phishing, Ransomware Continue to Overwhelm Health Systems

TA551 Shifts Tactics to Install Sliver Red-Teaming Tool

Technology, not training, protects users from phishing

The Security Imperative In The Healthcare Industry: Steps To Defending Telehealth And Patient Portals Against Cyber Attacks

Threat Actors Abusing Discord to Spread Malware

Treasury Chief Yellen Calls Ransomware ‘Direct Threat’ to Economy

Two People Offering ‘Bulletproof Hosting’ to Cybercriminals Sentenced in the US

U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn

Unknown Threat Actor Targets South East Asia with New Espionage Campaigns

US Government warns of BlackMatter ransomware attacks against critical infrastructure

US judge sentences duo for roles in running bulletproof hosting service

US rolls out new rules governing export of hacking and cyberdefense tools

US to Ban Export of Hacking Tools to Authoritarian States

US to curb hacking tool exports to Russia, China

Victims Feel Paying Ransom is Their Only Option

Whaling - Phishing attacks on upper management

What teachers and parents should know about ransomware

What the RAMP leadership change means for cybersecurity

Why is Cybersecurity Failing Against Ransomware?

YouTube Creators Targeted With Phishing Scams Based on Cookie Theft Malware

20th October

5 questions to ask when creating a ransomware recovery plan

A matter of life or death: security challenges for the healthcare industry

A New Ransomware Threat: Compromised Identities

Avoid paying ransoms, Gartner says. Instead, focus on situational awareness

80% of executives will consider paying the ransom

81% of UK Healthcare Organizations Hit by Ransomware in Last Year

Attack surface larger than ever as organizations shift to remote and hybrid work

Before you log in to Facebook or WhatsApp again, read this warning

Candy Maker’s Operations Disrupted By Ransomware With Halloween Just Around The Corner

Centre for Computing History apologises to customers for 'embarrassing' breach

CISA, FBI and NSA Issue Advisory of BlackMatter Ransomware

Commodity RAT Malware Discovered Targeting Afghanistan and India

Companies Failing to Protect Domain Registrations

Critical National Infrastructure (CNI) Attacks on the Rise: Are We Ready?

Cyber incident impact sits at over $500,000 for half of small to medium APAC businesses

Data Breach Could Cost Missouri $50M

Data breach hacker attack on SIAE

DDoS attacks against Russian firms have almost tripled in 2021

Detections That Can Help You Identify Ransomware

Five game-changing factors for companies dealing with ransomware attacks

Gartner predicts privacy law changes, consolidation of cybersecurity services and ransomware laws for next 4 years

Geriatric Microsoft Bug Exploited by APT Using Commodity RATs

Google: YouTubers’ accounts hijacked with cookie-stealing malware

Google Crushes YouTube Cookie-Stealing Channel Hijackers

Hacker steals government database with info of entire Argentine population

Hackers are disguising their malicious JavaScript code with a hard-to-beat trick

Hackers Start Imitating Social Media to Target Brand Phishing Emails

How not to get hit by ransomware in 2022

How to get your business ransomware ready

Insider risk, slow cyberattack response among worries for security professionals

Is In-House Data Destruction Really Necessary? The Answer Is a Big Yes!

Labour Relations Agency apologises for data breach

LightBasin Hackers Breach at Least 13 Telecom Service Providers Since 2019

LightBasin Operation Compromises 13 Global Telcos in Two Years

Macquarie Health's core IT infrastructure back online after ransomware attack

Microsoft announces security programs for nonprofits as nation-state attacks increase

Microsoft Warns of New Security Flaw Affecting Surface Pro 3 Devices

New Gummy Browsers attack lets hackers spoof tracking profiles

New Linux kernel memory corruption bug causes full system compromise

New PurpleFox botnet variant uses WebSockets for C2 communication

Olympus Suffered a Second Cyber Attack That Disrupted Operations in the Americas a Month After a Ransomware Incident on EMEA Networks

Olympus US hack tied to sanctioned Russian ransomware group

Oregon eye practice reports email data breach

Organizations lack basic cybersecurity practices to combat the growing tide of ransomware

Political-themed actor using old MS Office flaw to drop multiple RATs

Ransomware - To pay or not to pay?

Ransomware affected 72% of organizations in past year

Ransomware Disruption Approaches from Global Summit to Be Tested, Says Neuberger

Ransomware now a profitable industry targeting South Africa

Researchers Break Intel SGX With New 'SmashEx' CPU Attack Technique

Russia deconstructs Biden's ransomware deception

Russian Corruption Makes It Harder to Crack Down on Ransomware

Russian Cyber-Criminals Switch to Cloud

Securing hospitals and other vital systems against the next ransomware attack

Simplifying Multicloud Security in a Cloud-Native World

SolarWinds was a cybersecurity wakeup call, says Microsoft's president

Start Early and Secure Containers Across Their Lifecycle

Supply chain attacks are the hacker's new favourite weapon. And the threat is getting bigger

These stealth hackers avoid Windows but target Linux as they look to steal phone data

ThycoticCentrify Ransomware Report: 83 Percent of Victims Paying Ransom

Twitter Pulls Account After Argentinian Mega Breach Claims

Two Eastern Europeans Sentenced for Providing Bulletproof Hosting to Cyber Criminals

Two SIM swappers phished a phone company so they could steal $16K in crypto

U.S. Government Bans Sale of Hacking Tools to Authoritarian Regimes

US government to ban export of hacking tools to authoritarian regimes

VPN Exposes Data for 1M Users, Leading to Researcher Questioning

What are the post-pandemic security concerns for IT pros?

What is Identity and Access Management, and Why is it so important?

19th October

$5.2 billion worth of Bitcoin transactions possibly tied to ransomware

30+ Nations Pledge to Combat Ransomware, Promote Cyber Resilience

53% of companies are left exposed to supply chain attacks

83% of ransomware victims paid ransom

83% of ransomware victims paid to get data restored

83% of Ransomware Victims Pay the Demand

2021 State of Ransomware Report Reveals 83% of Victims Paid to Get Data Restored

A New Variant of FlawedGrace Spreading Through Mass Email Campaigns

About 26% of all malicious JavaScript threats are obfuscated

Accenture outlines cyber incident also involved data breach

Acer hacked twice in a week by the same threat actor

Almost 70% of CISOs expect a ransomware attack

Apple iCloud Hacker Steals Nudes

As Ransomware Threat Grows, Tribal Governments Still Left Out of Federal Cybersecurity Funding

Australia: Severity of cyber attacks rises

BlackByte Ransomware Decryptor Released for Free

BlackByte ransomware decryptor released to recover files for free

BlackMatter ransomware gang will target agriculture for its next harvest

Business Email Compromise (BEC) attacks: Scammers’ latest tricks

Candy Corn Maker Hit With Ransomware

Chinese VPN app Quickfox caught exposing 1 million users’ data

CISA, FBI and NSA publish BlackMatter ransomware warning

CISA issues advisory on BlackMatter ransomware

CISA says BlackMatter ransomware group behind recent attacks on agriculture companies

Companies lack basic cybersecurity practices to combat ransomware

Compliance does not equal security

Customer services firm Atento hit by cyberattack

Cyberattackers strike payday as ransomware attacks increase tenfold

Cybersecurity Experts Weigh In On Israeli Hospital Ransomware Attack

Data Breach Hits US Dental Patients

FBI, NSA Warn Cybersecurity Experts of Impending BlackMatter Ransomware Attacks

FBI warns of fake government sites used to steal financial, personal data

Feds Warn BlackMatter Ransomware Gang is Poised to Strike

Free BlackByte decryptor released, after researchers say they found flaw in ransomware code

Fresh APT Harvester Reaps Telco, Government Data

How Gmail phishing emails bypass the filters and how to spot them

How to keep your data off the Dark Web

How to proactively detect and prevent ransomware attacks

LightBasin hacking group breaches 13 global telecoms in two years

Lionel Messi personal data stolen and leaked in major data breach

Lyceum APT Returns, This Time Targeting Tunisian Firms

Majority of Ransomware Victims Pay To Restore Data

Man gets 7 years in prison for hacking 65K health care employees

Michigan Man Got a 7-Year Sentence for Hacking UPMC HR Databases and Stealing PII

Microsoft continues to be the most impersonated brand in phishing attacks

Microsoft most imitated brand of all phishing attacks

Most Organizations Admit to Being Ransomware Attack Victims, Pay Ransom

Most organizations still lack the basics to fight ransomware

Multi-factor authentications soar as enterprises move away from passwords to secure hybrid workers

Multiple Vulnerabilities Found in ZTE Portable Router

New Karma ransomware group likely a Nemty rebrand

New MirrorBlast phishing campaign targets financial entities

Organizations Unprepared for Ransomware Attacks Despite Confidence in Cyber Defenses

Organizations warned of ransomware risk from smaller operators

Patient sues UF Health after cyberattack, data breach

Paying the Ransom: New Research Finds That Seventy Percent of CISOs Expect to be Impacted by Ransomware in Next 12 Months; 80 Percent Will Consider Paying the Ransom

Phishing Is Number One Cyber Risk for Irish Business

Phishing Reports Show You There's a Problem, but What's Next?

Prison for UPMC Data Thief

Ransomware attack disrupts production at Ferrara Candy, maker of Brach’s Candy Corn

Ransomware hackers steal data from California hospital, publish it to dark web

Ransomware May Be Bigger Problem Than Suspected According To New Report

Ransomware Victims Paid $600 Million to Hackers in 1H of 2021

REvil ransomware gang goes dark after its Tor sites are hacked

REvil ransomware group disappears, again

REvil ransomware operators claim group is ending activity again, victim leak blog now offline

SASE emerges as the edge becomes an enterprise focal point

Secure your databases against opportunistic attackers

Shared Responsibility Key to Protecting Critical Infrastructure

Sinclair Broadcast Group Identifies Data Breach

Singapore: Banking on trust – addressing the triple threat of ransomware, regulatory compliance, and consumer confidence

Social Now Among Top Three Sectors to be Imitated in Phishing Attempts in Q3 2021

Squirrel Bug Lets Attackers Execute Code in Games, Cloud Services

Squirrel Engine Bug Could Let Attackers Hack Games and Cloud Services

TA505 Gang Is Back With Newly Polished FlawedGrace RAT

Tech support scams top list of latest phishing threats

Treasury Department: Ransomware Victims Paid $590M First Six Months of 2021

Twitter accounts linked to cyberattacks against security researchers suspended

Twitter suspends hacker who allegedly stole data of 45 million Argentinians

UK in Midst of $200m Crypto Fraud Epidemic

US Authorities Issue BlackMatter Ransomware Alert

US takes aim at cryptocurrencies in bid to stem ransomware

VPN Provider's Misconfiguration Exposes One Million Users

What Can Help Stop The Surge Of Ransomware Attacks?

What is the Dark Web Ransomware Marketplace?

Why patching our way out of the ransomware problem is so hard

Work From Home (WFH) is here to stay: Five tactics to improve security for remote teams

Zerodium wants zero-day exploits for Windows VPN clients

18th October

5 Ransomware Best Practices Every Firm Should Know

10 critical strategies that businesses can consider to prevent and detect ransomware threats

Accenture: Ransomware Attack Breached Proprietary Data

Accenture lost 'proprietary information' in summer ransomware attack

Acer Hacked, the Private Data of Millions of Clients Stolen

Acer hit with second cyberattack in less than a week, Taiwanese authorities notified

After Springhill: Assessing the Impact of Ransomware Lawsuits

Amazon’s Twitch confirms that its source code was leaked in data breach

Amazon's Twitch says source code exposed in data breach

Analyzing and implementing a national zero trust architecture

Australia’s new ransomware plan to allow freezing, seizure of digital currencies

Authorities See Rise in Ransomware Attacks, Urge Businesses to Prioritize Cybersecurity

BlackByte ransomware decryptor released

Buffalo School District to Spend $10M on Ransomware Response

Controversial TV station owner Sinclair Broadcast Group struck by ransomware

Cost of a Data Breach vs. Hard Drive Crusher: How You Can Save Millions

Cyber-Attack on US TV Broadcaster

Cyber risk trends driving the surge in ransomware incidents

Cybersecurity Experts Warn of a Rise in Lyceum Hacker Group Activities in Tunisia

Data breach extortion scheme uncovered by NCC Group

Espionage Group ‘Harvester’ Uses New Tools to Target South Asia and Focuses on Afghanistan

FBI, CISA, NSA share defense tips for BlackMatter ransomware attacks

Feds Urge Action Against BlackMatter Ransomware Based on Third-Party Tip

FinCEN: Ransomware on the Rise, Bitcoin Is the Most-Used Payment Method

Florida health system hit with proposed class-action lawsuit over data breach

Fraud Victims Lose £9.3bn in Well-Being per Year

Hornetsecurity Survey Reveals 21% of Companies Have Experienced a Ransomware Attack

How to avoid ‘spear phishing’ scams

How To Counter Common E-commerce Threats

How to Harden Your Workforce Against Phishing Attacks

How to Protect Yourself from Identity Theft

How using the purple team approach helps in addressing cybercrime

Kemper Proposes $17.6M Settlement of Data Breach Claims

Most employees believe backing up company data is not their problem

New Excel phishing scam targets financial service sector

NSA, FBI, CISA Issue Advisory on 'BlackMatter' Ransomware

Over 30 Countries Pledge to Fight Ransomware Attacks in US-led Global Meeting

Proposed Bill Requires Ransomware Victims To Disclose Payments To Homeland Security

Ransomware a growing concern for re/insurers, says Fitch

Ransomware attack likely behind Sinclair TV stations downtime

Ransomware group REvil goes offline once more

Ransomware Groups Hit Three Wastewater Facilities This Year

Remote access security strategy under scrutiny as hybrid/remote working persists

Representatives of over 30 nations to coordinate actions against ransomware

REvil ransomware gang shuts down again after being hacked

REvil ransomware group goes dark after its Tor sites were hijacked

Sinclair Broadcast Cyberattack Timeline: Ransomware Investigation and Recovery Updates

Sinclair Broadcast Group hit by ransomware attack, upending local TV newscasts

Sinclair Broadcast Group hit with ransomware attack

Sinclair Broadcast Group suffers ransomware attack, breach

Sinclair confirms ransomware attack after TV station disruptions

Sinclair Confirms Ransomware Attack That Disrupted TV Stations

Sinclair hit by ransomware attack, TV stations disrupted

Sinclair ransomware attack: Media company says it suffered data breach

Sinclair TV stations crippled by weekend ransomware attack

Sinclair TV Stations Disrupted After Possible Ransomware Attack

South Carolina TV station owner Sinclair probes data breach, ransomware found

South Korea Wants Help to Arrest Alleged Cyber-Criminals

State-backed hackers breach telcos with custom malware

Study Shows Virtually All AWS Accounts Have Vulnerable Identities Exposing 90% Of S3 Buckets To Potential Ransomware Attacks

Suspected Chinese hackers behind attacks on ten Israeli hospitals

The importance of crisis management in the age of ransomware

The Role of Active Directory in a Layered Security Strategy

The Scourge of Ransomware: Another Kind of Epidemic

This 'particularly dangerous' phishing attack features a weaponized Excel file

Three Critical Cybersecurity Metrics to Fight Back

TikTok Serves Up Fresh Gamer Targets via Fake Among Us, Steam Offerings

Top Ransomware Gangs Targeting Healthcare Sector

Trading Standards warning over bogus HSBC “phishing email” sent to Flintshire resident

Twitch: No Passwords Were Taken in Data Breach

Twitter Suspends Accounts Used to Snare Security Researchers

UF Health faces lawsuit following data breach of 700,000 patients

University still recovering from major cyberattack that disrupted IT systems

US government claims ransomware 'earned' $590m in the first half of 2021 alone – mostly in Bitcoin

US links $5.2 billion in Bitcoin transactions to ransomware

US Treasury Tracks $5.2bn of Ransomware Transactions in Six Months

White House international ransomware initiative outlines hopes and challenges

Why are we experiencing so many data leaks?

Why Database Patching Best Practice Just Doesn't Work and How to Fix It