Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 4 July 2022

Data Breaches Digest - Week 27 2022

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 4th July and 10th July 2022.

10th July

3 Access Security Lessons Learned from the Marriott Data Breach

College probe after personal details of hundreds emailed out by mistake

Data leak of a billion Chinese nationals questions Xi’s ‘so-called’ claims of data security

Graff Diamonds Corp Sues Law For Failing To Pay $7.5 Million Bitcoin Ransomware

Hackers target LinkedIn

Hackers Used Fake Job Offer to Hack and Steal $540 Million from Axie Infinity

Hackers Used Fake LinkedIn Job Offer to Hack Off $625M from Axie Infinity

HHS agrees to improve feedback process for healthcare data breach reporting

How North Korea used crypto to hack its way through the pandemic

India: Beware of phishing attacks in name of unpaid electricity bills

Maastricht University wound up earning money from its ransom payment

New Research Proves Most Government Websites Are Filled With Third-Party Tracking Cookies

New York State Department of Motor Vehicles (DMV) warns of new phishing scam

Nichirin-Flex USA Ransomware Attack

North Korea Attacks Health Sector With Maui Ransomware

Prevention is the top action to safeguard against cyberattacks

PyPI Repository Makes 2FA Security Mandatory for Critical Python Projects

Ransomware Experts Believe More Businesses Are Paying to Get their Data Back

Rogers warns of phishing scams offering credits after service outage

Russia, China, North Korea and Iran lead in supporting aggressive cyber attackers

UAE Cybersecurity Council issues warning on electronic fraud, phishing attacks

Urgent Amazon warning issued to all customers ahead of Prime Day sale this week

Using DevSecOps for Efficient IT Security

Watch out for these devious scams on Amazon Prime Day 2022

What Is the Lazarus Group? Is It Really Comprised of North Korean Hackers?

Your Keys to Better Healthcare Information Security

9th July

5 Internet Banking Tips You Need To Know To Keep Your Info Safe

A Quick Guide to GDPR (General Data Protection Requirements)

Connecticut Ranks 19th For Data Breaches Costing Billions Of Dollars

Cyber Threats Emerge as the Biggest Risk – Experts Sound the Alarm

Data loss prevention tips for SME

Data Of 1 Billion Chinese Citizens Hacked: World’s Biggest Data Leak?

Gallagher offers tips on handling ransomware attacks

Hackers Exploiting Follina Bug to Deploy Rozena Backdoor

How Can A Company Handle A Ransomware Attack

How Safe Is Two Factor Authentication Exactly?

Lloyds Bank warning after ‘phishing’ scam urges customers to click on fake link

Mangatoon data breach exposes data from 23 million accounts

New bank scam trend to look out for in South Africa

Phishing attacks doubles on Web3.0 social media

Pro-hacker's urgent warning that criminals stalk social media to target YOUR accounts

PyPI mandates 2FA for critical projects, developer pushes back

QR codes are just as insecure as anything else

Security Concerns with Cloud Storage

SHI Calls In Forensic Expert, Law Enforcement After Cyberattack

Silver Linings: Crypto Scams Have Receded Alongside Bitcoin’s Price

UK Jeweler Sues Insurer Over Failure to Cover $7.5M Bitcoin Ransomware Losses

Vishing: How to stay safe from the new banking scam in South Africa

What are the major concerns of Voice over Internet Protocol (VoIP) and how cyber security is dealing with it?

Yuma Regional Medical Center hit by cyberattack

8th July

54% of SMBs do not implement Multi-Factor Authentication (MFA)

All You Need To Know About Crimes In Metaverse World

AMD Investigating Hacking Incident – Source Claims Laughably Poor Security!

Aon Hack Exposed Sensitive Information of 146,000 Customers

An Often Overlooked Cybersecurity Threat: Employees, Current And Former

Apple Debuts Lockdown Mode to Prevent State-Sponsored Spying

Apple's Lockdown Mode for iOS 16, iPadOS 16 and macOS Ventura 13 will protect users from targeted spyware attacks

Apply the law where breached servers are located?

Australia: Inside Sydney man’s alleged $170k cyber scam

Biggest threat to cyber security is the public sector

Board Members Can No Longer Ignore Cybersecurity

Building continuous data protection against ransomware attacks

Businesses urged not to give in to ransomware cyber criminals as authorities see increase in payouts

Callback Malware Campaigns Impersonate CrowdStrike and Other Cybersecurity Companies

Checkmate ransomware hits QNAP NAS devices

Chefs’ Toys Reports Data Breach Following Reports of Unauthorized Credit Card Activity

Chinese Cyber Espionage Groups Increasingly Targeting Russia

CHRISTUS Spohn Health System Corporation Files Notice of Data Breach in the Wake of Apparent Ransomware Attack

Code Red For British businesses

Costa Rica in crisis: Russian ransomware raises its head

Customer.io Email Data Breach Larger Than Just OpenSea

Cyber as enabler rather than just a cost

Cyber security and data watchdogs ask lawyers to help stop ransomware payments

Cyber-attack on India: Over 2,000 Indian websites hacked says Ahmedabad Police

Cyberattacks are rocking the university sector

Dangers Of Opening Email Attachments

Data Breach May Impact Hingham Residents

Decisioning at the Edge: Changing the Way Cybersecurity and Fraud Prevention Works

Deploying Zero-Trust Networks in the COVID-19 Era: A Guide for Service Providers

Disneyland hack reveals dangers of social media account takeover

Disneyland's Instagram and Facebook Accounts Hacked to Show Racist Content

Do you need a personal cyber insurance policy?

Emsisoft Releases Free Decryptor For AstraLocker and Yashma Ransomware

Emsisoft releases free decryptors for AstraLocker and Yashma ransomware

EU inches closer to blocking Meta from sending personal data to US

Experts Uncover 350 Browser Extension Variants Used in ABCsoup Adware Campaign

Exposing the criminal underground of the dark web

FBI, CISA release new North Korea cyberattack warning

Fears of Cyberwarfare Driving IT Professionals to Improve Security Culture

Feds wave red flag over Maui ransomware

Five big trends in how Australians are getting scammed

Focus On DDoS Protection Of Critical Infrastructure As CISA Requires Deeper Cyberattack Visibility

Free decryptor released for AstraLocker, Yashma ransomware victims

French telecom company La Poste Mobile struggling to recover from ransomware attack

Going Once, Going Twice, Sold: Real Time Bidding Data Privacy Breach

Government portals under threat! Here's how hackers are phishing users

Hackers have access to bank details, signatures, addresses and national insurance numbers, Gloucester councillor reveals

Hackers target Goa Water Resource Department's flood monitoring system

Health Aid of Ohio data breach class action settlement

Health care data breaches attributed to North Korea, organizations could be liable if ransoms paid

How emerging tech can protect your customers’ data privacy

How Ransomware Could Attack Microsoft 365

Illinois Ranks 5th For Data Breaches Costing Billions Of Dollars

Improving cyber resiliency in manufacturing

In Switch, Trickbot Group Now Attacking Ukrainian Targets

India: Hackers target WRD’s flood monitoring system

Insider Risk Intelligence - A Value Multiplier for the Cyber Ecosystem

Is Metaverse a ticking technology bomb?

IT Services Giant SHI International Hit by Cyberattack

Joint Advisory Warns of MedusaLocker Ransomware

July 4th Costco Survey, Walmart Gift Card, Netflix, and Gmail: Top Phishing Scams of the Week

Kaseya, one year later: What have we learned?

Lawyers Urged to Stop Advising Clients to Pay Ransomware Demands

LinkedIn highlights the risks of social media for business

Managers of industrial control systems need to start thinking about zero-trust

Marriott hotel suffers another data breach, around 20GB data stolen

Mattituck School District targeted in ransomware attack Wednesday, superintendent says

Medical debt collection firm says ransomware attack exposed info on 650+ healthcare orgs

Microsoft Quietly Rolls Back Plan to Block Office VBA Macros by Default

Microsoft Rolls Back Strategy to Block Office Macros By Default

Monument Health informed of data security issue

Napa Valley College Suffers Ransomware Attack

New 'HavanaCrypt' Ransomware Distributed as Fake Google Software Update

New 0mega ransomware targets businesses in double-extortion attacks

North Carolina is rich in targets for cyber attack. Avoid being the next victim

One year on from the Colonial hack, cybersecurity is never far from mind

Ransomware attacks are rising, but paying up won't keep your data safe says NCSC

Ransomware attacks continue

Researchers Detail Techniques LockBit Ransomware Using to Infect its Targets

Researchers Discover Dangerous Malware That Can’t Be Detected By 50+ Antivirus Products

Researchers Warn of Raspberry Robin's Worm Targeting Windows Users

Russians Hack Ukraine’s Largest Private Energy Firm

Security warning after sale of stolen Chinese data

SMBs are behind in adopting multi-factor authentication

Sneaky Orbit Malware Backdoors Linux Devices

Social media ‘major Web3 pain point’ as phishing attacks almost doubles

Spear Phishing Fake Job Offer Likely Behind Axie Infinity's Lazarus $600m Hack

States Prohibit Ransomware Payments

Stop telling clients to pay ransomware gangs, solicitors told

Survey Reveals Lack of Confidence in Ability to Recover Data

Thailand leads in e-shop phishing

The cyber strategies CISOs depend on

The Importance Of Cyber Insurance And How To Choose A Plan

The Limits of AI and ML in Cybersecurity Solutions

The Russian Cyber Threat & How to Mitigate the Risks

This 'evasive' new Linux malware creates a backdoor to steal passwords and more

'This is a terrible idea': Security experts bemoan Microsoft’s backtrack on blocking VBA macros

This New Checkmate Ransomware Targets NAS Devices

Town of Hingham Shares Information on potential COMSTAR Data Breach

Twitter is removing over a million spam accounts every day

U.S. Healthcare Orgs Targeted with Maui Ransomware

Washington Medical Firm Sued for Alleged Breach Exposing 1.1 Million Patients' Health Data

WellDyneRx, LLC Files Notice of Data Breach With Federal Government Confirming More Than 38,000 People Were Impacted

What Is Vendor Email Compromise and How Can You Protect Against It?

Woolworths denies data breach after outraged shoppers claim Everyday Rewards hacked

7th July

5 Types of Card Frauds You Need to be Aware Of

300k residents’ data from Makatizen portal left exposed; LGU assures no data breach

ALPHV’s ransomware makes it easy to search data from targets who do not pay

Amazon Prime Day 2022: How to avoid scams when shopping for deals

AMD Currently Investigating New Alleged Data Theft

Aon faces lawsuits over cyberattack

Apple Announces 'Lockdown Mode' to Protect Journalists, Human Rights Workers From Spyware

Apple's New "Lockdown Mode" Protects iPhone, iPad, and Mac Against Spyware

As Cybercriminals Recycle Ransomware, They're Getting Faster

AstraLocker ransomware infects email attachments – here’s how

BlackCat Targets Microsoft Exchange Signaling a Disturbing New Trend

Carolina Behavioral Health Alliance, LLC Confirms Data Breach Following Ransomware Attack

Challenges in smart factory and manufacturing cybersecurity

Charities more at risk to ransomware than other organisations, warns IT provider

China suffers massive cybersecurity breach affecting over 1 billion people

China’s trouble with the largest data leak in its history

Chinese hackers targeting Russian government, telecoms

CISA, FBI, Treasury Issue Advisory on North Korea’s Use of Maui Ransomware

Cisco Releases 10 Security Patches For Expressway Series and TelePresence VCS Products

Construction one of most at risk for cyber attacks, says report

Cyberattacks against law enforcement are on the rise

Cybersecurity Challenges of the Future Seen Today

DeFi needs more Cybersecurity and regulations

Digital Ransomware Attacks Rise Amid Diminishing Security

East West Family of Companies Announces Data Breach Involving Sensitive Employee Information

Empower Your Security Operations Team to Combat Emerging Threats

Failed Cloud Security Strategy Haunts Hotel Chain

Fake copyright complaints push IcedID malware using Yandex Forms

FBI: These hackers are targeting healthcare records and IT systems with 'Maui' ransomware

FBI and MI5 Bosses Warn of “Massive” China Threat

Hack Allows Drone Takeover Via ‘ExpressLRS’ Protocol

Hackers using Browser-in-the-Browser phishing attacks on government websites

Healthcare organizations targeted with Maui ransomware

How to measure cyber risk: The basics of cyber risk quantification

How to Prevent Phishing: Everything You Need to Know

How web hosting affects security

How Your Business is Impacted by Identity Theft

HTML attachments found to be the most malicious type of file

Identity-Related Breaches On the Rise

Imagination is key to effective data loss prevention

Insurers revisit cyber coverage as demand, premiums spike

ITSP SHI thwarts ‘professional malware attack’ on systems

Largest NFT Marketplace OpenSea Suffers a Third-Party Data Breach

Latest Marriott data breach not as serious as others

Lending Tree Data Breach, Sensitive Information Potentially Disclosed in Hack

Luxury jewellery brand pays $7.5 million ransom in bitcoin to Russian hackers

Marriott confirms another data breach at one of its hotels

Marriott Plays Down 20GB Data Breach

Marriott suffers data breach due to social engineering attack

Maui ransomware actively targeting US healthcare organizations

MI5 and FBI warn businesses over mass Chinese IP theft

Microsoft rolls back decision to block Office macros by default

Mid-sized businesses need to prioritise cybersecurity preparedness

Netherlands-based Maastricht University recovers ransom paid to hackers in 2019

New stealthy OrBit malware steals data from Linux devices

North Korean hackers use ransomware to attack healthcare providers

North Korean Maui Ransomware Actively Targeting U.S. Healthcare Organizations

North Korean ransomware attacks target US healthcare companies

One of Australia's largest prisons is hit with a sophisticated cyber attack - as the mysterious group take control of computer systems

Online programming IDEs can be used to launch remote cyberattacks

Over 70% of Small Businesses Fail to Prioritize Cybersecurity

Over 1200 NPM Packages Found Involved in "CuteBoi" Cryptomining Campaign

Overcoming Risk-Based Vulnerability Management (RBVM) Challenges

Phishing attack: HTML files can be malicious too

Proliant Settlement Systems, LLC Announces Data Breach

Providence Residents Who Used City Rescue Told Their Data Possibly Breached in Cyberattack

Public sector still facing ransomware attacks amid decline

QNAP warns of new Checkmate ransomware targeting NAS devices

QR code phishing scams target users and enterprise organizations

Quantum ransomware attack affects 657 healthcare orgs

Ransomware and the places that worry about it most

Ransomware attack hits Goa’s flood monitoring system; demand crypto as payment

Ransomware Takeaways From Q2 2022

Ransomware, phishing and identity theft: Five scam trends Aussies are falling victim to

Ransomware's prime target: Schools and universities

Salt Security Details API Vulnerability in Crypto Platform

Schools in the cloud: A year in review

Stop paying ransoms to cyber-hacking gangs, businesses urged

Study Shows Traditional Protection Tools Have 60% Failure Rate Against Ransomware

The Age of Collaborative Security: What Tens of Thousands of Machines Witness

The increasing impact of ransomware on operational technology

Threat actors exchange beacons for badgers to evade endpoint security

Top Three Security Best Practices

TrickBot Gang Shifted its Focus on "Systematically" Targeting Ukraine

Ukraine Authorities Arrested Cybercriminal Gang That Has Stolen Over 100 Million

Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine

US government warns health and pharma companies after series of ransomware attacks

What are web-based attacks, and which industries are most vulnerable?

What Makes External Attack Surface Management Essential?

What the Marriott International breach teaches us about social engineering

Why are ransomware gangs pivoting to Rust?

Why ransomware attacks are so successful and what your business can do to prevent them

Why the Trickbot ransomware gang pivoted to targeting Ukraine

6th July

4 Ways to Engage Employees in Your Cybersecurity Defense

5 Attack Elements Organizations Should Monitor: Anatomy of an External Attack Surface

10 Ways to Defend Against Ransomware Attacks

13 Ways Businesses Can Reduce Their Risk Of Successful Phishing Attacks

$540 Million Crypto Gaming Hack Made Possible By Elaborate Phishing Scheme

A Dutch university recovered Bitcoin it paid in a ransomware attack - and now it’s worth $510,000, twice its value at the time

A new kind of banking-related fraud is becoming prevalent: Here’s how to keep your money safe

AMD Latest Victim of RansomHouse Gang

Apple’s new Lockdown Mode defends against government spyware

APT Hacker Group Bitter Continues to Attack Military Targets in Bangladesh

AstraLocker ransomware reportedly closes doors to pursue cryptojacking

Barricading the modern business against rising ransomware

Benefit Plan Administrators, Inc. Announces Data Breach

Beware of mobile ransomware

Bitter APT Hackers Continue to Target Bangladesh Military Entities

Bulk Email Theft May Point to Russian Espionage

California college with 12,500 students knocked offline in cyberattack

California Department of Justice Confirms Data Breach Leaking the Information of More than 200,000 CCW Permit Holders and Applicants

California Government Data Leak Exposes Personal Information of Gun Owners

California’s massive data breach undermines gun rights

Cedar Rapids Summer School Disrupted by Cybersecurity Breach

Cisco and Fortinet Release Security Patches for Multiple Products

Cloud Misconfig Exposes 3TB of Sensitive Airport Data in Amazon S3 Bucket: 'Lives at Stake'

Cyberattack disrupts unemployment benefits in some states

Cyberattack on Luxury Resort Should Put Hospitality Industry on High Alert

Cyberattacks interrupt unemployment benefits in multiple states

Cybersecurity teams and employees disagree on shadow IT use

Defense Vs. Control: The Optimal Approach to Cloud Security

Department of Justice announces data breach

Encryption is high up on corporate priority lists

Endless cyber-threat pressure could leave security staff burnt out. Here's what you need to change

Expanding RaaS eco-system is exploiting OT security gaps like never before

FBI, CISA, & FinCEN Sound Alarm About MedusaLocker Ransomware

Federal agencies warn of North Korean threat actors targeting US health sector

Feds Warn Healthcare Sector of 'Maui' Ransomware Threats

Google Patches Chrome Zero Day Under Attack

Google patches zero-day vulnerability for millions of users

Graff Jewelers Paid Russian Hackers $7.5 Million to Stop a Leak of Private Client Info, Lawsuit Says

Hacker steals 1 billion people’s records in unprecedented data breach

Hackers Abusing BRc4 Red Team Penetration Tool in Attacks to Evade Detection

Hactivists on the Rise – Brace Yourselves for Their Next Targets

Healthcare Cyber Insurance? Fortify Your Defenses

Here today, gone to Maui: That's your data captured by North Korean ransomware

Hive ransomware gang rapidly evolves with complex encryption, Rust code

Hive Ransomware Upgraded to Rust to Deliver More Sophisticated Encryption

Hive Ransomware Upgrades to Rust for More Sophisticated Encryption Method

Hotel giant Marriott confirms yet another data breach

How cyber criminals are targeting Amazon Prime Day shoppers

How this new WhatsApp scam is targeting people who want to work in the UK

How to Secure PowerShell and Use it for Cybersecurity Defense

Human Error Blamed for Leak of 1 Billion Records of Chinese Citizens

‘IconBurst’ supply chain attack uses typo-squatting to spread malicious Javascript packages via NPM

Is an Infrastructure War on the Horizon?

IT leaders admit having blind spots in attack surface visibility

IT services giant SHI hit by "professional malware attack"

Lessons we can learn from the DTEK Group cyber-attack

Lockbit 3.0 Ransomware Group Target Multiple Sectors and Organizations Worldwide

Marriott confirms data breach and a failed extortion attempt

Marriott Confirms Data Breach, Says Core Network Unaffected

Marriott suffers at least its seventh data breach since 2010

Massachusetts Fire Department warns of data breach that may include EMS patients

National Cyber Security Centre (NCSC): Prepare for Protected Period of Heightened Cyber-Risk

New Techniques To Identify Ransomware Operators’ Dark Web Domains

New York Ranks 4th For Data Breaches Costing Billions Of Dollars

Next Level Security in 2022: Passwordless Authentication

NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

NIST selects 4 quantum-resistant encryption algorithms

NIST selects four encryption algorithms to thwart future quantum computer attacks

No backup: Why cyberattacks are a big risk for the government in Brazil

NordVPN sees 330 brits hacked every minute

North Korea is targeting hospitals with ransomware, U.S. agencies warn

North Korean hackers target healthcare sector with Maui ransomware, FBI warns

North Korean Hackers Target US Health Providers With 'Maui' Ransomware

North Korean State-Sponsored Cyber Actors Use Maui Ransomware to Target the Healthcare and Public Health Sector

OpenSSL Releases Patch for High-Severity Bug that Could Lead to RCE Attacks

Poor ‘password hygiene’ can cost construction companies a small fortune

Prevent Identity Theft With These 11 Essential Steps

Professional Finance Company, Inc. Releases List of 657 Healthcare Providers (and Their Patients) Affected By Recent Data Breach

QuickBooks accounting software targeted for sophisticated phishing attacks

Ransomware Actors with ‘Very Low-Level’ Skills Committing More Attacks, DHS Official Says

Ransomware gangs are feeling the crypto winter's impact

Ransomware gangs, APT groups ditch Cobalt Strike for Brute Ratel

Remote Work and IoT Devices Create At-Home Vulnerabilities

Researchers Warn of New OrBit Linux Malware That Hijacks Execution Flow

Russia Hackers Abusing BRc4 Red Team Penetration Tool in Recent Attacks

Russian hacking gang extorts luxury jeweler for $7.5 million Bitcoin ransom - and its insurer is refusing to cover the loss

Security advisory accidentally exposes vulnerable systems

Several State Unemployment Portals Back Online After Cyberattack

SHI Hit By ‘Coordinated And Professional Malware Attack’

Small UK Firms Not Protecting Themselves Against Russian Cyber-attacks

Software Supply Chain Attack Hits Thousands of Apps

South Africa records massive jump in impersonation attacks

Southwest Health Center hit by data breach

The connected nature of smart factories is exponentially increasing the risk of cyber attacks

This ransomware just switched programming languages from Go to Rust. Here's why

To stop quantum hackers, the US just chose these four quantum-resistant encryption algorithms

Unsecured and unencrypted South Korean loyalty platform exposes data of more than 1 million customers

US government says North Korean hackers are targeting American healthcare organizations with ransomware

US government warns of Maui ransomware attacks against healthcare orgs

Vendor Ransomware Attack Impacts 660 Healthcare Organizations

Vulnerability discovered in ‘Proud Makatizen’ COVID-19 portal in March 2022

Want Strong Physical Security? Don’t Forget About Cybersecurity

What Are the Security Benefits of Using a Digital Signature?

What Is the YTStealer Malware and What Does It Do?

Why networking and security teams need to collaborate to mitigate ransomware risks

Why passwords are on the way out, and why we need them anyways

Why your API gateway is not enough for API security?

Wisconsin Ranks No. 24 For Data Breaches Costing Millions Of Dollars

YouTube Comments now New Tool for Scammers?

5th July

5 Email Themes That Most Employees Fall for a Phishing Scam

5 steps to ward off zero-day exploits

64% of firms in Asia have been impacted by cyberattacks

80% of Ransom Payers Get Attacked Again Within 30 Days According to This Report

2022: A Checklist for the Year of Heightened Cyber Risk

A Massive Police Database of Allegedly 1 Billion Chinese Citizens Is Being Sold Online

Advanced Phishing Scams Target Middle East and Impersonate UAE Ministry of Human Resources

AMD Investigating Data Breach by RansomHouse Cyber Extortion Group

API security grows more critical, even as organizations lack means to address the risk

As New Clues Emerges, Experts Wonder: Is REvil Back?

AstraLocker ransomware developer has change of heart, shuts down

AstraLocker Ransomware Shuts Down Operations, Plans to Go for Cryptojacking Instead

Attackers are using deepfakes to snag remote IT jobs

Attackers Work Hard to Engineer Trust; SharePoint, OneDrive Accounts at Risk

British Army Hack: UK Defense social media accounts breached

British Military’s Twitter and YouTube Accounts Hacked to Scam Crypto Users

China data breach likely to fuel identity fraud, smishing attacks

Chinese Internet users are spooked by alleged government data breach

CISA: Here's how to apply this key Windows patch without breaking certificate authentication

CISA, FBI Warn of MedusaLocker Ransomware

Claire’s data breach $350K class action settlement

Cloud and Data Security for Financial Services

College of the Desert victimized once again by ransomware; most online services currently down

Compliance in the era of big data

Corporatization of Ransomware Industry Continues as LockBit “Ransomware-as-a-Service” Gang Offers Bug Bounty Program

Cyber incident reporting law takes effect in Virginia

Cyber Protection and Insurance: What You Need to Know

Cyberproofing small and medium businesses - a small step with a big impact

Cybersecurity is driving digital transformation in alternative investment institutions

Data Breach at PFC USA Impacts Patients of 650 Healthcare Providers

Data Breaches Reported by University Pediatric Dentistry, OrthoNebraska, Michigan Avenue Immediate Care

Deciphering cybersecurity ETFs in Europe

Delete this email! UK Hotmail and Gmail users warned about dangerous new scam

Department of Defense (DoD) launches “Hack U.S." bug bounty opportunity

DMV Scams

Dutch University retrieves Bitcoin ransomware payment and makes a profit

Employees: Your internal fraud-stoppers

Exposed Shanghai Police Database Covering One Billion Chinese Citizens Priced At 10 Bitcoins

Google Patches Actively Exploited Chrome Bug

Google patches high-risk Chrome zero-day vulnerability

Google races out patch for high-severity Chrome browser zero-day on Windows and Android

Google TAG exposes hack-for-hire groups targeting activists and sensitive data

Google to wipe user location history for visits to healthcare clinics, domestic violence shelters

Hacker Claims to Have Personal Data of 1 Billion Chinese Citizens

How and Why You Should Work with an MSSP

How Can We Protect Teachers From Cyberattacks?

How to protect your pensions and investments from scammers including ‘skimming’ fraud

How to spot your biggest security threat? Just look out for the humans

INTERPOL confirms arrest of suspected Nigerian cybercriminal in South Africa

Is hacking humans easier than machines?

Is My Cryptocurrency Safe From Hackers?

Is There a Weak Link in Your Supply Chain?

Justice Department identifies disrupting ransomware and cyberattacks as key objective in new strategic plan

Keeping cyber insurance premiums down

Latest Cyberattack Against Iran Part of Ongoing Campaign

LockBit explained: How it has become the most popular ransomware

Louisiana unemployment website back online after attempted malware attack

Luxembourg hit with fewer cyber attacks

Manufacturing Cyberattacks: Don't Ignore Until It Swims Up and Bites You

Microsoft quietly fixes ShadowCoerce Windows NTLM Relay bug

Microsoft Reports Hundreds of Windows Networks Infected by Malware Worm

Microsoft Warns of Evolving Toll Fraud Android Malware Draining Wallets

Millions of hacking attempts daily as cybersecurity industry bleeds workers

Multi-Step Attack Vectors: When Vulnerabilities Form an Attack Chain

Nearly one billion people in China had their personal data leaked, and it's been online for more than a year

New RedAlert Ransomware targets Windows, Linux VMware ESXi servers

NIST Acknowledges First Four Quantum-Resistant Encryption Tools

No evidence half of UK was victim of online crime in past year

NPM supply-chain attack impacts hundreds of websites and apps

OCBC phishing scam: Man gets reformative training for money laundering, first to be dealt with by court

OrthoNebraska hit by email breach

Over 265 cyber attacks per week on Vietnamese systems

Over a third of businesses fear security risks from incompatible applications

Over half of small companies aren’t taking any precautions against a possible Russian cyber attack

PCI DSS 4.0 released, addresses emerging threats and technologies

People are the primary attack vector around the world

PennyWise malware on YouTube targets cryptocurrency wallets and browsers

Political Fallout Over California’s Concealed Carry Data Leak

Protection Against Online Scams: How to Keep Your Credit Safe

Ransomware: Why it's still a big threat, and where the gangs are going next

Ransomware attack on finance company affects 600 hospitals, practices

Ransomware attacks against healthcare organizations nearly doubled in 2021, report says

Ransomware gangs are turning to cryptojacking for a quieter life

Ransomware in 2022: Evolving threats, slow progress

Researchers at Avast warn of an active teenage hacking group on Discord

Researchers Share Techniques to Uncover Anonymized Ransomware Sites on Dark Web

Researchers Uncover Malicious NPM Packages Stealing Data from Apps and Web Forms

Reverse Kill Chain Automation - Next Level of Incident Response Service

Secure your infrastructure against VM ransomware

Securing your business information is more important than ever

Settlement reached in StockX data breach class action

Small businesses are fighting back against cyber criminals

South Africa has extradition documents from US for alleged cybercrime kingpin, court hears

Spring Data MongoDB hit by another critical SpEL injection flaw

SQL injection, XSS vulnerabilities continue to plague organizations

Tech Dealer Falls Prey to Sophisticated Cybersecurity Scam

The Evolving Role Of CISOs

The True Cost of a Security Breach

These are the cybersecurity threats of tomorrow that you should be thinking about today

These are the biggest cybersecurity threats. Make sure you aren't ignoring them

Think twice before deploying Windows’ Controlled Folder Access

This WhatsApp scam promises you a visa, but just sends you into a spiral

Three dirty data cybersecurity concerns for business enterprises

UK Councils and Hospitals Vulnerable to Cyber Hackers

Ukraine Cyber Police Thwart $3M Phishing Campaign

Ukrainian police takes down phishing gang behind payments scam

University recovers 2019 ransom to find value of cryptocurrency skyrocketed

Vendor's Ransomware Attack Hits Over 600 Healthcare Clients

Wegmans Paying $400,000 in Penalties After Data Breach

WeWork India fixes bug that exposed visitors' personal info, selfies

WeWork India Pulls Check-In App Following Data Breach

What Does Dark Web Monitoring Mean?

What is Malware?

What Log4Shell taught us about application security, and how to respond now

Why Browser Vulnerabilities Are a Serious Threat — and How to Minimize Your Risk

Why Your Organization Needs Data Integrity Drills

4th July

1 in 5 HTML Email Attachments Found to be Malicious, Barracuda Research

69% of employees need to deal with more security measures in a hybrid work environment

657 Healthcare Providers Affected by Ransomware Attack on Professional Finance Company

A look at how organisations can implement a successful cybersecurity strategy

Amazon fixes a critical vulnerability on its Amazon Photos Android app

Army's YouTube and Twitter accounts hacked

AstraLocker ransomware shuts down and releases decryptors

Attorney General James Secures $400,000 From Wegmans After Data Breach Exposed Consumers’ Personal Information

Australia’s Monash University launches public bug bounty program

Australian businesses lose $227 million to BEC-like scams

Beware Android Users! A New Malware Automatically Signs up Users For Premium Subscriptions

Binance Says Some Users Potentially Hit By China’s Biggest Data Breach

Binance’s threat research finds more than 1 billion resident records for sale on the dark web

British Army Social Media Accounts Hijacked

Businesses unprepared to defend against ransomware attacks

Canadian cybercriminal pleads guilty to “NetWalker” attacks in US

Combining Pre-Submit and Post-Submit Data to Stop Digital Fraud

Crypto Crash Rattles Cybercriminals, Pushing Them Past Ransomware

Crypto scammers hacked British Army’s social media accounts

Cyber attack disrupts unemployment benefits

Cyber security remains “chief risk” for IT audit teams

Cyber threat increasing faster than Dutch companies' resilience

Data Breach Reveals China’s Monitoring Policy

Data Breaches Continue to Rise. Are Business Owners taking them Seriously?

Data Protection Should Be Top Priority For Financial Services Organisations In Kenya

Department of Justice (DOJ) breach puts CCW permit holders information at risk

Different cost of living scams to look out for – and how to be extra careful

Discord Disaster: 107 NFT Collections Hacked in the Past Month

Don’t Fall For This Fake QR Discord Scam

Django fixes SQL Injection vulnerability in new releases

Dutch university gets cyber ransom money back with interest

Eight people lose £58,000 in a week across Mid and West Wales to criminals due to courier fraud

Fighting Back: Emergent Technologies To Secure Crypto Firms Against Cyberattacks

Five Eyes Cyber Security Predictions

Flagstar Bank Reports Massive Data Breach 6 Months After the Fact

Giant data breach? Leaked personal data of one billion people has been spotted for sale on the dark web

Google: Half of zero-day exploits linked to poor software fixes

Google Adds Dozens Of Hack-For-Hire Groups To Its Blacklist

Google patches new Chrome zero-day flaw exploited in attacks

Hacker claims biggest Chinese data breach with 1 billion resident records stolen

Hacker claims to have stolen data on 1 billion Chinese citizens

Hacker Selling Shanghai Police Database with Billions of Chinese Citizens Data

HackerOne employee accessed bug reports to claim extra bounties

HackerOne Fires Employee for Stealing Bug Reports, Collecting Bug Bounties

HackerOne Insider Defrauded Customers

HackerOne says worker stole vulnerabilities for profit – fired employee blasts ‘baseless claims’

How To Plug Data Leaks

Information Commissioner’s Office (ICO) Set to Scale Back Public Sector Fines

Interpol confirms arrest of suspected Nigerian cybercriminal in South Africa

Is Discord Safe? How to Avoid Hackers, Spam & Scams in 2022

Is the UK government prepared for its greatest threat?

Latest LockBit ransomware strain 'strikingly similar' to BlackMatter

Liverpool Council refers itself to Information Commissioner after letter blunder

Lloyd's report highlights growing risk of 'physical' cyber attacks

Major Cyber Attack on Tehran’s Islamic Culture & Relations Organization

NATO to Develop Rapid Cyber Response Capabilities

NFT Marketplace OpenSea Suffers Email Data Breach

Nigeria: Fixing Cybersecurity Loopholes In Other Financial Institutions

North Korea’s stolen funds take hit amid struggling market

Protect yourself and your loved ones from medical scams

Ransomware Attacks Defy Deterrent Efforts, Titaniam Finds

Running a business in the World of Cybercrimes – Here Is what you MUST know

Singapore: Scammers trying their luck with new phishing scam involving ‘traffic offence’

Smart cities and the importance of security

Some Worms Use Their Powers for Good

Teen “Hackers” on Discord Selling Malware for Quick Cash

The Best & Worst States in America for Online Privacy

The British Army is investigating after its Twitter and YouTube accounts were hijacked

The Most Common HMRC Scams

The Worst Hacks and Breaches of 2022 So Far

Too many Canadian firms have ’emerging’ cybersecurity maturity, survey suggests

Top Netflix Scams 2022 — Phishing Texts & Emails

UK Army’s Twitter, YouTube accounts hacked to push crypto scam

UK councils and hospitals at risk of cyber hackers

Ukrainian Authorities Arrested Phishing Gang That Stole 100 Million UAH

Universities are fighting a cyber security war on multiple fronts

Update Google Chrome Browser to Patch New Zero-Day Exploit Detected in the Wild

US eye clinic suffers data breach impacting 92,000 patients

WeWork India exposed visitors’ personal information and selfies

What is web scraping, and how are businesses using it to gain an edge?

What the Hiscox Cyber Readiness Report means for your firm