Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)



Monday, 14 November 2022

Data Breaches Digest - Week 46 2022

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 14th November and 20th November 2022.


20th November

Central Depository Services (India) (CDSL) provides updates on pending settlement after being hit by cyber attack

Cyber Pirates

‘Data-rich, resource-poor.’ Why Michigan schools can be a ‘soft target’ for ransomware attacks

Five common online scams to look out for this Black Friday

Five Million AirAsia Passengers And Employees Personal Data Might Be Compromised

Four Android apps banned from Google Play store as users urged to delete them

Fresh blow for Medibank customers after hackers release more data

‘FTX Accounts Drainer’ Offloads 50,000 ETH, Entity Uses Ren’s Bitcoin Gateway to Acquire BTC

FTX Launches Strategic Review of Assets as Hacker Dumps ETH

Here’s What’s Happening to Crypto Stolen from FTX

Holiday Shopping Online: Safety on Black Friday, Cyber Monday

How hackers accessed Airtel Money’s systems

How hackers stole billions from Airtel Money in Uganda

India: Even Government will be held accountable for data breach, says Government source

India: Many loose ends in new Personal Data Protection Bill 2022

Likelihood of WannaCry happening in 2023 high: Kaspersky

Medibank hackers release more data

Michigan prosthetics and orthotics provider discloses ransomware attack back in January

More Medibank data leaked on dark web as standoff continues

New malware exploits a zero-day flaw in the Windows operating system

New ransomware encrypts files, then steals your Discord account

Offshore US oil, gas facilities at ‘significant’ risk of cyberattack

On-chain data reveals how an FTX hacker converted 25,000 ETH to BTC

Ransomware Attacks Decrease by Over 20% in 2022

Research sector targeted in new spear phishing attack using Google Drive

Royal Ransomware: New Threat Uses Google Ads and Cracked Software

Russian hackers behind Medibank cyber attack release thousands more records

Should You Always Put Tape Over Your Laptop Camera?

The pivotal role of cybersecurity in healthcare and medical devices

Top employee cybersecurity tips for remote work and travel

Your Home Security Cameras Can Be Hacked. Here's How to Prevent It

19th November

6 in 10 Indians report personal data breach by loan service providers

AirAsia victim of ransomware attack, passenger and employee data acquired

Atlassian Releases Patches for Critical Flaws Affecting Crowd and Bitbucket Products

Beware of fraudulent sites this Black Friday

Beware of these fake web police, they want to steal your personal data

Black Friday and Cyber Monday, crooks are already at work

Central Depository Services (India) (CDSL) services down due to cyber attacks

China uses all tactics to gain access to defence technologies

Chinese 'Mustang Panda' Hackers Actively Targeting Governments Worldwide

DEV-0569 group uses Google Ads to distribute Royal Ransomware

Eesti Energia website down after pro-Kremlin cyber attack

Hackers Unsuccessful At Stealing 22,000 Employee Accounts On Instagram

Hive ransomware actors extort over $100 million from victims, warns US

Hive ransomware crooks extort $100m from 1,300 global victims

How can I protect my personal data from online scammers?

How To Avoid Losing Money Or Data Online Over The Silly Season

India: Draft Data Protection Bill Entails up to Rs250 Crore Penalty for Privacy Breach; Experts Call it ‘Watered Down’ Law

India: Even government will be held accountable for data breach, says government source

India: Government releases Digital Personal Data Protection Bill draft

India: Rs 500 crore fine for personal data breach in new Bill

Indian Government Publishes Draft of Digital Personal Data Protection Bill 2022

Log4Shell – Iranian Hackers Accessed Domain Controller of US Federal Network

Medibank customers left to endure anxiety and fear without 'right support' after data breach

Microsoft Warns of Hackers Using Google Ads to Distribute Royal Ransomware

New attacks use Windows security bypass zero-day to drop malware

New improved versions of LodaRAT spotted in the wild

Peterborough Paramedics: No sign patient information leaked

Private Indian hackers launched over a thousand cyberattacks on Pakistan military

Scammers are targeting desperate FTX customers by pretending to be the DOJ and promising access to funds

Singapore police warn investors against FTX phishing scams

Social engineering: a hackers’ sophisticated tool

The curious case of FTX and the hacker that holds ETH worth $300 million

World Cup 2022 scam: Kaspersky raises alarm about cybercrime schemes

18th November

42,000 Imposter Domains Used by Chinese Hackers in Huge Phishing Campaign

AAA Collections, Inc. Files Notice of Data Breach After Unauthorized Party Accessed the Company’s Computer System

Additional 15K added to Eye Care Leaders’ already record-setting breach tally

After huge increases, cyberinsurance premiums start to level off

Agencies urge health sector to protect against ransomware threat

AI and open-source intelligence can mitigate ransomware and cryptocurrency risks

Al Mayadeen hacked after reflecting truth of Iran riots

ARCrypter ransomware strain detailed by BlackBerry

Are you staying safe while shopping online this holiday season?

Atlassian fixes critical command injection bug in Bitbucket Server

Australia's Hack-Back Plan Against Cyberattackers Raises Familiar Concerns

Booz Allen says former staffer downloaded employees’ personal data

Canada: Area paramedic services impacted by data breach

Canadian customers of paramedic data service still offline after cyber incident

China-based Fangxiao group behind a long-running phishing campaign

Chinese Hackers Disguise Malware using Google Drive to Target Organizations

Chinese hackers use Google Drive to drop malware on government networks

CISA, NSA, ODNI Publish Software Supply Chain Guidelines For Customers

Crypto hack also causes damage to FTX: $600 million lost. Could it be an internal entity within the company?

Cyberattacks Are the Most Cited Risk to the UK Financial System

Cybercrime market in Telegram is growing

Cybersecurity experts give 10 tips for safe shopping online

Cybersecurity frameworks are not enough to protect organizations from today’s threats

Data is the crux of your organisation’s security

Department of Homeland Security (DHS) Secretary: Cyberattacks are the most significant threat to port infrastructure

DEV-0569 Ransomware Group Remarkably Innovative, Microsoft Cautions

Earth Preta Spear-Phishing Governments Worldwide

EDRs are Cybersecurity Stars, But You Still Need Offense and Defense

Emerging Threat Actor DEV-0569 Expands Its Toolkit to Deliver Royal Ransomware

Emotet’s return underscores that some threat groups never go away for good

Evidence of a data breach resulting from the ransomware attack on Uponor - the company is making progress on operations recovery

Exploit released for actively abused ProxyNotShell Exchange bug

Faneuil data breach class action settlement

FBI Targeted by Russian Hackers in Latest String of Attacks Against U.S. Government Websites

FBI warns of persistent threat from Hive ransomware

FIFA, Coinbase, LinkedIn, Netflix, Walmart, and Costco - Top Scams and Phishing Schemes of the Week

Five Steps to Eliminate Passwords

Forefront Dermatology data breach $3.75M class action settlement

Gateway Rehab Provides Notification of Data Security Incident

GCHQ chief 'confident' UK can deal with increasing ransomware attacks

Google bans four more Android apps and millions warned to delete them now

Hack Drains FriesDAO Restaurant Project of $2.3M in What Looks Like Potentially Lethal Blow

Hackers target your holiday shopping with new phishing scam

Have ransomware-type cyberattacks really decreased in 2022?

Hawaiʻi Radiologic Associates reopens after apparent cyber attack

Hive ransomware actors have extorted over $100M from victims, says FBI

Hive Ransomware Attackers Extorted $100 Million from Over 1,300 Companies Worldwide

Hive Ransomware Has Made $100m to Date

Holiday, weekend ransomware attacks hit companies hard

How Information Stealers Get User Credentials

How to Address the Ransomware Threat to SaaS Data

How to be Mindful of Security Threats During the FIFA World Cup

India: 50% Of Consumers Suffered Data Breach, Swamped with Unwanted Offers

India: Cyber attack on Central Depository Services (India) Limited (CDSL)

India: Government Proposes Penalty Of Up To Rs 500 Crore For Data Breach Under Data Protection Bill

India: New Data Protection Bill moots Rs 500 crore fine for data breach

India: Still Using ‘Bigbasket’ As Password? Change It, And Follow These Safe Cyber Practices

India's new privacy bill proposes cross-border data transfer, tough penalties

Indian Government to fine Rs. 250 crores for personal data breach! See what the new bill says

Instagram Credential Phishing Attacks Bypass Microsoft Email Security

It’s time to regard cybersecurity as human safety

Keeping Up With Ransomware

KnowBe4 phishing test results reveal trend towards business-related emails

Leaky Server Exposing Scraped Data of 150,000 Mastodon Users

LodaRAT Malware Resurfaces with New Variants Employing Updated Functionalities

Lookout Study Identifies an Ongoing Consumer Scam Surge

Meta Reportedly Fires Dozens of Employees for Hijacking Users' Facebook and Instagram Accounts

Microsoft: Hackers are using this 'concerning' tactic to dodge multi-factor authentication

Miller County’s courthouse office mainframe attacked by ransomware

Mitigating the rising hack threat to IoT devices

Nearly 500,000 US prisoners impacted by CorrectCare Integrated Health data leak

Netflix Phishing Emails Surge 78%

New South Wales passes state-based mandatory data breach notification

NewYork-Presbyterian Hospital Notifies 12K of Healthcare Data Breach

Nigeria recorded a 174% increase in cybercrimes in six months, here’s why you should be bothered

Organizations more willing to pay ransom for this type of data breach

Overcoming Jackson County ISD cyberattack could take several weeks

People urged to be extra vigilant about online shopping scams in the run up to Christmas

Personally Identifiable Information (PII) of 7.2m customers of Russian scooter-sharing service Whoosh leaked on the dark web

Phishing attacks targeting Middle East countries double ahead of World Cup

Phishing scams get ‘crafty’

Policing In The Metaverse: What’s Happening Now

Qbot hackers exploiting Windows 10 Control Panel flaw

Ransomware-as-a-Service Market Now Highly Specialized

Ransomware attack strikes Vanuatu, a tiny island country in the South Pacific Ocean

Ransomware attackers head back to school

Ransomware incidents now make up majority of British government’s crisis management COBRA meetings

Ransomware is a global problem that needs a global solution

Researchers secretly helped decrypt Zeppelin ransomware for 2 years

Royal ransomware group using Google Ads in campaign

Shoppers Warned Stay Alert this Black Friday as Hackers Renew Efforts

Singapore: Over 100 police reports filed on phishing scam purporting unpaid Land Transport Authority (LTA) fines and bills

Some Meta Employees and Security Guards Hacked User Accounts

Stay vigilant: How cloud interconnectivity is amplifying the effects of mobile phishing

Switzerland tightens up cybersecurity rules

The festive season sees online scams soar, finds Bitdefender

The rising hack threat to IoT devices

The Rosewood Corporation Files Notice of Data Breach, Leaking Consumers’ Social Security Numbers

Third-Party Risk Management Efforts Remain Lackluster

This phishing kit is punishing unaware shoppers this Black Friday

Three Reasons Why CISOs Need to Understand Domain Security

Transportation sector targeted by both ransomware and APTs

U.S. Offshore Oil and Gas Infrastructure at ‘Significant Risk’ from Cyber Attacks

Ukrainian hacker ‘DJ Rich’ who stole millions arrested after 10-year hunt

Ukrainian Hacker Sought by US Arrested in Switzerland

US charges BEC suspects with targeting federal health care programs

Utilities Sector & Cybersecurity: Staying Ahead of Cybercriminals

Vanuatu: Hackers strand Pacific island government for over a week

Vanuatu island hit by ransom attack, cripples government

Vanuatu Services Hit by Cyber Attack, Ransom Demand

Vulnerability Patching: How to Prioritize and Apply Patches

W4SP Stealer Constantly Targeting Python Developers in Ongoing Supply Chain Attack

What Is a Brute-Force Attack?

What is Identity Fraud? Definition, Types, and Examples

What Is the BatLoader Malware and How Does It Work?

Why QR Codes Are the Next Cybersecurity Battlefield

Zero Trust Efforts Stall as Cyberattacks Rocket to $1M per Incident

17th November

3 Simple Yet Vital Tips to Stay Safe Online

3 ways microsharding technologies can mitigate ransomware

6 in 10 Indians report data breach by loan service providers

Are people still using bad passwords?

Arkansas Medicaid client info released in data breach

Australia Considers Ban on Ransomware Payments to Decrease Profitability of Data Breaches

Australia declares war on cyberattacks

Australian government considering making ransom payments illegal

Australia wants to ban ransomware payments

Chinese Hackers Using 42,000 Imposter Domains in Massive Phishing Attack Campaign

Chinese Spy Gets 20 Years for Aviation Espionage Plot

Choice Health Insurance Hit with Class Action Lawsuit Over 2022 Data Breach

Claret & Hugh up and running again after cyber attack

Cloud Hacking - Why API Remains the Biggest Threat?

Criminals “Follow the Money” by Commercializing Cybercrime, Launching More “Innovative” Ransomware Attacks and Doubling Down on Credential Theft

Critical Infrastructure’s Open Source Problem

Cyber criminals no longer just a subject for the tech industry

Cybersecurity Industry Must Maintain Public Faith in Technology, Says NCSC Founder

Data Privacy and Remote Work: Three Things Businesses Need to Know

Davaco data breach $540K class action settlement

DDoS Attacks Spiked in October While Ransomware Attacks Fell

Don’t click on that email from Instagram support — it’s a fake

Europol Arrested a “High Value” Russian-Canadian LockBit Ransomware Operator for Extradition to the US

F5 fixes two remote code execution flaws in BIG-IP, BIG-IQ

FBI: Hive ransomware extorted $100M from over 1,300 victims

FBI-Wanted Leader of the Notorious Zeus Botnet Gang Arrested in Geneva

Fortinet’s FortiGuard Labs Recaps State of Ransomware Settlements

Healthcare Sees 60% Year-on-Year Increase in Cyberattacks

High Severity Vulnerabilities Reported in F5 BIG-IP and BIG-IQ Devices

Holiday, weekend ransomware attacks continue to hit companies hard

How Medical Devices Can Put Your Security and Patients at Risk

Hundreds of Amazon RDS Snapshots Discovered Leaking Users' Data

Innovative Service Technology Management Services, Inc. Reports Data Breach in the Wake of Recent Ransomware Attack

Intel 471 reports decrease in ransomware attacks in 3Q 2022

Iranian APT breaches government agency using Log4Shell

Iranian Hackers Compromised a U.S. Federal Agency's Network Using Log4Shell Exploit

Jackson, Hillsdale schools cyber attack investigation continues, expert weighs in

Lake Charles Memorial Health System Reports Unauthorized Access, Possibly Ransomware Attack

LockBit ransomware activity nose-dived in October

Manufacturers lead in ransomware

Medibank Defends its Security Practices as its Ransomware Woes Worsen

Michigan school districts reopen after three-day closure due to ransomware attack

Middletown Valley Bank Reports Data Breach Following Unauthorized Access to Computer Network

More Than Half of Black Friday Spam Emails Are Scams

New South Wales gets first state-based data breach notice scheme

North Korean Hackers Targeting Europe and Latin America with Updated DTrack Backdoor

Not patched Log4j yet? Assume attackers are in your network, say CISA and FBI

Patient Information Compromised In Ontario Wide Paramedic Service Data Security Incident

Personal data breach: Most point fingers at financial institutions

Personal data breach rampant across banks, finance companies

Phishing kit impersonates well-known brands to target US shoppers

Phishing Links Sent Via Microsoft Customer Voice

Previously unidentified ARCrypter ransomware expands worldwide

QBot phishing abuses Windows Control Panel EXE to infect devices

Ransomware activity doubles in transportation, shipping

Ransomware Attacks Are at an All-Time High: Here Is How Security Service Providers Should Prepare

Researchers Quietly Cracked Zeppelin Ransomware Keys

Security Budget Cuts and Recession Spark Worries Among IT Admins

Spencer Gifts data breach class action settlement

Stop Ransomware: Hive Ransomware

Suspect linked to LockBit Global Ransomware Campaign arrested

The feds warn that hackers could hold Midwestern harvests hostage with ransomware

TikTok and Reddit Highly Vulnerable to Disinformation Campaigns, Study Shows

Top 5 Ways to Protect Customers this Holiday Season

Top passwords used in RDP brute-force attacks

TransUnion is the latest credit bureau to experience a data breach

TrojanOrders Attack Hits Magento and Adobe Stores

Ukrainian behind global Zeus malware operation finally caught

US: Iranian Hackers Breached Government with Log4Shell

What is Phishing Protection?

Which threat actors are targeting US data?

Why companies can no longer hide keys under the doormat

Why relying on your mobile to access your online accounts is a risky approach

Why your corporate structure could be compounding fraud risk

Zeus Botnet Suspected Leader Arrested in Geneva

16th November

$2.35M Dickey’s Barbecue settlement over data breach gets preliminary approval

5 use cases with a malware sandbox

6 HIPAA Regulated Entities Report Phishing Attacks and Unauthorized Email Account Access

6 Tips for Understanding 3rd-Party Risk in the Cloud

8 steps to achieving cybersecurity compliance

45% of Indian companies report cybercrime as 2nd biggest fraud after customer frauds

A Business’s Guide To Cyber Threat Detection And Mitigation

Africa comes under cyberattack

Alleged Zeus cybercrime leader arrested in Geneva, to be extradited to US

Amazon warns about online scams: How to protect your money

Android device users urged to delete app linked to phishing scam

ARCrypter Ransomware Expands Its Operations From Latin America to the World

Australia: Data breach penalties go under spotlight

Beware of Twitter Phishing Scams As Musk Takeover Unfolds

Black Friday online shopping: How to boost your cybersecurity and stay safe from scammers

Black Friday’s worst online scams and how you can avoid them

Botnets, Trojans, DDoS From Ukraine and Russia Have Increased Since Invasion

Business Email Compromise Fraud

Cloud data protection trends you need to be aware of

Costa Rica State of Emergency Declared After Ransomware Attacks

Cyber attack on major hospital system could affect 20 million Americans

Cyber attack to cost Medibank up to $35m

Cybersecurity Threats Ballooning in New Jersey

Data Breach check: how to protect yourself after a data breach

Data breaches are happening in every organization, no matter the size

Detecting and Defending Against DLL Sideloading Attacks

Disneyland Malware Team: It’s a Puny World After All

DMARC, DKIM, and SPF: Three Musketeers of Email Authentication

Electronics repair technicians snoop on your data

Euro Authorities Warn World Cup Fans Over Qatari Apps

FBI warning: PC and tech support scams are back. Here's what to watch out for

FDA, MITRE Update Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook

Five Cryptocurrency Scams to Watch Out for in 2022

Gateway Ambulatory Surgery Center Reports Leaked Patient Data Following Phishing Attack

Government Adds Open Source Security to Software Supply Chain

Government of Moldova shaken by big hack-and-leak operation

Hacking the hackers

How Can Managed Service Providers Combat Alert Fatigue?

How security teams can defend against Business Email Compromises (BECs)

How to avoid scams impersonating Amazon this holiday season

How to hack-proof your website

Hundreds of thousands of Emotet attacks spotted daily after four-month hiatus

Information security compliance: why it’s more important than ever

Iranian Hacker Group Uses Log4Shell to Cryptojack US Agency

Is the ICO going soft on fines?

Is Your Organization Quantum-Proof?

Jackson, Hillsdale schools reopening Thursday, November 17, following ransomware attack

Lake Charles Memorial assessing information after recent cyber attack

Lake Charles Memorial Health system victim of cyberattack and data leak by Hive

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

LockBit Remains Most Prolific Ransomware in Q3

Magento stores targeted in massive surge of TrojanOrders attacks

Majority of Companies Reduce Cybersecurity Staff Over Holidays

McDonald's, Coca-Cola Among Impersonated Brands In Massive Phishing Campaign

Medibank sticks by hacker ransom call

Microsoft Detects an Increase in Nation-State Attacks and Password Attacks

New Australian task force to "hack the hackers"

New image-based scam bypasses filtering, encourages victims to call attacker

New Ransomware Data Is In: What's Happening and How to Fight Back

New RapperBot malware targets gaming servers with DDoS attacks

New South Wales Labor backs data breach notice scheme

Nokia warns 5G security ‘breaches are the rule, not the exception’

North Korea funneled $1 billion for its nuclear programs through cyber crypto heists

Old Point National Bank Announces Data Breach Compromising Customers’ Social Security Numbers and Bank Account Numbers

Over 12,000 Cyber Incidents at Department of Defense (DoD) Since 2015, But Incident Management Still Lacking

Passwords: The Good, The Bad, and The Ugly

Preventing Cyber Threats Such as Ransomware, Phishing & Data Loss for Businesses

Protect Your Data by Deleting These Android Apps Now

Raising cybersecurity awareness – how to enrich the experience

Rallying cybersecurity and healthcare IT to support patient safety

Ransomware Activity Doubles in Transportation and Shipping Industry

Ransomware attack closes schools in two Michigan counties for third consecutive day

Ransomware defences: An extended to-do list

Relic Project: A New Threat Group or Rebranded Ransomware?

Researchers Discover Hundreds of Amazon RDS Instances Leaking Users' Personal Data

Rockstar Just Suffered Another Grand Theft Auto (GTA) Leak

Russia’s “software strike” catches Ukraine off guard

Security teams are responding to the ransomware threat, but remain on high alert

Should Ransomware Payoffs Be Outlawed?

Sierra College Files Notice of Data Breach Following Ransomware Attack

Since 2018, ransomware attacks on healthcare organizations have cost the world economy $92bn in downtime alone

State-Backed APT Group Activity Continuing Apace

Suffolk County, New York, Hack Shows Ransomware Threat to Municipalities

Suspected Iranian APT accessed federal server via Log4j vulnerabilit

Suspected Zeus cybercrime ring leader ‘Tank’ arrested by Swiss police

Taking a zero-tolerance approach to cyber hygiene

The manufacturing industry’s security epidemic needs a zero-trust cure

Understanding the Business Costs of Phishing Attacks

Updated RapperBot malware targets game servers in DDoS attacks

US government: Iranian hackers breached federal agency using Log4Shell exploit

Venus Ransomware: Zeoticus Spin-off Shows Sophistication Isn’t Necessary for Success

Warning: New RapperBot Campaign Aims to Launch DDoS Attacks at Game Servers

What are the most common passwords 2022?

What is Access Control?

What Is the McAfee Virus Pop-Up Scam? How to Get Rid of It

What is the Primary Method of Protecting Sensitive Data?

Why Are Healthcare Providers Prime Targets for Ransomware Attacks?

Why Cyber Risk in Critical Infrastructure Needs to be Understood and Prioritized

Why hackers target pediatric health records

15th November

15 Phishing Examples

44% of Financial Institutions Believe Their Own IT Teams Are the Main Risk to Cloud Security

800 Services of Greece’s Gov.gr Taken Down By Hackers

Alleged Chinese state-sponsored group hacked certificate authority, government agencies in Asia

Android malware: A million people downloaded these malicious apps before they were finally removed from Google Play

Anti-virus 'shark nets' won't protect us from cybercriminals, look inside to regain control of your data

API Vulnerabilities in the News: Optus Data Breach

APT Group Pilfers $11 Million From Africa, Asia, Latin America Using Spear Phishing Emails

As cyber attacks increase, here's how CEOs can improve cyber resilience

As trust in online spaces degrades, Canada bolsters resilience against cyber attacks

Australia considers making it illegal to pay off ransomware attackers

Beware! Massive YouTube Campaign Aimed to Steal Login Credentials

Billbug Targets Government Agencies in Multiple Asian Countries

Brokers highly exposed, easy marks for cybercrime

Canadian man arrested for alleged involvement in LockBit ransomware campaign

Canadian Supermarket Chain Sobeys Hit by Ransomware Attack

China-Based Campaign Uses 42,000 Phishing Domains

Chinese hackers target government agencies and defense orgs

City of Quincy still dealing with the aftermath of a cyber attack

Continental investigates cyber attack after report says data is for sale

Costa Rica State of Emergency Declared After Ransomware Attacks

Critical RCE Flaw Reported in Spotify's Backstage Software Catalog and Developer Platform

Critical vulnerability in Spotify’s Backstage discovered, patched

Cyber attack disrupts operations at Maple Leaf Foods, Canada's largest processed meat producer

Cybersecurity teams must proactively fight ransomware

Dallas Central Appraisal District (DCAD) still down following ransomware attack

Dallas Central Appraisal District website down after ransomware attack

Expect a Sharp Rise in Cyberattacks

Five online scams to avoid this festive season

Follow this one simple rule for better phone security

Global 2000 companies failing to adopt key domain security measures

Google to Pay $391 Million Privacy Fine for Secretly Tracking Users' Location

Google to Pay $392m in Landmark Privacy Case

Health insurer’s breach should rejig any short-term memory loss

Healthcare sector warned of Venus ransomware attacks

How Schools Can Become Cyber Resilient in 2023

How the role of CISO is evolving due to hybrid and remote work

HR-related phishing emails more likely to be clicked

Irish cyberattacks will grow due to continued cloud reliance, PwC warns

IT Leaders Adopting Threat Intelligence, But Challenges Persist

Lazarus Backdoor DTrack Evolves to Target Europe and Latin America

Manufacturing sector spends the most on ransomware payment

Many Cloud Attacks End in Financial Loss for Healthcare Sector

Medibank's customer data leaked by ransomware gang BlogXX on a dark web forum

More than a third of cyberattacks in Romania used ransomware

Moving your Microsoft environment to zero trust

New twist in Medibank hack nightmare as email reveals staff details also compromised

North Korean hackers target European orgs with updated malware

Of all cyberattacks, 43% target small businesses, SME Startups

Office of the Australian Information Commissioner (OAIC) data breach report shows key privacy risks

OopSec – The Mistakes Made by Top APTs

PCSpoof: New Vulnerability Affects Networking Tech Used by Spacecraft and Aircraft

Personal data of over 500,000 Oakbend Medical Centre's patients stolen by hackers

Police just launched an e-commerce fraud crackdown. Here's how to protect yourself from scammers

Police Celebrate Arrest of 59 Suspected Scammers

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Pro-Russian hackers claim cyber attack on FBI website

Ransomware attack keeps Jackson, Hillsdale county schools closed again Wednesday, November 16

Remote Code Execution Discovered in Spotify's Backstage

Researchers release exploit details for Backstage pre-auth RCE bug

Researchers Reported Critical SQLi and Access Flaws in Zendesk Analytics Service

Researchers Say China State-backed Hackers Breached a Digital Certificate Authority

Schools remain closed in Hillsdale, Jackson counties following ransomware incident

Sobeys’ silence on 'IT systems issue' lingers more than a week after disruption

Suffolk police publish victims information in mass data breach

Tech Addiction and Work Burnout Make us Prone to Phishing Attacks

The problems facing cybersecurity in the age of hackers and ransom threats

The real cost of ransomware is even bigger than we realised

Top enterprise email threats and how to counter them

Uber incident

Watch out! This latest scam steals your YouTube account

What are the Common Security Threats Businesses Face?

What is the dark web and what does it mean for your identity?

Whoosh Confirms 7.2 Million User Data Was Stolen, Being Sold By Hackers

Why You Should Embrace Zero-Trust

Work Health Solutions Reports Data Breach Following Unauthorized Access to Employee Email Account

Yet ANOTHER hospital chain is struck by cyberattack: Half a million patient records in Texas 'are leaked' - weeks after massive multi-state healthcare IT breach led to cancer delays and ambulance diversions

14th November

5 client objections to buying cyber, and how to overcome them

7 Common Ways Websites Are Hacked

42,000 sites used to trap users in brand impersonation scheme

A hacker stole $400M from FTX this weekend. Here’s what we know so far

Abortions, Drug Use Exposed in Cyber Attack on Australian Health Insurer Medibank

Again, Newsdiary Online Suffers Cyber Attack

Australia: Cyber Attack Prevention and Protection – The Government’s role in fixing the problem

Australia Considers Ban on Ransomware Payments After Medibank Breach

Australia Declares War on Cybercrime Syndicates

Australian Information Industry Association (AIIA) urges rethink on proposed data breach penalty increases

Back-end offices vulnerable to phishing

Binance Hacked by False Trading Bot Platforms – CEO Asks Users to Delete API Keys

Business costs are rising, so why should SMEs continue to invest in cybersecurity?

Can Hardware Crypto Wallets Be Hacked?

Crypto Projects Lose $657M to Hacks in October

Cyber attack disrupts operations at £1.3b ALMA space observatory in northern Chile

Cyberattacks Targeting States Increased

Cybersecurity in a post-pandemic world: What’s in store?

Data breaches are happening in every organization, no matter the size

Data encryption as a crucial step to manage data access and security

Data privacy lawsuits explode in healthcare, tech sectors

Department of Justice (DOJ) outlines ransomware campaign criminal complaint

Dissect open source ransomware code to understand an attack

Email or Blackmail? Your Suspicious Emails are Just Popping ‘MALWARE’

Experts warn of rise in phishing scams ahead of holiday shopping

Fangxiao: A Phishing Threat Actor

Five steps to reduce the risk of a ransomware attack in your organisation

Four security-risk Android apps you need you delete today

FTX Hack or Inside Job? Blockchain Experts Examine Clues and a ‘Stupid Mistake’

FTX Hacker Panicked, Still Holds $339M in Ether, Cryptos

GCHQ's advice on avoiding online shopping scams ahead of Christmas

GitHub Now Supports Private Vulnerability Reporting For Public Repositories

Google will pay $391M to settle Android location tracking lawsuit

Hackers are hiding malware in PNG files – Here’s what to watch for

Hartnell College confirms personal information present in ransomware attack

Have board directors any liability for a cyberattack against their company?

Hereford Bishop's school data breach: hackers stole more info

HHS cybersecurity center warns of new ransomware threat

Hong Kong: Photo firm and med group under fire for data breach

How IoT-Enabled Drop-In Solutions Enhance Security

Increased Use of Personal Devices Adding to Cyber Risks

Jackson, Hillsdale county schools canceled Tuesday, Nov. 15, due to ransomware attack

K-12 schools lack resources, funding to combat ransomware threat

K-12 schools lack resources, remaining top target for cyberattacks

Kraken Freezes Accounts Related to FTX and Alameda After Hacker Moves Funds Through Exchange

Latest Healthcare Data Breaches Have Varying Impacts on Health Data

Let’s be transparent about ransomware

Malaysia: False alarm on data breach claims, says Election Commission

Mass Email Extortion Campaign Claims Server Hack

Medibank faces possible class action after hack leaves millions of customers exposed

Medibank hackers dump more data

Medibank hackers release sensitive mental health data, threaten more leaks, in bid for ransom

Medibank hacks and data breach could lead to largescale legal action

Microsoft blames Russian military-linked hackers for ransomware attacks in Poland and Ukraine

More Medibank members' data leaked ahead of shareholders' meeting

New "Earth Longzhi" APT Targets Ukraine and Asian Countries with Custom Cobalt Strike Loaders

New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks

Newsdiary Online suffers another cyber attack

NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities

Online shopping fraud – a winter tale that always ends with fraudsters behind bars

Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign

Overcoming IoT Security Challenges

Ransomware: Why do businesses still pay up?

Ransomware attack responsible for shutdown affecting Jackson, Hillsdale schools

Research bolsters evidence of potential connection between ransomware groups and Russian government

Rules for the Road: Data Security and Collection

Russian Hackers Claim Cyber Attack On FBI Website

Russian hacktivists hit Ukrainian orgs with ransomware – but no ransom demands

Schools closed in Hillsdale, Jackson counties following ransomware incident

SMB Cybersecurity Concerns Persist Amid Geopolitical Tensions

Solarwinds agrees $26m settlement with shareholders over 2020 data breach

State of Phishing Report Reveals More Than 255 Million Attacks in 2022

Suffolk Clerk Received Multiple Alerts Before Cyberattack

Thales Denies Getting Hacked as Ransomware Gang Releases Gigabytes of Data

The Cost of Cyber Insurance Just Keeps on Rising

The Myth of Online Privacy: Risks, Dangers, and Solutions

The Risk of Cybersecurity Threats Continues To Grow for the Auto Industry

This new extortion scam threatens to hurt your reputation and steal your data

Top cybersecurity threats for 2023

TransUnion data breach exposes customers’ personal information

Twelve social media threats to watch for in 2023

Twitter Blue phishing cyberattacks spike as Elon Musk makes verification changes

U.S. Vision class action claims provider responsible for cyberattack, data breach

UK Shoppers Lost £15m+ to Scammers Last Winter

Ukrainian CERT Discloses New Data-Wiping Campaign

Unwanted emails steadily creeping into inboxes

User error is leaving hundreds of thousands of Android devices open to takeover

‘We would never do this’ Santander warns of scam email and shares how people can spot one

What Is a Privilege Escalation Attack?

What is Juice Jacking? Here's why you should be worried and ways to avoid it

What Is Phishing?

Whoosh confirms data breach after hackers sell 7.2M user records

Why Identity Protection is a Critical Component to Securing Singaporean Businesses

Will a Labeling System Solve IoT Security Challenges?

World Cup 2022 Scams Are Increasing as the Event Approaches

Worok Hackers Abuse Dropbox API to Exfiltrate Data via Backdoor Hidden in Images