Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday 6 December 2021

Data Breaches Digest - Week 49 2021

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 6th December and 12th December 2021.


12th December

4 Philippine government agencies among prime targets of ‘China-sponsored’ spies, says US cyber firm

5 tips to help seniors avoid scams this holiday season

Apache Log4j Vulnerability — Log4Shell — Widely Under Active Attack

Asylum seekers, families allegedly threatened after Australian immigration data breach

BadgerDAO reveals cause behind exploit, details recovery plan

Banks Must Report Cyber Incidents Beginning in May 2022

BDO clients lose money due to alleged online banking hack

Beware! New Gmail email threat is here along with Omicron! Know how to avoid

Brazil Health Ministry Website Targeted by Hackers, COVID-19 Vaccine Data At Risk

Crypto Bot Trading Alert

Cyber fears as HMRC declares 17 serious data breaches to ICO

Cyber security breach could target nearly all companies

Cybersecurity firm gives tips to confidently shop online

Digital Assets Are Facing An Increasing Security Threat; How Can Corporations and Individuals Mitigate this Risk?

DVLA scam: DVLA issues urgent warning to motorists

Google pushes back against a 1 million strong botnet

Hackers start pushing malware in worldwide Log4Shell attacks

Honolulu police, FBI investigate cyberattack as TheBus, Handi-Van sites inaccessible

How to Guard Against Smishing Attacks on Your Phone

How to protect your financial data as the Cabinet Office is fined £500k for address leaks

Log4Shell: This dangerous exploit can affect everything from Apple to Minecraft

Main cybersecurity technology predictions for 2022

Microsoft Asks Windows Users to Share Potentially Insecure Drivers

Mobile Banking Scam: How to Keep Your Account Secure, Stop Hackers

Phishing attacks in Brazil grow 41% in 2021

Russian National Sentenced for Providing Crypting Service for Kelihos Botnet

Schools face increasing risk of cyberattacks

The Brazilian Ministry of Health’s website was hacked, and vaccination data was stolen

The most common frauds in social networks and the traps for the most attacked profiles: seniors and young people

The Ongoing Evolution of Modern Ransomware

Time to take data security seriously

Top 10 Cybersecurity Challenges to be Prepared for in 2022

Trickbot rebirths Emotet: 140,000 Victims in 149 countries in 10 months

Types of Cyber Threats and How to Prevent Them

Understanding Cybersecurity in a Work From Home World

Volvo Data Breach: A Cause for Concern?

11th December

5 Ways To Protect Yourself From Online Hackers In 2022

10 Cybersecurity Practises that a Small Business must adopt

BEWARE: If You Have These Battery Charging and Keyboard Apps, Delete Them ASAP

Brazil health ministry website hit by hackers, vaccination data targeted

Brazil suffers cyberattack on health systems, vaccination data still not recovered

Canadian Citizen Charged for Ransomware Attacks in Alaska

Careful how you scan: QR codes represent the new attack dimension

Cox Customer Support Scam Leads to Data Breach

Don’t Let the Grinch that Scammed the Holidays Make You a Victim

Easy prey: How Russian criminals laid the bait that would ultimately bring the Irish health service to its knees

Federal Trade Commission (FTC): Americans lost $148 million to gift card scams this year

First National Bank (FNB) warns of new scams targeting customers

Gmail, Hotmail Users Beware: 'Free PCR Omicron Test' Email Scam Could Steal Your Bank Account Details - How to Avoid Falling into this Trap

Google Suddenly Makes Windows Safer For 1 Million Users

Hacked BDO accounts are used to buy Bitcoin via UnionBank

Hacker Poses As Support Rep To Breach Cox Communications

Hackers actively exploiting 0-day in Ubiquitous Apache Log4j tool

Hackers are exploiting users with MS Outlook

Hackers Are The Reason There’s Not Enough Cream Cheese Right Now

Hackers steal research data from Sweden’s Volvo Cars

Handi-Van Servers Hit By A Cyberattack, Forcing Passengers To Rebook Rides

Hellmann Company Reports Massive Cyberattack

How to Protect Your Crypto Assets

HSE hack: Cancer patients could not be treated, and x-ray systems went offline

Identity theft: Protect your social media, banking and online shopping accounts from hackers

Identity theft and fraud - how it happens and how to prevent it

Log4j: 'Vaccine' Released for Exploited Apache Zero Day

Log4Shell - a new hair-on-fire Internet exploit has IT professionals scrambling

Massive Attack Targets 1.6 Million WordPress Sites

Microsoft: These are the building blocks of QBot malware attacks

National Board Of Examinations (NBE) Warns Of Spoofed Emails, SMS, Social Media Content

New White House policy gives agencies 24 hours to assess cyberattacks of potential national security concern

Ransomware Group Claims Volvo Attack, Screenshots of the Stolen Files Released

Serious bug puts Apple iCloud, Twitter, Minecraft at hacking threat

The new PPI? Claims firms turn their fire on data breaches

Transforming cybersecurity from threat mitigator to innovation enabler

What cybersecurity can learn from health and wellness

What Is IP Spoofing and What Is It Used For?

What SMEs and startups should do to ensure they are not soft targets for cyber threats

What you should do after a ransomware rampage

10th December

1.6 Million WordPress Sites Under Cyberattack From Over 16,000 IP Addresses

12 Days of Phish-mas: A Festive Look at Phishing Examples

30% of online users suffered security breaches due to weak passwords

‘Appalling’ Riot Games Job Fraud Takes Aim at Wallets

Australian government raises alarm over Conti ransomware attacks

BadgerDAO Reveals Details of How It Was Hacked for $120M

BlackCat: A New Rust-based Ransomware Malware Spotted in the Wild

Brazilian Ministry of Health suffers cyberattack and COVID-19 vaccination data vanishes

Breaches are becoming less of a fireable offense, a new report states. But why?

C-suite’s biggest ransomware fear: Post-attack regulatory sanctions

Cox Suffered Data Breach by Hacker Impersonating Support Staff

Critical RCE 0day in Apache Log4j library exploited in the wild (CVE-2021-44228)

Cyber-attack on Hellmann Worldwide Logistics

‘Cybercrime may become next pandemic’

Cybersecurity predictions: Identity protection to be a priority in 2022

Data breach impacts 80,000 South Australian govt employees

Defense Cybersecurity: How Changing Classified Document Status Can Unknowingly Affect Risk Levels

Department of Justice (DOJ) gives Russian national two-year sentence for work shielding Kelihos malware and other ransomware

Dissecting the mind of a cybercriminal

Druva 2022 Predictions: Data Resiliency to pave way against ransomware attacks

Druva Shares Insights on How Organizations Must Prepare to Combat Ransomware in 2022

Emotet is back, 140k victims hit

Extremely Critical Log4J Vulnerability Leaves Much of the Internet at Risk

Federal privacy commissioner says Bank of Montreal (BMO) security breach in 2017 affected 113,000 client accounts

Frontier Software Ransomware Attack Puts at Least 80,000 Government Employees at High Risk of Personal Data Theft

German logistics giant Hellmann reports cyberattack

Hackers make some Vestas' data public after ransomware attack

Hackers reported 21% more vulnerabilities in 2021 than in 2020

HSE Missed Cyber-attack’s Warning Signs

Industrial Cybersecurity Investment Makes Comeback As Infrastructure Threats Make Headlines

IoT Security: Protecting Food and Agriculture Organizations

June ransomware attack may have revealed Whitehouse ISD students’ info

‘Karakurt’ Extortion Threat Emerges, But Says No to Ransomware

Keep copying your data, ransomware isn’t going away

Legacy IT Vendors Losing Trust as Supply Chain Attacks, Ransomware Attacks Run Rampant

Major ISP and cable company breached – And you’ll never believe how

Martin Lewis issues scam alert as hundreds of emails target Britons - 'don't touch them!'

Massive attack against 1.6 million WordPress sites underway

Microsoft vulnerabilities have grave implications for organizations of all sizes

Minecraft rushes out patch for critical Log4j vulnerability

Most phishing pages are abandoned or disappear in a matter of days

New 'Karakurt' hacking group focuses on data theft and extortion

New White House policy gives agencies 24 hours to assess cyberattacks of potential national security concern

New zero-day exploit for Log4j Java library is an enterprise nightmare

Next-Gen Maldocs & How to Solve the Human Vulnerability

Norton predicts that AI and machine learning will increase cybercrimes

Phishing attacks use QR codes to steal banking credentials

Queensland Government-owned energy company attack claimed by Russian-speaking gang

Ransomware attacks on schools may be more common than we know

Ransomware groups don’t abide by promises not to target healthcare

Ransomware Jerks Helped Cause the Cream Cheese Shortage

Realities of ransomware in South Africa: It’s after everyone

Researchers release 'vaccine' for critical Log4Shell vulnerability

Rising Insurance Costs Add to Public Finance Sector’s Cyber Pressures

Russia must act against ransomware, US official says

Scammers are targeting online shoppers in unique ways this year

Security warning: New zero-day in the Log4j Java library is already being exploited

Seller-related fraud threatens long-term customer retention

Soon, the Hackers Won’t Be Human

South African Revenue Service (SARS) warns of scammers stealing tax refunds through eFiling profiles

South Australia government data breached in ransomware attack

South Australian government employee data taken in Frontier Software ransomware attack

Spar stores start to return to normal after “ransomware” attack

Sprawling Active Attack Aims to Take Over 1.6M WordPress Sites

The Acronis cyberthreats report 2022 reveals ongoing malware pandemic

This decade-old malware has picked up some nasty new tricks

This ransomware will successfully infiltrate your device and extort you

Three-Quarters of Firms Admit Sub-Optimal IoT Security

Top 10: Infosecurity Predictions for 2022

Volvo announces some R&D files stolen during cyberattack

Volvo Cars discloses security breach leading to R&D data theft

Volvo had some R&D data stolen in security breach

Volvo Hit by Cyber-thieves

Vulnerabilities in Eltima SDK affect popular cloud desktop and USB sharing services

Warning for Colleges on COVID-Based Phishing Attacks

Warning of banking scam that steals cash if you answer your Android phone

What is cybersecurity and how does it keep your business safe online

Why data protection is more than just a tick box for charities

Why Endpoint Security is Critical For Healthcare Cybersecurity

Zero Day in Ubiquitous Apache Log4j Tool Under Active Attack

9th December

2021 breaks the record for security vulnerabilities

2021 marks another record year for security vulnerabilities

A new phishing campaign on Twitter is attacking verified accounts

ALPHV BlackCat - This year's most sophisticated ransomware

Beware of ransomware attacks between Christmas and New Year’s!

Burned out workers are less likely to follow security guidelines

Cable TV provider Cox Communications hit by data breach

Canadian Ransomware Arrest Is a Meaningful Flex, Experts Say

CISA releases advisory on five Apache HTTP server vulnerabilities affecting Cisco products

Cox discloses data breach after hacker impersonates support agent

Crime-As-A-Service Is Leveling Up - And Businesses Aren't Prepared

Critical SonicWall Flaws Could Give Hackers Control Of Systems

Dallas-Based Company Says It’s Monitoring ‘Thousands And Thousands’ Of Cyber Attack Attempts Daily

Dangerous Android scam drains your bank account with one phone call

Dark Mirai botnet targeting RCE on popular TP-Link router

DARPA Announces SMOKE Program

Delta police working with Europol on ‘significant’ cybercrime investigation

DNA Testing Firm Data Breach Exposed Sensitive Information of More Than 2.1 Million People

Emotet Is Back and More Dangerous Than Before

Experts Discuss Proposed Changes to the UK’s Data Protection Regime

Fueled by Pandemic Realities, Grinchbots Aggressively Surge in Activity

Fujitsu pins Japanese government data breach on stolen ProjectWEB accounts

Fujitsu to discontinue ProjectWEB tool after Japanese government data breaches

Get patching: SonicWall warns of vulnerabilties in SMA 100 series remote access devices

Hackers leak personal information of Vestas staff

Half of Websites Still Using Legacy Crypto Keys

Holiday Shoppers Once Again Scrooged By Cyberattacks

How a phishing campaign is able to exploit Microsoft Outlook

How cybersecurity and executive leaders communicate about ransomware

How MikroTik Routers Became a Cybercriminal Target

How to protect your business and its data during the 2021 holiday season

Hundreds of thousands of MikroTik devices still vulnerable to botnets

IoT under attack: Security is still not good enough on these edge devices

Israel leads 10-country simulation of major cyberattack on world markets

IT Execs Half as Likely to Face the Axe After Breaches

It’s time to patch your SonicWall SMA 100 series appliances again!

Malicious Notepad++ installers push StrongPity malware

Malicious npm packages are stealing Discord tokens

Microsoft, Google OAuth flaws can be abused in phishing attacks

Most Phishing Pages are Short-lived

National Vulnerability Database (NVD): It’s Another Record Year for Vulnerabilities

Nearly half of Canadians lack confidence in cybersecurity of Canada Revenue Agency (CRA), Elections Canada

Number Of Cyberattacks Against Organizations Up By 13%, Noticeable Rise In Attacks Targeting Mobile Devices

One-Third of Phishing Pages Gone in a Day

Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs

Phishing Attacks Abuse Microsoft OAuth Implementations

Phishing experiment nets insurance and finance industries

QNAP NAS devices targeted by new bitcoin miner

Queensland government energy generator says ransomware attack not state-based

Ransomware: Is Paying The Right Decision Or A Huge Gamble?

Ransomware, Other Big Incidents Added to Breach Tally

Ransomware in 2022: Capabilities for rapid and reliable data recovery

Record-Breaking Zero-Days Require New Approach

Researchers Explore Microsoft Outlook Phishing Techniques

SanDisk SecureAccess bug allows brute forcing vault passwords

Saudi human rights activist files lawsuit against former US intelligence operatives for hacking scandal

Security in 2022 – Ransomware, APT groups and crypto exchanges pose key challenges

SMA 100 flaws in SonicWall VPN expose devices to remote takeover

Sophisticated identity document fraud increased 57% over previous year

SPAR gives important customer update about 'ransomware attack' as it wrestles back control from hackers

The life cycle of phishing pages

Top 5 Tips to Prevent Getting Hacked While Working from Home

Top practices to improve enterprise security

Trickbot rebirths Emotet: 140,000 victims in 149 countries

Update on the Executive Order on Improving the Nation’s Cybersecurity

US food importer Atalanta admits ransomware attack

US Military’s Hacking Unit to take on ransomware gangs

Vestas confirms employee data leaked by hackers

Watch that package: Supply chain scams on the rise

What cybersecurity trends do company executives expect to see next year?

What Is Attack Surface Management and Why Is It Important?

Why companies should use AI to fight cyberattacks

Why Holidays Put Your Company at Risk of Cyber Attack (And How to Take Precautions)

Why the Private Sector Is Key to Stopping Russian Hacking Group APT29

Windows 'InstallerFileTakeOver' zero-day bug gets free micropatch

8th December

4 Top Cybersecurity Threats to Law Firms

76% Indian companies suffered ransomware attacks in 2021, many paid extortion

2021 will be a record-breaking year for data breaches, what about 2022?

140,000 Reasons Why Emotet is Piggybacking on TrickBot in its Return from the Dead

A cybersecurity year in review

A growing crisis of trust with Microsoft and legacy IT vendors

Almost all firms have suffered a breach due to supply chain weaknesses

Android malware infected more than 300,000 devices with banking trojans

Australian energy giant CS Energy suffers a ransomware attack

Average ransomware attack costs almost $500K

Average ransomware payment for Canadian firms hits $450,000

AWS Among 12 Cloud Services Affected by Flaws in Eltima SDK

Beware! Gmail scam emails threat is here; know how to identify fake mail

Businesses fear rise of third-party attacks, as ransomware impact grows

Can Your Cybersecurity Culture Stand Up to the Latest Spear Phishing Techniques?

Canada spy agency: Ransomware attacks soar, hackers set to become more aggressive

Canadian charged with running ransomware attack on US state of Alaska

Chinese Ransomware Attacks Major Energy Network! Potentially Shutting Down Power for 3 Million Homes

COVID-19 Omicron Variant Phishing Emails Target US Universities

Critical national infrastructure, remote workers, and supply chain are top cyber attack targets for 2022

Critical SonicWall VPN Bugs Allow Complete Appliance Takeover

Cryptocurrencies: NFT holders losing millions daily to scams

Cuba Ransomware Breached 49 U.S. Critical Organizations

Cyberattacks, pandemic among top bank risk areas in 2021

Cybersecurity: Organizations face key obstacles in adopting zero trust

Data Exfiltration: Public Enemy No. 1 for the Public Sector

Designer smartphone hacks will trickle down in 2022

Dramatic Fall in .UK Domain Suspensions

Emotet’s Behavior & Spread Are Omens of Ransomware Attacks

Employees still clicking on phishing email links

Enterprises will be better prepared in 2022 to combat cyber attacks: Trend Micro

Finding the key for balancing remote workforce security with productivity

French Transport Giant Exposes 57,000 Employees and Source Code

From DDoS to bots and everything in between: Preparing for the new and improved attacker toolbox

Google Disables Glupteba Botnet Infecting 1 Million Devices

Google Disrupts Blockchain-based Glupteba Botnet; Sues Russian Hackers

Google disrupts Glupteba blockchain botnet that infected 1 million PCs

Google Files Lawsuit Against Blockchain Botnet Operators

Group-IB unveils crime trends in Middle East: Ransomware, Carding, Initial Access Brokers

Hackers infect random WordPress plugins to steal credit cards

Hackers targeted Oxford vaccine research

Hackers using concern about Omicron strain of COVID-19 to attack US universities

Hotel claims Conti ransomware attack on system as guests locked out

Hotel Guests Locked Out of Rooms After Ransomware Attack

How breaches expose businesses to multiple attacks

How Can Banks Prevent Ransomware Attacks Through Cyber Awareness Training?

How FinServ Firms can Prevent Business Email Compromise

In-Store Tracking: Is It A Threat To Consumer Privacy?

India tops the list in ransomware attacks amid digital push

Intensifying Cybersecurity: Guarding The Future of Work

IoT Cyberattacks on Health Systems Surge During Pandemic

It’s Not a User Problem; It’s a Cybersecurity People Problem

Kiwi malware reports surge

Law enforcement cracks the whip on dodgy .UK domains - and it’s working

Lloyd’s of London: Cyber Insurance Will Not Cover Cyber Attacks Attributable to Nation-States

Malicious npm Code Packages Built for Hijacking Discord Servers

Microsoft a big part of the cyber security problem: Proofpoint

Microsoft error could open the door to the most damaging phishing scam to date

Microsoft launches Secured-core servers to combat ransomware

Middle East's carding market drops by 49%: Group-IB

Mind the Gap: Moving from Missing Encryption to Ubiquitous Data Security

Moobot Botnet Chews Up Hikvision Surveillance Systems

Moobot botnet spreading via Hikvision camera vulnerability

Most business cyber attack victims able to resolve issue

Navigating the challenges of privacy laws and security costs

Not with a Bang but a Whisper: The Shift to Stealthy Command-and-Control (C2)

Only 2 in 10 companies have offered cybersecurity training to their employees

Organisations Facing Greater Risk of Ransomware Cyberattacks This Festive Season as More Workers Shop on Company-Owned Devices

Over a Dozen Malicious NPM Packages Caught Hijacking Discord Servers

Panasonic becomes latest victim of data breach

Passports Now Most Attacked Form of ID

Phishing attacks repeated history, more than 250000 phishing attacks in Q3 2021

Preparing for the 2022 fraud threat landscape

Ransomware – Hindsight is 20/20

Ransomware detection in India doubled to 7.34% in Q3

Researchers discover GraphQL authorization flaws in fintech SaaS platform

Russia may be collaborating with US to bring cyber criminals to heel

Sabbath Ransomware Targeting Healthcare, Mandiant Warns

SEO Poisoning: The New Normal Brings New Threats

Software Vulnerabilities Up by 20% in 2021

SonicWall ‘strongly urges’ customers to patch critical SMA 100 bugs

SonicWall Urges Customers to Immediately Patch Critical SMA 100 Flaws

South African Revenue Service (SARS) warns taxpayers of phishing scams

Spar cyberattack hits more than 300 convenience stores

Sri Lanka listed companies, telcos hit by ransomware in 2020

Taiwan cyberattack group targets Beijing, Fujian

The business case for data-centric security

The current state of zero trust: Awareness is high, adoption is lagging

The Evolving Technology of Cybercrime

The growing ransomware crisis for IT vendors

The Impact of Emerging Technology on the Future of Cybersecurity

The State Of Cyber Extortion Crime In South Africa: 67% Companies Would Never Agree To Paying Ransom

This Small Tech Company May Actually Be a Ransomware Front Group

Thousands of Potentially Malicious Servers Hiding in World’s Most Popular Websites

Tips to protect against ransomware attacks

Twitter scammers try phishing via DMs

Two Data Breaches at Washington Senior Care Nonprofit Impact 103K

US Cyber Command head confirms direct actions against ransomware gangs

Warning: Watch out for fake emails claiming to be from Martin Lewis as more than 300 reported in one week

WFH, cryptocurrency the new hotspot for cybercriminals

What security trends to expect in 2022

What to Do When a Ransomware Group Disappears

What’s the right amount of trust to build into your network? Less than Zero

Why does endpoint security matter to home users?

Why Phishing is more difficult to detect on mobile

Why Public-Private Partnership is Key to Cybersecurity

Why You Should Not Interact With Suspicious Emails

With 18,378 vulnerabilities reported in 2021, NIST records fifth straight year of record numbers

Work From Home Trend And Crypto Hype To Be Exploited In 2022

XE Group exposed for eight years of hacking, credit card theft

7th December

5 common gift card scams and how to spot them

5 Ransomware Recovery Steps to Take After a Breach

5 Ways to Ensure Your Child’s Online Safety

7 Steps to Defend Your Enterprise Data from Ransomware

8 tips to protect company data sent via home internet connections

27 flaws in USB-over-network SDK affect millions of cloud users

85% of People Admit To Reusing Passwords On Multiple Sites

2021: The Year Plagued By Ransomware And Data Breaches

2022 presents a year of increasing cybersecurity challenges (from the good guys and the bad guys!)

A new WIRTE threat group is targeting Middle Eastern scholars

Alleged ransomware affiliate arrested for healthcare attacks

Android users issued scam warning with banking details at risk

Apple Warns of Further Compromises by Israel’s NSO Group

Attackers exploit another zero-day in ManageEngine software (CVE-2021-44515)

Attacks Using Persuasive Phishing uses bogus Office365 spam alerts

Be cybersecurity aware this Christmas

Biden’s cyber leaders go to Silicon Valley for more help fighting hackers

Blackburn with Darwen urge caution over scam Omicron tests

Brothers Confess to Conning Spanish-speaking Americans

Businesses should prepare for ransomware attacks to increase in 2022

Canadian indicted for launching ransomware attacks on orgs in US, Canada

Charitable Giving Sector a Major Cyberattack Target

Chinese cyberattack almost shut off power for THREE MILLION Australians in terrifying demonstration of what the belligerent regime could do in wartime

Credential Phishing, Brute Force Attacks Both Increased in H1 2021

Critical flaw in ManageEngine Desktop Central MSP tool exploited in the wild

Cyber insurance popularity: From being a flop to reaching the top

Defending Against the Use of Deepfakes for Cyber Exploitation

Digital safety this holiday season

Eldon School District canceled classes Tuesday due to ransomware attack

Eltima SDK Contain Multiple Vulnerabilities Affecting Several Cloud Service Provides

Emotet is spreading again thanks to bogus app installers

Emotet might be gone – but malware is here to stay

Emotet now drops Cobalt Strike, fast forwards ransomware attacks

FBI seized $2.3 million in cryptocurrency tied to ransomware group REvil

FortiGuard Labs Predicts Cyberattacks Aimed at Everything From Crypto Wallets to Satellite Internet

Fraudsters ‘prey on omicron fears’ with new NHS Covid test scam

Global ransomware attacks rocketed by 151 per cent this year

Google announces lawsuit, technical action against blockchain botnet Glupteba

Google disrupts massive Glupteba botnet, sues Russian operators

Google Takes Down Glupteba Botnet; Files Lawsuit Against Operators

Grafana fixes zero-day vulnerability after exploits spread over Twitter

Gravatar “Breach” Exposes Data of 100+ Million Users

Hackers increasingly target Canada key infrastructure

Hackers pretending to be Iranian government steal credit card infomation and create botnet

Hackers Use Compromised Google Cloud Accounts for Cryptocurrency Mining

Hackers using Omicron, COVID-19 phishing emails to target universities

Hackers using omicron variant concerns to trick college students out of personal data

How can a company minimise the impact of a data breach?

How to Detect and Stop Social Media Fraud

How To Help The Masses Make Sense Of Cybersecurity

How to protect air-gapped networks from malicious frameworks

How to safeguard your business while working from home in ‘the new normal’

How to stop ransomware? It starts with an enterprise risk management program

Is Killware the Next Evolution of Healthcare Ransomware Attacks?

Israeli government pledges greater oversight of cyber-exports after NSO tools hacked US officials

IT Risk Assessment: Is Your Plan Up to Scratch?

Just 3% of UK Firms Escaped a Supply Chain Breach in 2021

LINE Pay App Leaked the Data of 133,000 Users on GitHub

Maryland Officials: No Data Compromised in Health Department Site Hack

Michigan State ransomware attack showed need for connection between IT teams

Microsoft disrupts activity of Chinese hackers by seizing 42 websites

Microsoft Seizes 42 Malicious Web Domains Used By Chinese Hackers

Microsoft Seizes Chinese-Based Hacker Group’s Websites

More than half of Kiwi businesses fell victim to cyber-attacks this year

Nearly half of security events handled by Kaspersky’s incident response team in 2021 were connected to ransomware

New Cerber ransomware targets Confluence and GitLab servers

No DDoS can touch these cybersecurity predictions for 2022 and beyond

Nordic Choice Hotels hit by Conti ransomware, no ransom demand yet

Omicron Scam Targets Universities

One in eight Americans would fall victim to a phishing attack

Online criminals have created their pseudo court system on the dark web

Pellissippi State Community College responds to ransomware attack

Preparing for cyber insurance 2022 renewals

Pressure points: Ransomware operators run their extortion efforts through a multiplier

Protecting school devices in the age of digital learning

QNAP warns users of bitcoin miner targeting their NAS devices

Ransomware by the Numbers – An Impact Overview

Ransomware Victims Pay $700K in Extra Extortion Fees

Regulator Warns Banks That Ransomware Attacks Are Rising

Riverhead Schools ‘Cyber Incident,’ Spoofed Police Robocall Probed

RTF Template Injection Technique Gains Popularity among APT groups

Russian state hackers said to be still at it

Scammers’ new domains dwindle

Secure transactions top retailers’ wish lists this holiday season

SolarWinds Attackers Spotted Using New Tactics, Malware

SolarWinds Hackers Targeting Government and Business Entities Worldwide

Sophos discovers new Python ransomware called Memento

State of Cybersecurity in Germany in 2021

Stemming the tide: how to protect your business from rising phishing attacks

STOP Ransomware vaccine released to block encryption

Survey Shows Growing Crisis of Trust with Microsoft and Legacy IT Vendors

Tackling the ransomware risk to enterprises in Malaysia

The Competitive Advantage Of Showing Customers Their Data Is Safe

The Conti ransomware also affects Clementoni, in the midst of Christmas shopping

The Dark Web Has Its Own People's Court

The Grinch of the Enterprise: Attackers That Take Advantage of Risky Employee Behaviors

The List No One Wants To Be On: The Biggest Australian Data Breaches of 2021

The Philippines: PLDT, Smart report drop in scammers’ new domains

The threats of modern application architecture are closer than they appear

The top security threats and what you need to do today to prevent them

Threat of Ransomware Lurks in Amazon S3 Buckets

Tips for the 50,000 Victims of Broward School Data Breach

Tips To Stay Cyber Safe This Holiday Season

To Stay Safe, Businesses Turn to Automation, Employee Training

Too many bosses are reluctant to spend money on cybersecurity. Then they get hacked

Top 3 Mistakes Companies Make With Security and Compliance

Trend Micro Prediction Report Forecasts Cyber Fightback in 2022

Twitter Bots Are Monitoring Cryptocurrency Tweets To Steal Crypto Wallets - This Is How They Do It

Twitter bots pose as support staff to steal your cryptocurrency

Twitter Is Removing Verified Badges From Certain Accounts, And A Phishing Attack Is Taking Advantage Of The Situation

UK’s Poor Cyber Risk Planning Could “Wreak Havoc”

US universities targeted by Office 365 phishing attacks

Vestas admits hackers leaked its stolen data

Vulnerabilities Found in GOautodial

Warning: Yet Another Bitcoin Mining Malware Targeting QNAP NAS Devices

What Is a Honeypot and Can It Help Mitigate Cyberattacks?

When Scammers Get Scammed, They Take It to Cybercrime Court

Why image-based phishing emails are difficult to detect

Windows 10 Drive-By RCE Triggered by Default URI Handler

Worker data under threat: Another concern for providers desperate for staff

Why cybersecurity must be first

Why Voluntary Approaches To Federal Cybersecurity Mandates Threaten Compliance

6th December

5 Defenses for 5 Ransomware Root Causes

5 tips to help seniors avoid scams this holiday season

8 Crystal Ball Predictions About Cyberattacks In 2022

14 New XS-Leaks (Cross-Site Leaks) Attacks Affect All Modern Web Browsers

32 Experts Share Advice on Information Security in 2022

2022 and the threat landscape: The top 5 future cybersecurity challenges

A Brave New World: Five Cybersecurity Predictions for 2022

A cyber attack has forced supermarket Spar to close some stores

A new phishing campaign is targetting Office 365 users with spam alerts

Android users warned about scam that can steal money if you answer your phone

Apache Kafka Cloud Clusters Expose Sensitive Data for Large Companies

Are You Guilty of These 8 Network-Security Bad Practices?

At The Crossroads Of Identity: The Relationship Between Remote Work And Ransomware

Australian Securities and Investment Commission (ASIC) says financial market cyber resiliency remained steady but fell short of target

BitMart: Crypto-exchange loses $150m to hackers

BitMart Confirms $150M Crypto Theft

BitMart the latest crypto exchange to suffer cyber attack

Brace yourself for these five top data breach trends in 2022, Experian warns

Brokers Report Cyber Insurers Requiring Security Steps Along With Higher Premiums

CISOs on the front line: What’s ahead for cybersecurity in 2022

Criminal hackers are now going after phone lines, too

Criminals now phishing verified Twitter accounts

Crypto Exchange BitMart Hacked, Loss Estimated at $196 Million

Crypto-Exchange BitMart to Pay Users for $200M Theft

Cuba Ransomware Gang Hauls in $44M in Payouts

Cuba ransomware gang scores almost $44m in ransom payments across 49 orgs, say Feds

Cuba Ransomware Nets Nearly $50m

Cyber attack causes SPAR shops to close for second day

'Cyber attack' closes SPAR stores across Bolton and Greater Manchester

Cyber attack forces Spar stores to close

Cyber-attack Closes UK Convenience Stores

Cyber Command Publicly Joins Fight Against Ransomware Groups

Cybercrime supply chain: Fueling the rise in ransomware

Data Breach Victim Files Lawsuit Against New Mexico Hospital

Defeating Distributed Denial of Service Attacks

Defending DNS Against DDoS Attacks to Protect Reputation, Revenue and Customers

‘Digital empathy’ needed to combat rising cyberthreats

Dutch military, police tech supplier hacked; Confidential info online

Experian Forecast Shows ‘Cyberdemic’ Will Continue Through 2022

Experian releases Data Breach Industry Forecast for 2022

Fake KPSPico Windows activator tool KPSPico steals crypto wallet data

FBI finds ransomware targeting critical infrastructure

FBI Seizes Cryptocurrency Worth $2.3 Million From REvil Ransomware Group Affiliate

Financial systems jeopardized, info stealers on the rise and more cryptocurrency attacks: a look at financial threats in 2022

Firefox confirmed WordPress Gravatar data breach in mails

First Comes Omicron, Then Come Omicron Phishing Scams

France warns of Nobelium cyberspies attacking French orgs

Fraudulent e-commerce transactions spiked between Thanksgiving and Cyber Monday

From satellite internet to digital wallet, cyber-attackers aim for everything

“Get Your Free Omicron PCR test” is the latest Omicron phishing scam

Hackers are minting their own crypto to use in elaborate phishing scams

Hackers are using this new malware which hides between blocks of junk code

Hackers Steal $200 Million Worth of Cryptocurrency Tokens from BitMart Exchange

How proactive are companies when managing data?

Hundreds of SPAR stores shut down, switch to cash after cyberattack

ICO fines Cabinet Office £500k over honours data leak and criticises department’s ‘complacency’

ICO serves £500,000 fine to the Cabinet Office for New Year Honours data breach

IKEA Reply Chain Attack Spotlights Need for Security Boost

In 2021, cybercrime was dominated by hacks, ransomware, and data privacy

Investigation into school district cyber attack continues, as police warn of scam call referencing ‘data breach’ at high school

iPhones of 9 State Department officials hijacked by NSO Pegasus spyware

Kafdrop flaw allows data from Kafka clusters to be exposed Internet-wide

Long-term care staffing company denies allegations of data breach of 170,000 records

Losses from BitMart breach reach $200 million

Making robotics security a top priority

Malicious KMSPico Windows Activator Stealing Users' Cryptocurrency Wallets

Microsoft disrupts Chinese cyber-spying group by seizing 42 websites used by hackers to collect intelligence on foreign ministries, think tanks and human rights organizations in 29 different countries

Microsoft Office 365 Targeted by New Phishing Attack

Microsoft seizes domains used to attack 29 global governments

Microsoft seizes sites used by APT15 Chinese state hackers

More than 300 Spar shops in north of England hit by cyberattack

More than half the ransomware attacks in Canada target critical infrastructure providers

New cybersecurity requirements for surface transportation owners and operators

Nine State Department Phones Hijacked by Spyware

Northern Spar stores close as 'cyber attack' takes out IT system

On the offense: Deterring threats with cyber strategy

Ottawa releases Ransomware Playbook to help Canadian organizations fight attacks

Over a month after the cyberattack on health care in Newfoundland and Labrador began, Furey is still mum on details

Panasonic discloses data breach caused by hacking incident

Pegasus Spyware Infects U.S. State Department iPhones

Police issue urgent warning over supermarket and restaurant voucher scam circulating in the UK

Police warn residents of fake robocall message in reference to data breach

Protecting businesses against online threats

Raising the curtain on the notion of prevention

Ransomware attacks soar, hackers set to become more aggressive – Canada spy agency

Ransomware could soon be about more than just money

Ransomware hackers release 39,000 internal government files

Ransomware reality check: The threat is real – and costly

Riverhead School District informs employees that staff data was compromised in cyber incident

Romance Fraudster Targeted 670 Women Online

Russian hacking group uses new stealthy Ceeloader malware

Scammers send phishing emails based on the Omicron variant of COVID-19

Security experts question new DHS/TSA cybersecurity rules for rail companies

SMBs are Unprepared to Deal with Worsening Cyberthreats Landscape

Spam Email Test from Palm Coast IT Department Causes a Stir for Using Vaccine Status as Bait

SPAR: Supermarket chain forced to close stores due to cyber attack

SPAR closures across Greater Manchester due to 'widespread IT failure'

SPAR closures across Lancashire due to 'total and widespread IT outage'

Spar cyber attack hits more than 300 convenience stores

Spar shops across northern UK shut after cyber attack hits payment processing abilities

SPAR shops shut across UK as cyber attack hits Preston supplier

Spar stores closed after cyber attack

SPAR stores reopen as cash only after suspected cyber attack causes "total IT outage" across Northern England

Taiwan’s national power company hit by cyberattacks on daily basis

Taking Action to Combat Ransomware

Tech infrastructure diversity holds key to better security

The Channel’s Role in Preventing Ransomware Attacks

The Cyberdemic Will Continue, According to the 2022 Experian Data Breach Industry Forecast

The dark equation of harm versus good means blockchain’s had its day

The high cost of phishing

The Microsoft paradox: Contributing to cyber threats and monetizing the cure

These are the Different Types of Trojan Malware You Should Know About

U.S. bank regulator urges vigilance as ransomware attacks on the rise

Update On Evolving Cybercrime Tactics

Urgent warning for millions of Android users as Brazilian malware lands in Europe

US and Israel partner on fintech and cybersecurity innovations

US military officially confirms action against ransomware groups

US military's hacking unit publicly acknowledges taking offensive action to disrupt ransomware operations

Vestas data leaked following ransomware attack

Vestas Says Ransomware Attack Failed in Extortion but Leaked Data

Why America Needs Data-Centric Zero-Trust

Why Cloud Native Systems Demand a Zero Trust Approach

Why Data Privacy Legislation Won't Save Your Customers From Online Risk

Why Signature-Based Detection Struggles to Keep Up With the New Attack Landscape

Why the C-Suite Doesn't Need Access to All Corporate Data