Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 21 November 2022

Data Breaches Digest - Week 47 2022

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 21st November and 27th November 2022.

27th November

5.4 million Twitter users' stolen data leaked online - more shared privately

500 million users, including from India, at risk in WhatsApp data breach

African firms’ hacked data sold for $2,100

AIIMS ransomware attack: Key patient data at risk of sale on Dark Web, say cyber experts

Coinsquare Suffers Data Breach, but Here is An Update

Cyberattack on L.A. schools shows bolder action needed to stop ransomware

Data of 500 million WhatsApp users leaked online, here is what we know

Durham District School Board (DDSB) recovering from cyber attack that left schools without access to email or emergency contact information

Fears millions of confidential NHS patient files could be LEAKED after huge cyber attack

Five Tips to Protect Yourself from Phishing Scams

Google warns Gmail users over 'extreme' rise in scams - how to stay safe online

Hospitals at a High Risk of Cyberattacks – Digital Health at Stake

Iran’s Fars News Agency website hacked as part of anti-govt protests

Luxembourg : New wave of phishing attempts is making its rounds

Over 3.8m Bangladeshi WhatsApp users` data stolen

Over 5.4 Million Twitter Users' Data Have Been Leaked, Reports Say

Ragnar Locker Ransomware Leaked the Belgium Police’s Data

Scammers take advantage of Black Friday and Cyber Monday sales to target Christmas shoppers

Survey shows almost half of social media users got exploited in terms of online shopping scams

WhatsApp data leak: 500 million user records for sale includes Greeks and Cypriots

WhatsApp data leaked: Nearly 500 million user records put on sale online

WhatsApp Data Of Around 500 Million Users Put Up For Sale

WhatsApp numbers and data of about 490 million users leaked, available for sale on popular hacking community forum

Why data protection goes beyond security: The importance of a robust data protection regime

26th November

Aave Feeling the Squeeze Even After Failed Attempt by Mango Hacker

AIIMS ransomware attack: Key patient data at risk of leak, sale on Dark Web

All You Need to Know About Emotet in 2022

Banks warn to watch out for these banking scams in South Africa

Council data breach sees phone numbers and email addresses of people who objected to Yorkshire housing development published

Cyber attack on AIIMS from ‘outside India’

Data breach at Kannur University: Better cybersecurity mechanisms needed in all educational institutions

Data Breach investigations should be prioritized in Digital Data Privacy Law and Digital India Act

Data from 5.4M Twitter users obtained from multiple threat actors and combined with data from other breaches

Data of 500 million-plus WhatsApp users at risk: Countries affected and other details

Department for Work and Pensions (DWP): Scam warning issued as next cost of living payments sent to residents

Five scams to look out for this winter as online fraud trebles since 2020

GameStop Experiences a Data Breach, Customer Private Information Leaked Through Website

Hackers Publish Embarrassing Video Allegedly From Iranian News Agency

How to avoid becoming a fraud victim this Black Friday

How to Prevent Remote Access Trojan Attacks and Stay in Control of Your PC

IIROC-registered Canadian crypto exchange Coinsquare suffers data breach

Iran’s Fars news agency hit by cyber attack

Iran’s Fars news agency is hit by cyberattacks, blames Israel

NatWest scam warning over ‘quite convincing’ fake email featuring bank logo

Nearly 500 million WhatsApp User Records Sold Online

Pay Attention Users: Scammers Are Targeting Your Credit Card Details

Pornographic deepfakes to be made illegal in new measure

Ransomware gang targets Belgian municipality, hits police instead

Russia-based RansomBoggs Ransomware Targeted Several Ukrainian Organizations

The key elements of robust data security in healthcare

This Cyber Crime Group is Now Using Fake Android VPNs

WhatsApp data breach: 500 million users’ phone numbers on sale

25th November

5 cybersecurity predictions for 2023

5 Tips For Securing Your Small Business Against Cybersecurity Threats

6 out of 10 Irish SMEs have experienced a cyber attack

A Phishing Gang Known As Ducktail Is Using LinkedIn and WhatsApp To Hijack Business Accounts on Facebook

Active Threat of Black Basta Ransomware on US Companies by QakBot Malware

Almost 1,000 suspects arrested in Interpol operation which seized over $129 million

Better Business Bureau offers tips to avoid delivery scams

Black Friday: Preparing for Online Shopping Scams This Holiday Season

Can you make fighting cyber crime pay: Investors can back the war against hackers and rogue states - by joining the fightback

Canadian menswear chain Harry Rosen confirms cyber attack

Cincinnati State College one of several schools added to ransomware leak sites on Thanksgiving

ConnectWise Fixes XSS Vulnerability that Could Lead to Remote Code Execution

Cybercrime Carnage: Cryptocurrency-Targeting Attacks Abound

Cybercrime now more interconnected and likely to increase

Dell, HP, and Lenovo Devices Found Using Outdated OpenSSL Versions

Electronic patient record system shut down due to cyber attack

European Parliament's website hit by a DDoS attack launched by the pro-Russian Killnet group

Experts Find 1600+ Malicious Docker Hub Images

Experts Warn Remote Workers of Black Friday Security Threats

FBI lends helping hand in Continental breach investigation

Gateway Rehabilitation Center Reports Cyberattack Affecting 130,000 Patients

Global Police Celebrate $130m Cyber Busts

Google pushes emergency Chrome update to fix 8th zero-day in 2022

Google Releases Chrome Patch to Fix New Zero-Day Vulnerability

Guadeloupe kickstarts continuity plan after wide-ranging cyberattack

Hackers Rewritten The RansomExx Ransomware in Rust Language To Evade Detection

Holiday scam email season is here. Don’t fall for it

If you get an email with this phone number, don’t call! It’s a money-stealing scam

Incident of the Week: Twitter accused of covering up data breach that affects millions

Interpol arrests nearly 1,000 cyber criminals in months-long anti-fraud operation

Interpol Seized $130 Million from Cybercriminals in Global "HAECHI-III" Crackdown Operation

iPhone 14 Pro, PayPal, NatWest, and Stackscoin Crypto Wallet – Top Phishing Scams of the Week

IT supply chain: A fertile ground for ransomware attacks

Killnet Hits European Parliament Website with DDoS Attack

Maple Leaf Foods confirms it was hit by ransomware, won’t pay attackers

Massive Twitter data breach was far worse than reported, reveal security researchers

MFA Prompt bombing: What you need to know

Microsoft attributes alleged Chinese attack on Indian power grid to ‘Boa’ IoT vulnerability

Microsoft detects cyber-attack on Tata power via obsolete web server

More innovative ransomware, credential theft emerge

More than 100 arrested in UK as fraud-as-a-service iSpoof website seized by police

Moses Staff Hackers Publish Footage of Jerusalem Explosion

New Cybereason study reveals damage caused by Ransomware

New ransomware attacks in Ukraine linked to Russian Sandworm hackers

No further action needed after ransomware attack on Sunshine Coast Regional District (SCRD)

Ontario Teachers’ Data Stolen in Ransomware Attack

Overcoming unique cybersecurity challenges in schools

Police data breach puts victim-survivors of sexual offences at risk

Privacy commissioner says Saskatchewan Liquor and Gaming Authority (SLGA) cyber attack affected about 40,000

Ransomware attack on HomeTrust Mortgage's network compromised consumers' contact information and SSNs

Remote Code Execution Vulnerability Found in Windows Internet Key Exchange

Russian Hackers Target Dutch LNG Terminal

Russian hackers targeting Dutch gas terminal

Security expert on AirAsia ransomware attack

Social media is still a hotbed for scams

Sonder’s Data Breach Exposes Guest Records

Southampton County, Virginia reports ransomware incident

U.K. Police Arrest 142 in Global Crackdown on 'iSpoof' Phone Spoofing Service

UK: Cabinet Office alerted to data breach – and fails to respond for 10 days

Update Chrome Browser Now to Patch New Actively Exploited Zero-Day Flaw

Vice Society ransomware claims attack on Cincinnati State college

Watch Out Gamers: Hackers Exploiting MSI Afterburner to Deliver Coin Miner

WhatsApp data breach sees nearly 500 million user records up for sale

Why the public and private sectors must join forces to address cyber risk for national security

World Cup Crypto Scams are On the Rise – Look Out For These

Zero-Trust Management a Big Corp Challenge, Perimeter 81 Finds

24th November

14 PCI Compliance security best practices for your business

50k Customers of Revolut affected by Phishing Data Breach

AIIMS Delhi cyber attack: Need for legal framework for data security, experts suggest

An aggressive malware campaign targets US-based companies with Qakbot to deliver Black Basta Ransomware

Australia: Personal data complaints spike following Optus breach

Australian Cyber Task Force Looks to “Hack the Hackers” After Data Breach Crime Wave

Bahamut Cyber Espionage Hackers Targeting Android Users with Fake VPN Apps

Bahamut Spyware Group Compromises Android Devices Via Fake VPN Apps

Bahamut Using Fake VPN Apps to Steal Android User Credentials

Black Basta Ransomware Gang Actively Infiltrating U.S. Companies with Qakbot Malware

Criminals Commercialising Cybercrime, Launching Innovative Ransomware Attacks

Cyber Essentials Scheme Set for April 2023 Update

Cyber-Attacks on UK Councils – Why They Happen and What We Can Do About it

Daixin ransomware gang stole 5m customers' data records from AirAsia's network

Docker Hub repositories hide over 1,650 malicious containers

FBI joins German law enforcement probe into the Continental data breach

Hacker breaks into Zwijndrecht police server

Hackers modify popular OpenVPN Android app to include spyware

Incident Response Vs. Disaster Recovery: What’s The Difference and Which Do You Need?

Interpol seized $130 million from cybercriminals worldwide

Iranian hacker group publishes video of Jerusalem attacks

Ireland: GardaĆ­ arrest six over international phone call phishing scam

Is Ransomware Getting Commercialized?

'iSpoof' service dismantled, main operator and 145 users arrested

Japan considers creating new cyber defence agency as attacks ramp up in region

Killnet Group Claims Responsibility for European Parliament Cyber Attack

Lorenz Ransomware Alert: Risk to Healthcare, Public Sector

New crypto phishing scam discovered in the wild

New RansomExx Ransomware Variant Rewritten in the Rust Programming Language

Norman Public Schools’ employee and student leaked on dark web by ransomware gang

Police Seize iSpoof domains as UK’s largest bank call scam is disrupted

Police to text 70,000 victims in UK's biggest anti-fraud operation

RansomExx Ransomware upgrades to Rust programming language

Ransomware attacks against businesses on holidays and weekends result in greater disruption and costs

Ransomware Group Zeppelin's Costly Encryption Mistake

Ransomware incidents now dominate agenda at COBRA meetings

Ransomware suspected as AIIMS servers go down, trigger long waits

Russian DDoS Briefly Downs European Parliament Site

Scammers, bots dominate threat landscape ahead of Black Friday and Cyber Monday

SharkBot Malware Found in Android File Manager Apps With Thousands of Downloads

Sonder confirms data breach, documents and other PII potentially compromised

Suffolk Police 'extremely sorry' for sex offences data breach

The emergence of zero trust consumers

The Smith Family reports major cyber attack

This Android File Manager App Infected Thousands of Devices with SharkBot Malware

U.S. government seizes domains used in 'pig butchering' scams

UK Cops Lead Action Against Fraud Site that Made £100m+

What is Cyber Extortion and How Can It Be Prevented?

Why individual arrests will not shut down LockBit

Your staff are the frontline in your ransomware fight

Zeppelin Ransomware Proceeds Punctured by Crypto Workaround

23rd November

1/3 of global organisations were breached over 7 times in 2022

5G can reduce – but also create – security risk

6 Ways That Cybersecurity Protocols Prevent Data Breaches

7 Tips For Handling A Company Data Breach

34 Russian Cybercrime Groups Stole Over 50 Million Passwords with Stealer Malware

34 Russian Hacking Groups Stole 50 Million User Passwords

$2,100 is the average price for access to corporate data on Dark web in Middle East, Turkey and Africa (META) region

A flaw in ConnectWise Control spurred the company to make life harder for scammers

AAA Collections: Data breach compromises local Social Security numbers

Alameda-Backed Crypto Trading Firm 3Commas Says It’s Pretty Sure It Wasn’t Breached

All India Institute of Medical Sciences (AIIMS) Delhi server down in suspected ransomware attack, Outpatient Department (OPD) services hit

All India Institute of Medical Sciences (AIIMS) Delhi server down, ransomware attack suspected

Are merging US healthcare organizations especially vulnerable to cyberattacks?

Australia: Data breach penalty reforms get Senate committee green light

AxLocker Ransomware Adds a Twist: Stealing Discord Tokens

Backdoored Chrome extension installed by 200,000 Roblox players

Best practices for implementing a company-wide risk analysis program

Beware of phishing scams ahead of Black Friday shopping

Bitcoin Will Become ‘Less Important’ for Cybercrime Payments: Kaspersky

Black Friday sales: Experts warn of scams, everything you need to know

Brand Impersonation Phishing Scams by a Chinese Threat Actor Employs 42,000 Domains

Building a Security Culture With Behavior Design

China-based hackers target Asia-Pacific governments, including the Philippines, in spear-phishing campaign

Cisco Reveals Top Cybersecurity Threats Trends in Quarter 3 2022 (from August to October 2022) Ransomware accounts for 40% of total cyberattacks

Cloud Security Basics for Small Business

Correios de Portugal (CTT) scam warning

Customer Authentication Tips for Safer Holiday Shopping

Cyber Protection as Important as Missile Defense Systems: Retired NATO General

Cyber Weekend Prime Time for Malicious Hackers Targeting Businesses, Consumers

Cybersecurity in the age of personal devices for institutes of higher education

Cybersecurity pressures grow for hospitals as digital health tools multiply

Disability Services of the Southwest has data breach

Doctors’ Center Hospital Announces Data Breach Affecting Over One Million Patients

Dozens of Russian Groups Steal 50 Million User Passwords

Ducktail hackers now use WhatsApp to phish for Facebook Ad accounts

Ducktail Malware Operation Evolves with New Malicious Capabilities

Email Security as a Service

ETH Hacker Gets 10 Year Jail Term, But BTC Theft ‘May Not Be Criminal’ in China

EU Parliament Website Attacked After MEPs Slam Russian ‘Terrorism’

European Parliament comes under Russian cyber-attack hours after ‘state terrorism’ vote

European Parliament faces cyberattack from pro-Russia group after terrorism declaration

European Parliament hit by 'sophisticated' cyberattack

European Parliament Website Hit By Cyber Attack After Russian 'Terrorism' Vote

Experts claim that iPhone’s analytics data is not anonymous

Extortion site used in Medibank attack goes offline after Australian government pledges ‘offensive’ actions

Fake MSI Afterburner targets Windows gamers with miners, info-stealers

Fake subscription invoices lead to corporate data theft and extortion

FBI Joins Investigation Into Continental Cyberattack

FBI joins investigation into Continental ransomware attack

Fenbushi Founder Bo Shen Loses $42M in Stablecoins, Bitcoin, Ethereum to Hackers

Financial Industry is Third-Most Targeted By Hackers

For two years security experts have been secretly decrypting systems for Zeppelin ransomware victims

Four Impersonation Attacks Organizations Should Be Wary Of

FTX customers now target of phishing scams feigning to help recover funds

GATE Petroleum Company Announces Data Breach

Google alerts users about 5 key holiday season scams

Google bans four apps as millions of users warned to 'delete them now'

Guests' Personal Records Exposed in Sonder Data Breach

Hackers Exploiting Abandoned Boa Web Servers to Target Critical Industries

Health Care Management Solutions, LLC Reports Data Breach Affecting 500,000 Individuals

Healthcare Data Breaches Doubled in 3 Years: Here's Why

Here’s how to make sure your incident response strategy is ready for holiday hackers

HomeTrust Mortgage confirms data breach after a ransomware attack

How Health Care Data Encryption Fits Into Your Security Strategy

How To Stay Secure While Trading Online

Identity-Based Attacks Increase, MFA-Thwarting Tactics Rise

Japan mulls creating new defense body for fighting cyberattacks

Lockbit ransomware gang takes credit for attack on Quebec municipality

Mali GPU ‘patch gap’ leaves Android users vulnerable to attacks

Mango Market Hacker Loses Millions in Failed Aave Scheme

Medibank hacker blog mysteriously disappears but experts warn it may return

Medical Software Firm exposes vulnerable children’s sensitive data

Mercyhurst University Announces Data Breach

Microsoft says attackers are hacking energy grids by exploiting decades-old software

Microsoft warns: This forgotten open-source web server could let hackers 'silently' gain access to your system

Millions of iPhone and Android owners warned over dangerous ‘red flags’ on your device

Multi-Purpose Botnet and Infostealer 'Aurora' Rising to Fame

Navigating the World of RaaS: A Dive Into the Hive Ransomware Group as a Business

Nigeria: NCC-CSIRT speaks on Somnia Ransomware targetting Telegram accounts

Nighthawk Likely to Become Hackers' New Post-Exploitation Tool After Cobalt Strike

Ontario Secondary School Teachers’ Federation (OSSTF) victim of ransomware attack, notifies members of personal data compromised

Ontario secondary school teachers’ union notifies victims of ransomware attack

Panaseer Launches Guidance on Security Controls Ahead of EU's New Legislation

People, Stop Using “Samsung” As the Password For Your Phone

Pro-Russian hacktivists take down EU Parliament site in DDoS attack

Pro-Russian Killnet group hits UK organizations with DDoS attacks

Proofpoint: Watch Out for Nighthawk Hacking Tool Abuse

Qakbot Infections Linked to Black Basta Ransomware Campaign

Quantum Locker lands in the Cloud

Ransomware Attack at Dallas CAD Enters Third Week, Doesn't Impact Paying Taxes

Ransomware attack cripples AIIMS services

Ransomware attacks trend up on holidays, weekends

Ransomware Cyber attack on All India Institute of Medical Sciences (AIIMS) server

RansomExx becomes latest ransomware group to create Rust variant

Ransomware Knocks Out Dallas Appraisal District Website

Ransomware remains major threat to cybersecurity

Retired Software Exploited To Target Power Grids, Microsoft

Russian cybergangs stole over 50 million passwords this year

Sealing Off Your Cloud’s Blast Radius

Seven Examples of Spear Phishing Attacks

Should you have cyber insurance?

SocGholish finds success through novel email techniques

Sophos 2023 Threat Report: Criminals “Follow the Money” by commercializing cybercrime

Tech Sector Chaos Risks Serious Cyber Attacks

Template Injection Attacks: Protecting Against Camouflaged URLs

Texas health system employees complain of payroll issues following CommonSpirit cyberattack

The Biden administration has racked up a host of cybersecurity accomplishments

The Enemy Has Deep Pockets: How safe are your user accounts?

The FTX Hack Puzzle Is Being Solved Online, Is The MasterMind Sam Bankman-Fried?

The psychological warfare behind ransomware attacks

The Smith Family Cyber-Attack Raises Concerns For Aussies Experiencing Mental Health Issues

The Top 10 Most Common Cause of Data Breach

These crooks have stolen millions of passwords. Here's how to avoid becoming their next victim

Threat actors extend attack techniques to new enterprise apps and services

Top 6 security risks associated with industrial IoT

Top Cyber Threats Facing E-Commerce Sites This Holiday Season

UK Privacy Tsar Defends Controversial Enforcement Strategy

WannaRen Returns as Life Ransomware, Targets India

What Is an Evil Twin Attack and How Can You Prevent It?

What Is Personal Cyber Cover? 5 Things To Keep In Mind

Why businesses can’t afford to overlook cyber security due diligence in modern day M&A

Wright & Filippis Files Notice of Data Breach Affecting More than 877k Individuals

Yanluowang Ransomware's Russian Links Laid Bare

22nd November

90% of organizations have Microsoft 365 security gaps

AirAsia Data Leak: What You Need to Know

Android file manager apps infect thousands with Sharkbot malware

Australia: First state launches mandatory data breach notification scheme

Belarusian hacktivists claim to breach Russia’s internet regulator

Beware of Luna Moth Callback Phishing Scam

Binance Knows FTX Hacker? Here’s What Data Suggest

Community Health Network data breach compromises medical info

Credential Stuffers Steal $300K from DraftKings Customers

Cyber Attacker Earth Preta in Spear Phishing Campaign Via Google Drive Links

Cyber risk focus areas for portfolio companies

DOCS Medical Group discloses September ransomware incident

Doctors Center Hospital reports 1.2 million patients affected by ransomware attack

Donut extortion group also targets victims with ransomware

DraftKings denies platform breach, says about $300,000 stolen from compromised accounts

DraftKings Hacker Estimated To Have Cashed Out $300,000 In Customer Funds

Ducktail Cyberattackers Add WhatsApp to Facebook Business Attack Chain

Ducktail Hacker Group Evolves, Targets Facebook Business Accounts

Estonian Duo Arrested for Masterminding $575m Ponzi Scheme

Experts Warn Threat Actors May Abuse Red Team Tool Nighthawk

Farrer Park Hospital slapped with S$58,000 fine over data leak affecting 3,500 patients

Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks

Gateway Rehabilitation Center Announces Data Breach

Georgia Home Health and Hospice Provider to Pay $425,000 to Resolve Allegations of Inadequate Computer Security in Connection with Data Breach

Google bans four more Android phone and tablet scam apps - urging millions to delete them now

Google Blocks 231 Billion Spam, Phishing Emails in Past 2 Weeks

Hacker Gang DEV-0569 Found Using Google Ads To Push Ransomware Payloads

Hackers breach energy orgs via bugs in discontinued web server

Healthcare Data Breach At Pennsylvania Rehab Center Impacts 130K

Hive ransomware actors have amassed $100m from 1,300 businesses

Holiday ransomware attacks hit education harder than other sectors

How can we Prevent an Internet of Compromised Things?

How COVID-19 Changed Cybersecurity

How entrepreneurs can capitalize on the impending golden age of cybersecurity

How Leaked Chats Reveal Russian Ransomware Gangs' Collusion

How to Avoid Insider Threats Such as the Latest New York Post Hacking

How to Defend Against Deadbolt Ransomware Attacks On NAS Devices

How to Secure Email Attachments from Malware Risk

Industrial Control Systems, Hot Cyber Targets

Investigation underway after South Walton Fire District computer systems hacked

Is it advisable to change the WiFi password from time to time?

Is social engineering the next big cyber risk?

Know thy enemy: thinking like a hacker can boost cybersecurity strategy

‘Last Call’ to Prepare for Two US Privacy Laws

LockBit 3.0 Says It's Holding a Canadian City for Ransom

Lookout data shows credential theft mobile attacks on the rise in US Government agencies

Lorenz Ransomware Targets Large Healthcare Orgs, HC3 Warns

Luna Moth Gang Invests in Call Centers to Target Businesses with Callback Phishing Campaigns

Malware-as-a-Service on the rise, ransomware pivots from Bitcoin: Kaspersky predicts crimeware and financial threats in 2023

Mango Markets hacker allegedly feigns Curve short attack to exploit Aave

Microsoft feedback product being exploited to send phishing links

New study reveals the damage caused by ransomware attacks against businesses on holidays and weekends

Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) Urges Adoption Of Two-Factor Authentication As Somnia Ransomware Targets Telegram Accounts

Not even charities are safe anymore: Hackers target The Smith Family with credit card details and phone numbers stolen in the cyber attack

Organizations Revising and Ramping Up Prevention and Response Strategies to be Ransomware-Ready

Ouch! Ransomware gang says it won’t attack AirAsia again due to the “chaotic organisation” and sloppy security of hacked airline’s network

Personal data of nearly 4,000 people leaked in hack of Radio Free Asia

RansomExx Upgrades to Rust

Ransomware topmost threat to organisations globally

Receivables Performance Management LLC Reports Data Breach Impacting over 3.7 Million People

Researchers Warn of Cyber Criminals Using Go-based Aurora Stealer Malware

Retail braces for wave of holiday phishing, ransomware scams

Scammers siphon millions from Kiwi victims in elaborate cyber attacks

Security Experts Secretly Helped Zeppelin Ransomware Victims for Two Years

SharkBot Banking Trojan Returns to Google Play Store

Singapore: Police Advisory On The Re-Emergence Of Bank Phishing Scams

Singapore Police warns investors about post-FTX phishing scams

Six Things To Consider When Designing Your Cybersecurity Awareness Training Program

Spear Phishing vs. Phishing

Suffolk Police data breach saw identities of sexual offence victims from schools published online

The Yanluowang ransomware group in their own words

This Malware Installs Malicious Browser Extensions to Steal Users' Passwords and Cryptos

Three-quarters of retail, hospitality applications have security flaws

‘Tis the Season! 3 Ways High-Net-Worth Families Can Protect Against Holiday Phishing Scams

Top Black Friday scams to avoid in 2022

Twitter Takeover Fuels Phishing Scams, Fake Verified Accounts

U.S. Authorities Seize Domains Used in 'Pig butchering' Cryptocurrency Scams

US Department of Justice (DoJ) Seizes 7 Domains used in Pig Butchering Cryptocurrency Scam

US Takes Down Domains Used in 'Pig Butchering' Cryptocurrency Scheme

Warning: This scam starts with a fake invoice. It could end with crooks stealing your data

Windows zero-day vulnerability exploited by hackers

21st November

3 Steps for Creating a Strong Security Culture in the Workplace

8 Ways to Stay Safe Trading Crypto

9 VOIP security best practices to consider for your business

10 organizations that suffered massive data breaches in 2022

33% of industrial computers in Oman were targeted in 2022

42,000 phishing domains discovered masquerading as popular brands

A blitzkrieg of ransomware

A Third of Global Organizations Were Breached Over Seven Times in the Past Year

Amazon addresses vulnerability affecting AWS AppSync

Apps with over 3 million installs leak 'Admin' search API keys

Attackers bypass Coinbase and MetaMask 2FA via TeamViewer, fake support chat

Aurora infostealer malware increasingly adopted by cybergangs

Australia's wealth lures cybercriminals

Aviation Starting to Get Hit with Rise of Cyberattacks Post-Pandemic

Better Together: Why It's Time for Ops and Security to Converge

Breaches in healthcare

Building societies: Cyber threats and solutions

Building tailored cyber resilience for critical infrastructure

California County Says Personal Information Compromised in Data Breach

Callback phishing campaign targets legal and retail sectors

Chinese threat group spoofs Coca-Cola and McDonald’s in sophisticated phishing campaign

Combating digital fraud

Commonwealth Care Alliance of California Reports Recent Data Breach Leaking Patient’s Protected Health Information

Covering Data Breaches in an Ethical Way

Criminals 'follow the money' by commercialising cybercrime, launching more 'innovative' ransomware attacks and doubling down on credential theft

Critical consequences: securing the path to Net Zero

Crypto sleuth debunks 3 biggest misconceptions about the FTX hack

Cyber as important as missile defences

Cyberattackers raise the bar

Cyberattacks continue to rise as bad actor motivations evolve

Cyberthreats keep CEOs awake at night

Daixin Ransomware Gang Steals 5 Million AirAsia Passengers' and Employees' Data

Daixin Team claims AirAsia ransomware attack with five million customer records leaked

Defending against Hive ransomware: It’s time to use the attackers’ tools

Department of Justice (DOJ) shuts down ‘pig butchering’ domains responsible for $10 million in victim losses

Eagle Bank Reports that Recent Data Breach Resulted in Compromised Customer Social Security Numbers

Emerging cyber threats

Enterprise healthcare providers warned of Lorenz ransomware threat

Farrer Park Hospital fined S$58,000 over data breach affecting medical information of 2,000 people

FIFA World Cup 2022: Beware of these cyberattacks, scams

Five ways to guarantee the safety of customer data

Forefront Dermatology To Pay $3.75M In Healthcare Data Breach Settlement

Food Stamps: Fraud and Theft Are on the Rise - How Can You Prevent Them?

FTX Hacker Funds Are on The Move, Here’s Where They’re Headed

FTX Hacker is on the move

FTX Hacker Moved Nearly $200 Million Of Ether To Different Wallets

Gone phishing: How cyber criminals hook unsuspecting victims with scams

Google Chrome extension used to steal cryptocurrency, passwords

Google Cloud Platform now automatically detects highly common ransomware dropper

Google Drive malware is targeting governments around the world

Google Identifies 34 Cracked Versions of Popular Cobalt Strike Hacking Toolkit in the Wild

Google releases 165 YARA rules to detect Cobalt Strike attacks

Google seeks to make Cobalt Strike useless to attackers

Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet

Google Wins Legal Battle Against Glupteba Botnet

Hackers Gain Control of LED Billboard for Minutes to Post Racy Images

Hackers steal $300,000 in DraftKings credential stuffing attack

Higher levels of cyber awareness needed to combat festive season cybercrime

How can we detect the cyberattacks of tomorrow?

How Do Medical Data Breaches Happen?

How Out-of-Band Authentication Helps You Stay Safe Online

How Phishing Attacks Ruin Microsoft 365 and Google Workspace

How To: Fight Cyber-Threats in the Metaverse

How to combat ransomware threats in the education sector

How To Keep Your Brand Safe This Black Friday And Cyber Monday

How to shield the router against a cyber attack with these simple steps

How Xi Jinping leveled-up China's hacking teams

Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors

MFA Still Works Despite Push Fatigue Surge

Microsoft Email Security Bypasses Instagram Credential Phishing Attacks

Millions of Android users should to delete four apps immediately according to Google

Montreal-area city hit by ransomware

Most common scams to watch out for on Black Friday

New AXLocker Ransomware Steals Victims' Discord Tokens

Notorious Emotet Malware Returns With High-Volume Malspam Campaign

Personal data of AirAsia Malaysia, Indonesia and Thailand passengers allegedly leaked due to ransomware

Personal data of over 33,000 Kannur University students in hackers’ forum

Phishing Attacks Exploit Microsoft's Zero-Day Vulnerability, Sneak Past Windows Security Warnings

Phishing scams are spreading like wildfire and this time, it’s a little more serious

Phishing to NFT Scams Profiting from the 2022 Qatar World Cup

Private Equity Exposed by Cyber-Hygiene Shortcomings

Ransomware response requires better federal, state, local coordination

Researchers Reveal Details of New Threats: AXLocker, Octocrypt and Alice Ransomware

Security Is Very Important in Online Gaming

Sinister AXLocker Ransomware Adds Insult To Injury By Stealing Your Discord Account

Steep rise in cybersecurity risks challenges Canadian organizations

Ten Charged in $11m Healthcare BEC Plots

The feds warn that hackers could hold Midwestern harvests hostage with ransomware

The hidden price tag of Black Friday: popular scams and how to avoid them

These World Cup 2022 scams will steal your data and your money - how to stay safe

This sneaky ransomware gang keeps changing tactics to spread its malware

Thousands of Algolia API Keys Could Expose Users' Data

Two Estonians arrested for running $575M crypto Ponzi scheme

Two public schools in Michigan hit with a ransomware attack

US, Estonian authorities arrest two over $575 million cryptocurrency fraud

Victims in Singapore lose over S$133,000 in scam linked to unpaid fines, more than 100 police reports filed

Westmount is victim of cyber attack

Who Is the FTX Hacker? On-Chain Clues Shed Light on the Situation

Why an ironclad cyber defense strategy will be a top tech priority in 2023

Why Healthcare Cybersecurity Is a Team Effort

Why healthcare is a current target for cybersecurity attacks

World Cup phishing emails spike in Middle Eastern countries