Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday 7 November 2022

Data Breaches Digest - Week 45 2022

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 7th November and 13th November 2022.


13th November

Australia: Government announces 100-strong force to hunt down online attackers

FTX: 'Hundreds of millions missing' from collapsed cryptocurrency trading exchange

Kraken CSO claims to Identify the Hacker Who Stole $600 Million From FTX

Law firm questions whether Medibank customers are entitled to compensation over hack

Lockbit gang leaked data stolen from global high-tech giant Thales

Malware Spotted on the Google Play Store Steals Banking Credentials & Intercepts SMS Messages

Millions lost as exploits hit major platforms Mango, Lamden, Binance and others

The financial effect of a cyber crisis: The neglected costs senior executives should take into account

The Hunt for the FTX Thieves Has Begun

Top 3 Cyber Attacks and Data Breaches of 2022

Ukraine Claims Russian Hackers Infiltrate Systems With New Somnia Ransomware

Ukraine says Russian hacktivists use new Somnia ransomware

12th November

A hacker behind unauthorized FTX crypto withdrawals has been identified, says rival exchange Kraken

Android phone owner accidentally finds a way to bypass lock screen

Australia: Ban looms for data breach ransom payments

Australia to 'hack the hackers' behind Medibank

Canadian Man Charged Over Involvement In Global LockBit Ransomware Campaign

Canadian supermarket chain giant Sobeys suffered a ransomware attack

FTX hacker identity discovered by Kraken Exchange team

FTX was hacked; hacker’s identity found

Hackers keeping stolen crypto: What is the long-term solution?

How to protect your business from the inside out

How to report phishing text messages

Malaysian Consultative Council of Islamic Organisation (MAPIM) calls on authorities to probe on voters' data leak

Malicious app in the Play Store spotted distributing Xenomorph Banking Trojan

Manufacturing sector paid the highest ransom after cyberattacks

More CHI Memorial systems are back online more than a month after cyberattack

New extortion scam threatens to damage sites’ reputation, leak data

Over 15,000 Websites were Hacked to Redirect Visitors to Fake Q&A Websites

Scary Security Stats: The worst of 2022

Thales confirms hackers have released its data on the dark web

The Dallas Central Appraisal District Has Been Attacked by Ransomware

The rising tide of no-hook phishing

What is a 51% attack and how to detect it?

What Is a Living-Off-the-Land Attack and How Can You Prevent It?

Who Leaked GTA 6 and Why? A Comprehensive Overview

11th November

4 Common Threats A Web Application Firewall Can Prevent From Cyber Attack

20 Million Americans in 21 states 'are still at risk of dangerous healthcare after cyberattack': IT breach at one of biggest hospital chains in the US has already caused overdoses, cancer delays and ambulance diversions

98% of organizations have been impacted by a cyber supply chain breach

A quick look at the state of ransomware readiness in 2022

An initial access broker claims to have hacked Deutsche Bank

Android warning: These malicious apps had over a million downloads from Google Play

API abuses and attacks create new challenges for retailers

Apple issues urgent warning to iPhone users amid hacker fears

Australia: New South Wales Government releases mandatory data breach notification Bill

Australia blames cyber criminals in Russia for Medibank data breach

Australia KNOWS who Medibank hacker is: Prime Minister says culprit has been identified and orders cops to reveal 'where these attacks are coming from'

Australian police to Medibank hackers: 'We know who you are'

Avanan finds hackers exploiting Microsoft Dynamics 365 Customer Voice

Azov ‘Ransomware’ Wipes Data, Blames Security Researchers

Cabinet Office fine over honours data breach slashed by 90% amid ‘economic pressure’

Canada: 2 provincial privacy watchdogs confirm Sobeys experiencing data breach

Canadian food retail giant Sobeys hit by Black Basta ransomware

‘Capable, active and aggressive’: Australians warned of more Medibank-style attacks

CISA Releases Stakeholder-Specific Vulnerability Categorization (SSVC) Guide to Help Companies Prioritize Vulnerabilities

CISA Says Midterm Voting Uncompromised By Cyber-attacks

CommonSpirit Health Says EHRs Mostly Back Online Following Ransomware Attack

Confidence in Cyber Resilience Remains High in Asia-Pacific Despite Recent Increase in Attacks

Cybercrime insurance is making the ransomware problem worse

Cyberinsurance Requirements Get Tougher, Premiums Skyrocket

Cybersecurity concerns for small business security leaders

Emerging Middle Market Cyber-Attack Vectors: Are You at Risk?

Enterprise Firms See Uptick In Email Ransomware Attacks, Study Finds

Experts Uncover Two Long-Running Android Spyware Campaigns Targeting Uyghurs

Funky Pigeon counts cost of cyber attack

Guilford College still reeling from cyber incident

HC3 Sounds Alarm About Venus Ransomware

How can CISOs catch up with the security demands of their ever-growing networks?

Human cost of Australia's ransomware attacks soars

Inside the mind of a cyber criminal

LockBit ransomware suspect nabbed in Canada, faces charges in the US

Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan

Man Arrested in Ontario For Alleged LockBit Ransomware Involvement

Manufacturing sector leads in highest average ransomware payments

Massive Hospital System Cyberattack Delays Cancer Surgeries & Erases Crucial Records: How To Safeguard Your Vital Information

Medibank Hack Gets More Gross As Hacker Leaks Sensitive Patient Details

Microsoft Blames Russian Hackers for Prestige Ransomware Attacks on Ukraine and Poland

Multiple High-Severity Flaw Affect Widely Used OpenLiteSpeed Web Server Software

New BadBazaar Android malware linked to Chinese cyberspies

New phishing campaign posing as Spain's Tax Agency

Norman Public Schools Back Online After Cyber Attack

Only 30% of Cyber-Insurance Holders Say Ransomware is Covered

OpenText 2022 Australian Small-Medium Business (SMB) Ransomware Survey

Over 200 million FIFA Ultimate Team (FUT) coins have reportedly been stolen by FIFA 23 hackers on PSN

Park View school will not say if data breached in cyber-attack

Pennsylvania healthcare firm sued over data breach that compromised files containing patient data

Phishing attacks: Five things to watch out for

Public sector data under real threat from cybercriminals

Qatar World Cup Firms Urged to Upgrade Cyber-Threat Model

Ransomware gangs shift tactics, making crimes harder to track

Ransomware, cyberattacks impact 80% of firms surveyed

Reading GP clinic sent out private email addresses in "data breach"

Recent data breaches expose medical data, other consumer info

Revealed - the percentage of businesses hit by a cyber incident since 2019

Russia ransomware gang behind Medibank insurer hack

Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks

Scammers are turning to ‘new realism’ to develop more sophisticated online tactics

Sobeys data breach serves as wake-up call for industry

Study shows the worrying human cost of cyber attacks

Tessian’s new State of Email Security report warns the average UK business has experienced 16 successful phishing attacks in 2022 so far

Texas Hospital Says Ransomware Breach Affected 500,000

To stop ransomware, preparation is the best medicine

Ukrainian Cyber Cops Bust $200m Fraud Ring

Websites overtake webmail as top phishing vector

What is zero trust and how it helps prevent cyber attacks

Why Do Phishing Emails Have Such Obvious Typos?

Will using a VPN help protect you from malware or ransomware?

10th November

$77 billion lost to scams worldwide in 2021 – up 16% from previous year

A Theoretically Devastating Cyber Attack on America’s Gas Stations

ABB Oil and Gas Flow Computer Hack Can Prevent Utilities From Billing Customers

Albany Schools Still Without Internet After Hacking Attempt

Alleged LockBit ransomware operator arrested in Canada

Australian OAIC data breach report shows key privacy risks

Average UK business experienced 16 phishing attacks in 2022

Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products

Clarion unable to provide basic housing information to Camden Council due to cyberattack

CommonSpirit Health says majority of EHRs back online after ransomware attack

CommonSpirit Health Says Most EHRs Are Back Online

Couple Get 40 Years for Navy Espionage Plot

Cyber attack closes Park View school in Tottenham

Cyber Insurers Putting ‘Hard Limitations’ on Ransomware Attack Coverage

Cyber security update after Hereford school data breach

Cybersecurity Awareness: An Open Letter to CISOs

Cybersecurity Trends Report: Check Point Software Predicts Hikes in Hacking and Exploits

Everton sponsors Stake.com hit by cyber attack, £8.7million stolen in hack

FBI warns scammers now impersonate refund payment portals

Fears realised on Medibank hack

GitHub Abused to Distribute Malicious Packages on PyPI in Image Files

Hacker demands $10m to stop leaking Australians’ medical records

Hacker discovers lock screen bypass bug that affects all Google Pixels

Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones' Lock Screens

HC3 Warns Healthcare Sector of Venus Ransomware Variant

High-Severity Flaw Reported in Critical System Used in Oil and Gas Companies

How ransomware gangs and malware campaigns are changing

How to Build a Successful Cloud Security Strategy

How to Recover from a Cyber Attack

How to say ‘no’ in the face of a ransomware attack

“How will the Uber Breach Verdict Affect the CISO Role in the Future?”

Insider threat peaks to highest level in Q3 2022

iPhone iOS 16.1.1 fixes two security vulnerabilities - time to update

Is Cybersecurity Awareness Month Anything More Than PR?

K-12 students can help reduce cyberattacks in their districts

LockBit 3.0 Malware Using Weaponized Word Doc To Drop Ransomware Via Amadey Bot

Lookout Discovers Long-running Surveillance Campaigns Targeting Uyghurs

Majority of Security Managers Lack Threat Intelligence Skills

Malware Redirects 15,000 Sites in Malicious SEO Campaign

Malware, Spyware, and Ransomware: How They Differ and How to Respond

Mandatory data breach notification laws enter NSW Parliament

Manual Vs. SSPM: Streamlining SaaS Security Management

Manufacturing reports highest average ransomware payment across all sectors

Medibank: Hackers release abortion data after stealing Australian medical records

Medibank hacker reveals huge ransom demand, dumps more medical info

Medibank hackers dump more sensitive data

Medibank won't pay ransom as more stolen data shows up on dark web

Metropolitan Associates Reports Leaked Social Security Numbers as a Result of Recent Data Breach

Microsoft blames Russian military-linked hackers for ransomware attacks in Poland and Ukraine

Microsoft fixes Mark of the Web (MoTW) zero-day used to drop malware via ISO files

Mississippi was the target of a sustained cyber attack on election day

More NHS dentists could be forced to close after major cyber attack leaves some nearing financial ruin

More than 180 Hongkongers scammed by phishing syndicate out of HK$2.7 million through fake messages about failed parcel delivery

Most EHRs Back Online at CommonSpirit Health Following Ransomware Attack

NATO Allies Double Down on Cybersecurity in Warfighting Ops

New Cybersecurity Analysis Reveals 4 Out Of 10 Work Emails Are Unwanted

New Lenovo Notebook Models Affected By UEFI Firmware Vulnerabilities

New South Wales (NSW) agencies to be forced to report hacks

New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models

Norman Schools Isolate Desktops, Laptops After Cyber Attack

Office of the Australian Information Commissioner (OAIC) Data Breach Report Shows Key Privacy Risks

One in Five Advanced Email Attacks Were Successful in 2022, According to New Report

'One in four firms suffered data breach in 3 years globally'

OpenText survey finds SMBs sweet spot for ransomware attacks

Optus earmarks A$140m to cover cost of data breach

Patients sue Somnia for data breach of 400,000 accounts

Petersen International Underwriters Reports Data Breach Following Unauthorized Access to the Company’s Computer Network

Phishing drops IceXLoader malware on thousands of home, corporate devices

Pupils' data spread online in Hereford school cyber attack

Ransomware attack targets Commack School District

Ransomware Gang Leaks Medibank Data on Dark Web

Ransomware Gang Offers to Sell Files Stolen From Continental for $50 Million

Re-Focusing Cyber Insurance with Security Validation

Red, purple, or blue? When it comes to offensive security operations, it’s not just about picking one color

Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File

Russia's Sway Over Criminal Ransomware Gangs Is Coming Into Focus

Russian LockBit ransomware operator arrested in Canada

Russian man accused of being global ransomware mastermind arrested north of Toronto

Russian military hackers linked to ransomware attacks in Ukraine

Russian-Canadian National Arrested in Ransomware Conspiracy

Salud Family Health Reports Data Breach Following Apparent Cyberattack

Security leaders want consequences for insecure code

Six Cybersecurity Trends for 2023

Some 98% of Global Firms Suffer Supply Chain Breach in 2021

State Bank of India (SBI) Customers Warned Of Fake SMS Requesting PAN Update: Here's How To Avoid Smishing Attack

Stolen Bitcoin worth £3billion found in popcorn tin in hacker's home after a decade

StrelaStealer Malware Hijacking Outlook and Thunderbird Accounts

Taking down a ransomware hacker

The Dropbox GitHub Data Breach

The 'Great Resignation' Caused Insider Threats to Peak in Q3 2022

The world’s most searched-for cyber attacks and prevention measures

Threat intelligence adoption trends & challenges

Three in four large firms hit by cyber attack since 2019

TransUnion data breach exposes consumers' financial information

U.S. charges Ontario resident linked to notorious ransomware gang

Ukraine arrests fraud ring members who made €200 million per year

United Veterinary Care Sends Data Breach Letter Following Unauthorized Access to the Company’s Computer System

US charges suspect linked to notorious ransomware gang

US Health Department warns of Venus ransomware targeting healthcare organizations

$US1 per customer: Alleged Medibank hackers reveal ransom demands

Vodafone Italy suffers the loss of subscriber records in third-party supplier breach

Warning: New Massive Malicious Campaigns Targeting Top Indian Banks' Customers

What can be done to fight back against phishing?

Why Business Email Compromise Costs Companies More Than Ransomware Attacks

Windows breaks under upgraded IceXLoader malware

Worok hackers hide new malware in PNGs using steganography

YouTube Tutorial Videos Spreading Vidar and Raccoon Malware

9th November

1 in 3 Australians exposed to data breach in past year

75% of air travelers prefer biometric identification over passports

15,000 sites hacked for massive Google SEO poisoning campaign

Advanced RAT AgentTesla Most Prolific Malware in October

Anti-ransomware strategies should be as easy as ABC

APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network

Australian Information Industry Association (AIIA) calls on Government to reconsider data breach penalties as part of Privacy Act review

Bed, Bath & Beyond Confirms a Data Breach From Targeted Phishing Attack

Camping World and Good Sam Announce Recent Data Breach That Leaked Sensitive Consumer Information

Contracting for Cybersecurity Risks: Mitigating Weak Links

Could a Digital Red Cross Protect Hospitals From Ransomware?

Cyber attack on an Orange debt collection provider in Spain exposes sensitive data

Cybersecurity: These are the new things to worry about in 2023

Cybersecurity leaders want to quit. Here's what is pushing them to leave

Experts Warn of Browser Extensions Spying On Users via Cloud9 Chrome Botnet Network

Fintech Cybersecurity: How to Safely Integrate Products

Five things to do if you’re affected by the Medibank hack

Gaping Authentication Bypass Holes in VMWare Workspace One

Google Chrome: Apply new security update now to fix these six 'high severity' bugs

High-Risk Vulnerability Found in ABB's Flow Computers

‘High-severity’ vulnerability found in computers used by large oil and gas utilities

Instagram Influencer Gets 11 Years for Money Laundering

Internet of Things Devices May Provide a Weak Point for Cybersecurity

Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days

InterPlanetary File System (IPFS) Increasingly Weaponized for Phishing, Malware Delivery

InterPlanetary File System (IPFS) seeing ‘widespread’ abuse by hackers

Lenovo fixes flaws that can be used to disable UEFI Secure Boot

Louisiana Corrections Department Suffers Third-Party Data Breach, 85K Impacted

Lurie Children’s Hospital Resolves Healthcare Data Breach Lawsuit

Malicious Package on PyPI Hides Behind Image Files, Spreads Via GitHub

Manufacturing reports the highest average ransomware payment across all sectors

Many Cyber Criminals Return After Ransomware Payments Are Made

Medibank breach: Hackers start leaking health data after ransomware attack

Medibank Confirms Data Stolen in Breach is Now Available Online

Medibank warns customers their data was leaked by ransomware gang

Merced College knocked offline in apparent malware attack

Microsoft 365 Apps Continue to be the Most Exploited Cloud Services

Microsoft Issues Patches to Fix 6 Active 0-Day Windows Vulnerabilities

Microsoft November 2022 Patch Tuesday addresses six exploited zero-days

Microsoft Patch Tuesday fixes 11 critical security vulnerabilities and six zero-days being actively exploited

Microsoft Patches Six Zero-Day Bugs this Month

Microsoft releases patches for 68 vulnerabilities, including ‘ProxyNotShell’ zero-days

Multichannel communications need more than email security

New hacking group uses custom 'Symatic' Cobalt Strike loaders

New IceXLoader Malware Loader Variant Infected Thousands of Victims Worldwide

New StrelaStealer malware steals your Outlook, Thunderbird accounts

New York Proposes Changes to Financial Services Cybersecurity Regulation

Protecting your clients and your business

Ransomware attacks: is there a case for paying up?

Ransomware trends for 2022

Ransomware-as-a-Service Transforms Gangs Into Businesses

Researchers uncover Cloud9, a new botnet for phishing on Google Chrome

Rubrik Zero Labs research reveals one-third of organisations forced to change leadership as a result of cyber attack

Security “sampling” puts US federal agencies at risk

Several Cyber Attacks Observed Leveraging IPFS Decentralized Network

Shining a light on the dark web

Silverstone Formula One circuit posted on ransomware leak site

Tackling the ransomware scourge

The state of phishing in 2022

Threat Actors Abuse InterPlanetary File System Protocol to Spread Malware

Top 5 API Security Myths That Are Crushing Your Business

TransUnion LLC Confirms Recent Data Breach with State Attorney General’s Office

U.S. Uncovered Hacker Who Stole 50,000 Bitcoins From The Silk Road Dark Web

UK and non-EU businesses to face more uncertainty in GDPR data breach reporting

VMware Warns of 3 New Critical Flaws Affecting Workspace ONE Assist Software

What retailers can learn from Medibank’s data breach

8th November

3 Ways to Avoid Repeat Healthcare Ransomware Attacks

6 million Australians victims of data breach

9 ways to protect manufacturing from ransomware

15 cyber threats to prepare for in 2023: from phone-camera hijacking to ransom-vaporware

Amadey Bot Spotted Deploying LockBit 3.0 Ransomware on Hacked Machines

Australia: Data breach penalty laws pass lower house

Australia: Tech lobby wants ‘good faith’ exemptions for data breach fines

Australia's Medibank aware of hacker threat to leak data in 24 hours

Australia's Medibank warns that hacker may release more data

Canceled surgeries and mishandled meds: How ransomware attacks affect patient safety

Cash App class action claims Block failed to prevent data breach

Citrix urges admins to patch critical ADC, Gateway auth bypass

Companies hit by ransomware often targeted again, research says

Conti Affiliates Black Basta, BlackByte Continue to Attack Critical Infrastructure

Cyber attack on Orange in Spain exposes sensitive customer data

Cyber awareness is the foremost instrument against whaling attacks

Cyber criminals return for seconds after ransomware payments

Cybercriminals Exposed: 5 Kinds and How They Operate

Data Protection is the Heart of Zero Trust

Department of Justice seized $3 billion in Bitcoin found in underground safe and popcorn tin after Silk Road fraud

Defending Against Cloud Security Threats: Breaking Down Initial Access Techniques

FinCEN analysis of Bank Secrecy Act (BSA) filings in 2021 reveals increased number and severity of ransomware attacks

Five Tips For Cybersecurity And Data Protection In Small Businesses

Flora & Fauna reports data breach

Formula 1 teams targeted by global hacker network

Grand Theft Auto 6 (GTA 6) hacker didn’t steal assets – won’t influence development says Take-Two

Hacker For Hire: Indian Hacking Companies Found To Hack Emails, Phones Of VIPs For A Fee

Hacker threatens release of Medibank data

Hackers post Hereford schoolchildren's data records on dark web

Hackers stole 130 Dropbox code repositories through a sophisticated phishing attack

How DDoS Disrupts Live Events

How geopolitical turmoil changed the cybersecurity threat landscape

How to get ahead of fraud in the metaverse

Influencer 'Hushpuppi' gets 11 years in prison for cyber fraud

Insider Risk on the Rise: 12% of Employees Take IP When Leaving Jobs

Investigation into Michigan IT Consortium Hack Continues

Ireland: Health Service Executive (HSE) to begin contacting over 110,00 people affected by cyber attack

Ireland: Health Service Executive (HSE) to start notifying people affected by last year's data breach

Iskandar Investment flags phishing scam on Telegram platform

LockBit affiliate uses Amadey Bot malware to deploy ransomware

Malicious droppers on Google Play deliver banking malware to victims

Malicious extension lets attackers control Google Chrome remotely

Malware, Spyware, and Ransomware: How They Differ and How to Respond

Manufacturing Reports the Highest Average Ransomware Payment Across All Sectors, Sophos Survey Finds

Medibank Distressed As Ransomware Group Threatens to Post Stolen Data

Mexican cyber-attack threatens to cripple road freight movements

MFA Adoption is Improving, but Cybercriminals are Keeping Up

Microsoft fixes many zero-days under attack

Microsoft fixes ProxyNotShell Exchange zero-days exploited in attacks

Multichannel Phishing Extends to Threats Beyond Email

New Laplas Clipper Malware Targeting Cryptocurrency Users via SmokeLoader

North Korean hacker attack on Israeli crypto firm thwarted

Password-hacking attacks are on the rise. Here's how to stop your accounts from being stolen

Precise ransomware strikes boost threat actors’ success rate

Python Developers Beware: Malicious Packages are Swapping Out Your Crypto Addresses

Q3 2022 Threat Landscape: Insider Threat, The Trojan Horse of 2022

Ransomware attacks on hospitals take toll on patients

Ransomware group starts publishing Medibank data as company warns customers to be vigilant for scammers

Raspberry Worm Exposes Larger, More Complex Malware Ecosystem

Robin Banks crooks back at the table with fresh phish from Russia

Second hacker linked to Bank of Valletta's €13 million cyber heist jailed for 11 years

Securities and Exchange Commission (SEC) Announces 'Enforcement Action' For SolarWinds Over 2020 Hack

Shangri-La hotel data breach likely had 'minimal' impact at Singapore ministerial summit

Silk Road Thief Pleads Guilty to $3.4bn Raid

Six ways healthcare organizations can improve connected device security

SMBs Fear Security Budget Cuts as Inflation Bites

Swiss Re: Cyber-Insurance Industry Must Reform

Sydney teenager Dennis Su pleads guilty to using Optus data breach information to blackmail customers

The £2m question

The Biggest Phishing Breaches of 2022 and How to Avoid them for 2023

The security dilemma of data sprawl

This rather odd ransomware deletes your data just a few bytes at a time

U.S. Seizes Over 50K Bitcoin Worth $3.3 Billion Linked to Silk Road Dark Web

US Feds Raid Silk Road Hacker's Home And Find $3.36B Of Stolen Crypto In A Popcorn Tin

Vast majority of SMBs are concerned about a ransomware attack on their business

VMware fixes three critical auth bypass bugs in remote access tool

Websites in Mississippi hit by denial-of-service attack as country votes during midterm elections

What Is Screen Locker Ransomware and How Can You Remove It?

Why You Should Consider Using AI In Your Network Security Strategy

Zurich, Mondelez settle longstanding lawsuit over $100 million claim

7th November

4 recommendations to combat phishing

6 ways to reduce your IoT attack surface

Administrative Fund of the Detectives’ Endowment Association, Inc., Police Department of New York Confirms Recent Data Breach

Alinsco Managing General Agency, Inc. Files Report of Data Breach with Texas Attorney General

Android RAT Group Targets Indian Defense Personnel

Attack surfaces are mushrooming. Are you prepared?

Australia: Coalition accuses government of blocking ransomware bill

Australia: Coalition attempts to revive ransomware laws after Medibank hack ‘wake-up call’

Australia's Medibank aware of hacker threat to leak data in 24 hours

Australia's top health insurer reels after data breach

Aveanna Healthcare Data Breach Could Cost Firm More Than $1M

Aveanna Healthcare Reaches $425K Settlement After Healthcare Data Breach

Azov Ransomware is a wiper, destroying data 666 bytes at a time

Basics Will Block Most Ransomware Hits, Says UK Cyber Chief

Beware, Robin Banks Phishing Campaign Is Back To Steal Your Cash In Its Next Big Heist

Black Basta ransomware attacks linked to FIN7 hackers

Business Email Compromise: Low-Tech, High-Impact Threat

Canada’s Maple Leaf Foods hit by cyber attack

Cloudflare cut off this phishing-as-a-service platform, so it moved to Russia

Cyber Attack on Australian Insurer Medibank Far Bigger Than Initially Thought

Cyber Insurance Market Stabilizing as Security Awareness Improves

Cyber Police launch major investigation after student information was leaked following a major cyber-attack at a Hereford Secondary School

Cyber regulations could spur "credit positive" environment

Cyberattack on observatory in Chile raises concerns about security of space tech

Cybergangs are recruiting and rewarding supporters

Deribit Hacker Has Started Moving the Stolen $28M to Tornado Cash

Does your company need secure enclaves? Five questions to ask your CISO

Dragos releases industrial ransomware analysis for Q3 2022

Dropbox Security Breach Leads to Compromise of 130 GitHub Repositories

Experts Find Urlscan Security Scanner Inadvertently Leaks Sensitive URLs and Data

False sense of safety undermines good password hygiene

FBI: Beware of Cyber-Threat from Russian Hacktivists

Gambling Firms Access Information of 28 Million Children in Major UK Government Data Breach

Global SMB Ransomware Survey Reveals Heightened Worry about Increased Cyber Attacks Due to Geopolitical Tensions

Global supply chains threatened by the rise of ransomware

Google Fails To Remove “App Developer” Behind Malware Scam

Home Health Agency to Pay $425,000 Following Massachusetts Data Breach

How are Tightening Budgets Affecting UK SMB Ransomware Fears?

How the Cloud Can Nullify Ransomware

How To: Secure Your Cloud Migration

ICO: Department for Education Should Have Been Fined £10m

Iranian actors targeting healthcare via spear-phishing, vulnerability exploit

Ireland: HSE to begin notifying those affected by data breach

IRS Seizes Another Silk Road Hacker’s $3.36 Billion Bitcoin Stash

Japan Joins Key NATO Cyber Agency

Killnet targets Eastern Bloc government sites, but fails to keep them offline

Logs of Internal Chats of the Russian Hacker Group Yanluowang Leaked to the Network

Maple Leaf Foods suffers outage following weekend cyberattack

Massive Phishing Campaigns Target India Banks’ Clients

Medibank admits ransomware attack is far worse than previously thought

Medibank Refuses to Pay Ransom After 9.7 Million Customers Exposed in Ransomware Hack

Medibank Refuses to Pay Ransom After Data Breach

Medibank says ransomware group’s threat to release customer information a ‘distressing development’

Medibank won't pay data hacker ransom

Medibank won’t pay the ransom for data stolen in breach

Morrison Products, Inc. Reports Data Breach, Leaking Victims’ Social Security Numbers

Most businesses admit they would pay up to get rid of ransomware

Nation-State Hacker Attacks on Critical Infrastructure Soar

Phishing Scams: Digital Natives More Likely to Open Harmful Phishing Emails

Popular Grand Theft Auto 5 RP mod FiveM suffers from a data breach

Ransomware, storage and backup: Impacts, limits and capabilities

Ransomware Causes 'Significant Disruption' at Norman Schools

Ransomware gang threatens to release stolen Medibank data

Research Highlights Recent Spike in Ransomware Activity

Robin Banks Phishing Service for Cybercriminals Returns with Russian Server

Safely Test Your Malware, Ransomware and Virus Defenses

St. Luke's Health reports data breach

Stolen $3bn Bitcoin mystery ends with popcorn tin discovery

The non-stop advance and diversification of ransomware extortion tactics

The Worrying Rise of Cybercrime as a Service (CaaS)

Threat Group Continuously Updates Malware to Evade Antivirus Software

Threat of ‘catastrophic’ cyber attack requires new approach from insurers, new report says

To fight ransomware, we must treat digital infrastructure as critical

U.S. unmasks hacker who stole 50,000 bitcoins from Silk Road

Ukraine’s Response to Cyber Threats a Model in DDoS Prevention

Urlscan.io API Inadvertently Leaked Sensitive Data and URLs

US seizes $1.4 billion in Bitcoin from Silk Road Market Scammer

Vultur Android Banking Trojan Reaches 100,000+ Downloads on Google Play Store

What to Do After a Data Breach and How to Protect Yourself