Editor's Message

Welcome to DBD. On March 8th we celebrated our 4th Anniversary and the 1st Anniversary of our PRiSM application, officially endorsed by the SANS Institute. Despite recent personal issues that have impacted the amount of time I have been able to dedicate to both projects, I have been doing my best to keep everything as up-to-date as possible, and I would like to take this opportunity to thank everyone for their patience and support whilst I navigate through this very difficult time. Stay safe. :)

Monday 14 August 2023

Data Breaches Digest - Week 33 2023

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 14th August and 20th August 2023.

20th August

32% Nigerian employees, others vulnerable to scams

Action Fraud warn over free Oral-B electric toothbrush scam emails

Australia’s .au domain administrator denies data breach after ransomware posting

Baghdad advertising boards turned off over porn screening

Baghdad shuts advertising screens after hacker displays explicit content

Baghdad shuts advertising screens after porn screening

Bangladesh: Cyber-security and its priorities

Cardholders beware: Scamsters lure with increase in limit offers

Cuba ransomware uses Veeam exploit against critical U.S. organizations

Cyberattack keeps hospitals' computers offline for weeks

Cyberattacks on critical infrastructure: UK signals a warning to businesses

Data Fabric: The Intricate Shield Against Evolving Cyber Threats

Don’t take the phishing bait – you may be caught hook, line and sinker

E-wallet phishing scams to look out for

Hackers threaten patients after massive cyber attack on Israeli hospital

Interpol arrests 14 who allegedly scammed $40m from victims in 'cyber surge'

North Korean hackers target US-South Korea military drills

Suffolk police to visit data breach victims in person

What Is Digital Trust and Why Is It Vital for Safe Online Transactions?

19th August

Binance Bridge Hacker Hit By $30M Liquidation On Venus

Bunker Hill Community College discloses May ransomware attack

CISA Releases Cyber Defense Plan For Remote Monitoring And Management (RMM) Software

Cloudflare's Report Unveils Phishing Trends & The Most Impersonated Brands

Credit Card Information Compromised? Follow these precautionary steps

Estée Lauder Cosmetics Says Cyberattack Is Contained

Hacker Exploits Optimism-Based Decentralized Credit Market for $7,200,000 Worth of Ethereum

Hackers use VPN provider's code certificate to sign malware

Has Your Wi-Fi Been Hacked? Here’s How to Know and How to Prevent It

LockBit, Cl0P expand ransomware efforts

Luxair customer information compromised in data breach

Malvertising Menace: Cyber Crooks Thrive in the Weakened Ad Realm

Man charged with ‘possessing documents likely to be useful to terrorists’ after PSNI data breach

Man charged with terrorism offences after Northern Ireland police data breach

Meet FraudGPT: The Dark Side Twin of ChatGPT

New Juniper Junos OS Flaws Expose Devices to Remote Attacks - Patch Now

New phishing campaign recognized in Europe and South America

Nigeria among countries with high rate of online scam activities globally

Northern Ireland: Man, 50, will appear in court following major data breach at PSNI

Northern Ireland: Police data breach: man charged with possession of documents ‘likely to be useful to terrorists’

PSNI data breach: Man charged over documents linked to Freedom of Information (FoI)

PSNI data breach: Man charged with possessing documents 'likely to be useful to terrorists'

PSNI data breach: Man, 50, charged in Northern Ireland

Six privacy and security questions and answers to clear up once and for all

Synthetic identity fraud fastest growing financial crime in U.S.

Tesla begins notifying workers who were affected by data breach

Thousands of Android Malware Apps Using Stealthy APK Compression to Evade Detection

Two more attacks involving sensitive data: a plastic surgery center in Brazil and a psychiatric hospital in Lithuania

University of Missouri warns students of potential data breach to administrative software

WoofLocker Toolkit Hides Malicious Codes in Images to Run Tech Support Scams

18th August

4 ways simulation training alleviates team burnout

5 common types of phishing and how to prevent being a victim

10 Tips for Preparing for Supply Chain Ransomware Attacks

14 Suspected Cybercriminals Arrested Across Africa in Coordinated Crackdown

30% of phishing threats involve newly registered domains

About 2000 Citrix NetScalers Were Compromised in Massive Attack Campaigns

After cyber breach, Point32Health suffers financial losses

Arrest made by detectives investigating the PSNI data breach following searches in County Londonderry

Bailey Cavalieri LLC Files Notice of Data Breach Affecting 203,136 Individuals

BNB hacker loses over $53M after getting liquidated in market crash

China Blames US Intelligence Agencies for Earthquake Centre Cyber Attack

Chinese Hackers Use DLL Hijacking to Target Asian Gamblers

Cyber attack forces American cleaning products giant Clorox to switch to manual operations

Cybersecurity Study Reveals Web App Vulnerability Crisis

Data breach at the Liquor Control Board of Ontario compromised customers' personal information

FBI: Space industry espionage is latest cyber threat

FBI, Air Force warn of cyberattacks on space industry by ‘foreign intelligence operations’

Fears for Fermanagh officers caught in PSNI data breach

Federal agencies gear up for zero trust executive order deadline

Flashpoint report shows Australia among ‘most targeted countries’ for ransomware attacks in July

Germany’s national bar association investigating ransomware attack

Google Chrome's New Feature Alerts Users About Auto-Removal of Malicious Extensions

Hacker group attacks Japan nuclear websites over Fukushima water plan

Hacker group attacks Japan nuclear websites over Fukushima water plan

Hackers compromise Zimbra email accounts in phishing campaign

Haggling With Hackers: Surprising Lessons From 50 Negotiations With Ransomware Gangs

Harvard Pilgrim's parent company attributes $100M loss to ransomware attack

Healthcare industry hit hardest by data breaches, Connecticut data shows

Illinois hospital notifies patients, employees of data breach after Royal gang posting

India: AC Generators Maker TD Power Systems' Website Hacked

Indies ‘in standstill’ after cyber attack hits IT supplier

International police arrest 14 in ‘Africa Cyber Surge’ operation

Interpol arrests 14 suspected cybercriminals for stealing $40 million

Interpol-Led Africa Cyber Surge II Nets 14 Cybercrime Suspects

John Taylor High School shares pupils' exam results in data breach

Key Takeaways From Verizon’s 2023 Data Breach Investigation

LockBit’s persistence in Australia and the region is a wake-up call for least privilege

Massive phishing campaign targets Zimbra users

Missouri: More potential victims of data breach notified

Missouri Grapples With Medical Records Data Breach

Morris Hospital & Healthcare Centers Files Notice of Data Breach Affecting 248,943 Individuals

Morris Hospital attack impacts 250k individuals, medical data exposed

Multi-nation operation nabs cybercriminals behind $40M loss

New BlackCat Ransomware Variant Adopts Advanced Impacket and RemCom Tools

New phishing campaign recognized in Europe and South America

New Wave of Attack Campaign Targeting Zimbra Email Users for Credentials Theft

NHS Tayside staff ‘raging’ after personal details shared in data breach

Northern Ireland: Dungivan searches and arrest in PSNI data breach probe

Northern Ireland: Man arrested under Terrorism Act in connection with PSNI data breach

Northern Irish police make another arrest after data breach

Not even a quantum computer should be able to crack new Google keys

Optimum Health Solutions hit by cyber breach

Orrick Law Firm’s Security Mishap Leads to Healthcare Data Breach Lawsuit

Play Ransomware Targets Victims Via MSPs’ Remote Monitoring and Management (RMM) Software

Prince George's County schools working to restore system following ransomware attack

Proxyjacking and Cryptomining Campaign Targets GitLab

PSNI arrests 39-year-old following a significant breach that leaked sensitive police records

PSNI data breach: Further arrest made after search in Dungiven

PSNI data breach: Second man arrested by Northern Ireland police

PSNI officer's laptop and notebook 'fell from moving vehicle' on M2 motorway

PwC data breach compromised the data of 82k Banco Popular de Puerto Rico customers

QR Code Campaign Targets Major Energy Firm

Ransomware 2023: 1,500 Victims Already Claimed in H1

Ransomware attack on Cleveland City Schools prompts investigation

Ransomware gang threatens Raleigh Housing Authority months after devastating attack

Reinventing OT security for dynamic landscapes

School apologises as all students' A-Level results shared in 'data breach'

ShopBack fined $74,400 over data leak that affected more than 1.4 million users

Siemens Healthineers responds to alleged data theft by LockBit ransomware gang

Synthetic identity fraud fastest growing financial crime in U.S.

There's another BlackCat ransomware variant on the prowl

The Role of AI in Cybersecurity: Current Limitations and Future Possibilities

The Vulnerability of Zero Trust: Lessons from the Storm 0558 Hack

Why it’s Time to Kick the Password Habit

Why Whac-A-Mole is not a strategy for defending against ransomware attacks

WinRAR flaw lets hackers run programs when you open RAR archives

Would You Infect Others to Rid Yourself of Ransomware?

Zimbra credentials targeted in global phishing campaign

Zimbra users in Europe, Latin America face phishing threat

17th August

7 Data Breaches That Left Schools in the Lurch

300 independent retailers affected by cyber attack

A Deep Dive into CL0P Ransomware

AI Could Be Phishing Schemes’ Ultimate Weapon - Or Worse

Alarming lack of cybersecurity practices on world's most popular websites

AnonFiles Shuts Down After Massive User Abuse

Anonfiles shuts down, citing user abuse

BankCard USA data breach exposes thousands

Banks defending their right to security are missing the point about consumer trust

BlackCat's Sphynx ransomware embeds Impacket, RemCom

Brazilian hacker claims Bolsonaro asked him to hack into the voting system ahead of 2022 vote

Breached for years: How long-term cyber attacks are allowed to linger

CentroMed data breach affected 350,000 people, San Antonio health care provider tells state Attorney General

China-Linked Bronze Starlight Group Targeting Gambling Sector with Cobalt Strike Beacons

Chinese hackers accused of targeting Southeast Asian gambling sector

CISA Adds Citrix ShareFile Flaw to Known Exploited Vulnerabilities (KEV) Catalog Due to In-the-Wild Attacks

CISA posts remote monitoring & management systems cyber defense plan

CISA Unveils Plan to Slow the Hacker Abuse of Remote Monitoring and Management (RMM) Tools

CISA Urges Patching of Actively Exploited Citrix Bug

CISA, experts warn of Citrix vulnerabilities being exploited by hackers

Citrix ShareFile vulnerability actively exploited (CVE-2023-24489)

Cleveland, Tennessee Schools Find Ransomware in Their Network

Clorox hack forces system shutdown, business disruption

Colorado State University falls victim to Cl0p in MOVEit hack

Cuba Ransomware Deploys New Tools: Targets Critical Infrastructure Sector in the U.S. and IT Integrator in Latin America

Cyber attack on Prince George's County Public Schools compromised 4,500 staff accounts

Cybersecurity company discovers phishing campaign that uses malicious QR codes

Dallas ransomware attack tally rises to 30,253 people as HHS opens investigation

Dallas Ransomware Victim Count Climbs, Feds Investigate

Data Breach Alert: Discord.io Users’ Data for Sale on Dark Web

Data breach by Norfolk and Suffolk police 'shouldn't have happened'

Discord.io suffers massive data breach, announces closure

‘Extreme’ user abuse leads AnonFiles operators to shut down hosting service

Florida Fire Department's ambulance billing hit by data breach

Further questions for PSNI bosses over timeline of laptop and data theft from car

GDPR from a Data Privacy Officer’s Perspective: 4 Keys to Know

Generations Federal Credit Union hit with potential class-action lawsuit over data breach

Google Fixes 26 Bugs Amid Fake Update Warning

Google paves way for FIDO2 security keys that can resist quantum computer attacks

Google proposes new security keys to protect data from future quantum attacks

Gozi strikes again, targeting banks, cryptocurrency and more

Hackers ask $120,000 for access to multi-billion auction house

Hackers threaten to publish Israeli leaders’ medical data

Has a leading UK jeweller fallen victim to ransomware gang BianLian?

Heavy workloads driving IT professionals to resign

In Northern Ireland, even a data breach can be deadly – and the ripple effects could be disastrous

Jefferson Health warns 4,100 patients of possible data breach at Cherry Hill hospital

Jefferson Health warns Cherry Hill hospital patients of potential data breach

Kansas Bureau of Investigation (KBI) looking into possible data breach in Kansas newspaper case

Karma Catches Up to Global Phishing Service 16Shop

Less than one-fifth of ransomware victims paid in first half of 2023

LockBit lies about leaking the data, victims still pay

Massive phishing campaign exploits QR codes to steal Microsoft credentials

Microsoft PowerShell Gallery vulnerable to spoofing, supply chain attacks

Missouri grappling with effects of data breach of medical records, student info

National Cyber Security Centre (NCSC) expands incident response scheme to support smaller at-risk organizations

Navigating Work and Travel: Essential Actions for Companies Looking to Keep Their Data Secure

New Apple iOS 16 Exploit Enables Stealthy Cellular Access Under Fake Airplane Mode

New LABRAT Campaign Exploits GitLab Flaw for Cryptojacking and Proxyjacking Activities

NoFilter Attack: Sneaky Privilege Escalation Method Bypasses Windows Security

Novel phishing ploy uses QR codes, Bing URL redirects, fake Microsoft security alerts

Over 74% of organizations see a rise in AI use by cybercriminals

Phishers use QR codes to target companies in various industries

Phishing attacks continue to lead as a primary threat vector with a 62% increase over the last year

Phishing campaign steals accounts for Zimbra email servers worlwide

Phishing Invades Security

Phishing Spree Targets Zimbra Collaboration Account Holders

'Play' Ransomware Group Targeting MSPs Worldwide in New Campaign

PSNI data breach: Man released after arrest

Radius Global Solutions said MOVEit Transfer exploitation compromised the data of 600k individuals

Ransom gangs target Italy and Germany as attacks rise

Ransom victims less willing to pay: the five most notorious gangs

Ransomware affected 1.5 million users in Canada

Ransomware and Affirmative Defenses

Ransomware attack on Rapattoni disrupts real estate listings in the US

Ransomware Surges With 1500 Confirmed Victims This Year

Rhysida Ransomware Revealed

‘Royal’ Is Trying to Make Itself the King of Ransomware

Russian Hackers Use Zulip Chat App for Covert C&C in Diplomatic Phishing Attacks

Schools Are a Top Target of Ransomware Attacks, and It’s Getting Worse

ShopBack fined S$74,400 for data breach of over a million users

SOPHOS Uncovers Ransomware Groups Using Similar Patterns To Attack Victims

Tennessee school hit with ransomware as gangs ramp up attacks ahead of new academic year

The Cost of a Data Breach Reaches an All-Time High

The road ahead for ecommerce fraud prevention

Thousands of Android APKs use compression trick to thwart analysis

Triple Extortion Ransomware and the Cybercrime Supply Chain

United States Department of Agriculture (USDA) warns food purchase programs vendors of fraudulent phishing emails

What Is a Data Breach + How Do You Prevent It?

Why You Need Continuous Network Monitoring?

16th August

3 strategies that can help stop ransomware before it becomes a crisis

10 Biggest Crypto Heists of All Time – How Much Money Was Stolen?

10 Ways to Keep Your Passwords Safe from Hackers

70% of web applications have severe security gaps

15,000 cyberattacks detected per second in Taiwan

A Third of UK University Students Targeted By Fraud

All Google Chrome users urged to check their browser now after eight ‘high’ risk bugs are found – they could cost you

Aon Survey Reveals Major Cyber Incidents

Bangladesh's NID server shut for 38 hours for hacking threat

Barracuda Networks Ransomware Report Surfaces Attack Surge

BBC's MasterChef Pookie has Instagram hacked at 60k followers and held for ransom

Beware of Cryptocurrency Recovery Scams

Beware the Emergence of Shadow AI

British Columbia businesses all just one click away from being hacked

Building a proper food cybersecurity defence plan

Canada: Businesses all just one click away from being hacked

Canadian marketing company hit by data breach, says Ontario liquor board

CertiK drops findings on alleged scammer who stole $1M in crypto

ChatGPT’s badboy brothers for sale on dark web

China: Ministry warns of data security risks after US agencies identified behind cyberattack on Wuhan Earthquake Monitoring Center

CISA publishes plan for remote monitoring tools after nation-state, ransomware exploitation

CISA warns of critical Citrix ShareFile flaw exploited in the wild

CISA, experts warn of Citrix vulnerabilities being exploited by hackers

Citrix zero-day hack impacts thousands of NetScaler servers

Cl0p dumps all MOVEit victim data on clearnet, threat insiders talk ransom strategy

CL0P Ransomware, MOVEit-related Vulnerabilities, and Actions to Defend Against Ransomware Attacks

Clorox Operations Disrupted By Cyber-Attack

Colorado Department of Higher Education Data Breach Leaks Personal Information Spanning Over 13 Years

Concerns of Sensitive Data Leak Following Cyber Attack on Israeli Hospital

Connecticut school district lost more than $6 million in cyber attack, so far gotten about half back

Cost of a data breach 2023: Healthcare industry impacts

Critical Security Flaws Affect Ivanti Avalanche, Threatening 30,000 Organizations

Crowd2Fund phishing scam: Hackers had access for less than one hour

Cyber threat risks reach three-year high

Cyberattacks Are On The Up: What Are The Risks & Remedies For Aviation?

Digital Safety Advice is Not Getting Through to Women

Discord.io suffers data breach, goes offline

Estonia: Phishing for personal data a threat to everyone's security

Experts Uncover Weaknesses in PowerShell Gallery Enabling Supply Chain Attacks

File sharing site Anonfiles shuts down due to overwhelming abuse

Four in 10 UK adults targeted by scammers

Gigabud RAT Attacking Android Users to Steal Banking Credentials

Google Eyes Quantum with New Security Key Implementation

Google Introduces First Quantum Resilient FIDO2 Security Key

Google released first quantum-resilient FIDO2 key implementation

Hacker Creates Memecoin Using Funds Stolen From Base Network DEX

Here’s what you need to do after your personal data is breached

Hong Kong: Sixteen-year-old among five arrested for HK$300,000 phishing scams

How AI has increased risk of businesses falling victim to cyber attacks

How CISOs break down complex security challenges

How Google Workspace-based Organizations can leverage Chrome to improve Security

How MSSPs can leverage dark web intelligence to counter emerging threats

How to Protect Your Cryptocurrency with a Cold Wallet

How to Stay Safe on Threads: 6 Tips

If You Have These 6 Personality Traits, You're More Vulnerable to Phishing Scams

If you use payment apps like Venmo, CashApp or Zelle, federal scam experts want you to read this

Iran and the Rise of Cyber-Enabled Influence Operations

Ironic: Over 100,000 Hackers Have Details Exposed By Malware

Is it Time for a Cybersecurity Rethink?

Ivanti Avalanche vulnerable to attack by unauthenticated, remote attackers (CVE-2023-32560)

Jefferson Cherry Hill warns of possible data breach. What info may have been exposed?

Latin Americans fall prey to more online scams as cybersecurity lags

LinkedIn accounts hacked in global campaign

LinkedIn users targeted in account hijacking campaign

Liquor Control Board of Ontario (LCBO) data breach leaks customers' personal information

Major LinkedIn Account Takeover Campaign Underway

Major U.S. energy organization targeted in QR code phishing attack

Mass-Exploitation Campaign Targets Citrix NetScalers With Backdoors

Massachusetts health officials warn of data breach involving more than 134K people

Massive 400,000 proxy botnet built with stealthy malware infections

Monti ransomware targets legal and government entities with new Linux-based variant

National Cyber Security Centre (NCSC) expands Cyber Incident Response service more widely

Nearly 2,000 Citrix NetScaler Instances Hacked via Critical Vulnerability

New Database of Maritime Cyber Incidents Aims to Improve Awareness and Response

Norfolk and Suffolk police admit to data breach impacting 1,230 people

Northern Ireland: Man arrested in County Armagh in relation to PSNI's data breach

Orrick Law Firm Under Fire Over Client Data Breach

Over half of health and social care businesses hit by cyber attacks

Passwordless is more than a buzzword among cybersecurity pros

Phishing campaign used QR codes to target large energy company

Progressive class action claims data breach allegedly affects 347,100 customers

PSNI data breach: Man arrested and questioned after searches in Lurgan

PSNI data breach: Man arrested in investigation into linked criminality

Raccoon Stealer malware back with updated version following administrator arrest

Ransomware down 57%, Secureworks warns against complacency

Ransomware groups attack victims with similar patterns

(Re)check your patched NetScaler ADC and Gateway appliances for signs of compromise

Report finds exposed sensitive data in more than 30% of cloud assets

Scammers Exploit Hacked Websites For Phishing

Seven ways you can step-up your cybersecurity

Stimulus Scam: Do Not Open IRS Emails About a Third Round of Checks

The Dallas ransomware attack exposed private data for thousands of people. Now what?

The “Made by Apes” Data Breach: A Closer Look

The New Frontline of Geopolitics - Understanding the Rise of State-Sponsored Cyber Attacks

The Risk of Accidental Data Exposure by Generative AI is Growing

Think twice before accepting notifications on Chrome: threats on the rise

This subscription malware can steal your private data from 60+ popular apps — how to avoid it

Three reasons why your smartphone needs security protection

University of Missouri System employee, student personal information impacted in global data breach

Users of cybercrime forums often fall victim to info-stealers, researchers find

Victims charity calls for changes after police data breach

Web app warning: 74% of apps with Personally Identifiable Information (PII) are vulnerable to a ‘major exploit’

Wellington City Council unable to contact those worst-affected by privacy breach

What's the State of Credential theft in 2023?

Why Device Microsegmentation is Important for Operational Technology (OT) and IT

15th August

1.5 Million Impacted by Ransomware Attack at Canadian Dental Service

1.7 Million Oregon Health Plan Members’ Data Compromised in PH TECH Data Breach

10 Unexpected Ways Your Android Phone Could Be Hacked

17 tips to avoid getting hacked that you might have forgotten - or never even knew

19 Common Cyberthreats To Retailers (And How To Defend Against Them)

67% of government agencies claim confidence in adopting zero trust

42,000 Vermonters Affected by MOVEit Data Breach

100,000 Hacker Credentials Exposed From Info-stealer Malware

A ‘Cyber Pearl Harbor’ is a myth—daily cyberattacks are the real problem

AI a Top Risk and the Preferred Solution to Financial Crime

AI can steal passwords with 95% accuracy by ‘listening’ to keystrokes, alarming study finds

Almost 2,000 Citrix NetScaler servers backdoored in hacking campaign

Another US Congressman reveals emails hacked by China

CentroMed Files Notice of Data Breach Affecting 350k Texans

China email hacks included accounts of House member

Chinese media teases imminent exposé of seismic US spying scheme

City of Dallas data breach affects 26K Texans

Class Action Lawsuits Filed Against Chattanooga Heart Institute After Data Breach

Cleveland City Schools hit by ransomware attack Tuesday, personal data not affected

Clorox takes servers offline, notifies law enforcement after ‘unauthorized activity’

Coastal Orthopedics & Sports Medicine of Southwest Florida Announces Data Breach, Continues Investigation

Colorado Department of Health Care Policy and Financing says MOVEit Transfer hack impacted over 4m people

Crime victims’ data accidentally released by two police forces

Cryptography Attacks: 6 Types And Prevention Measures

Cummins Behavioral Health Systems, Inc. Announces Data Breach Following Ransomware Attack

Cyber attacks: a real security threat

Cybercriminals Abusing Cloudflare R2 for Hosting Phishing Pages, Experts Warn

Cybersecurity Breach Disrupts Clorox Operations, Investigations Underway

Data Breach at Fidelity National Information Services Impacts Customers at Several Large Banks

Discord.io Halts All Operations After Massive Data Breach

Discord.io suffers massive data breach, announces closure

Email phishing still the main way in for hackers

Entertainment Partners Notifies 471k of Recent Social Security Number Data Breach

FBI: Mobile Beta-Testing Apps Are Major Security Risk

FBI just issued warning over new hacker scam - don’t fall for this

Federal CISO doubles down on phishing-resistant MFA following Lapsus$ review

Gigabud RAT Android Banking Malware Targets Institutions Across Countries

Global IoT Trust Survey Reveals Security Concerns

Government highlights cyber threat to health and social care

“Grab hold and give it a wiggle” – ATM card skimming is still a thing

Here Are All The Ways Your Credit Card Info Can Get Stolen

Hospital Mergers Double the Risk of a Data Breach, Study Shows

How Cybersecurity Threats are Shaping Defense IT Budgets

How the fledgling INC ransomware gang struck one victim

How to 'avoid the full-blown catastrophe' of a cyberattack

How to protect your privacy online

Indian Railway Catering and Tourism Corporation (IRCTC) issues warning about fake mobile app campaign to deceive users

Information Commissioner’s Office (ICO) publicly reprimands small firm targeted by phishing attack

Ivanti Avalanche impacted by critical pre-auth stack buffer overflows

LinkedIn accounts hacked in widespread hijacking campaign

Malware Unleashed: Public Sector Hit in Sudden Surge, Reveals New Report

Massive Colorado Department of Higher Education (CDHE) data breach faces scrutiny and questions about data policies

Monti Ransomware Returns with New Linux Variant and Enhanced Evasion Tactics

Multiple Flaws Found in ScrutisWeb Software Exposes ATMs to Remote Hacking

Navigating Data Breach Notification and Prevention in Hong Kong: A New Comprehensive Guide in Hong Kong

Navigating the HUB International Data Breach

New CVE-2023-3519 scanner detects hacked Citrix ADC, Gateway devices

New Gigabud Android RAT Bypasses 2FA, Targets Financial Orgs

New QwixxRAT Trojan Spreads Through Messaging Apps

Norfolk and Suffolk Police: Victims and witnesses hit by police data breach

Norfolk and Suffolk Police data breach: Data of victims and witnesses included in FOI responses

Norfolk and Suffolk police hit by FoI-linked data breach

Norfolk, Suffolk Police Confirm Data Breach

North Korean Hackers Suspected in New Wave of Malicious npm Packages

Northern Ireland: Catholic officers face ‘particular difficulties’ over PSNI data breach

‘Old School RuneScape’ accounts hijacked to transfer them to hackers

Over 12,000 Computers Compromised by Info Stealers Linked to Users of Cybercrime Forums

Over 100,000 Users of Hacking Forums Infected With Malware

Passwords are Evolving as a Passwordless Future Draws Nearer

PDF lures aimed at NATO countries contain a Russian clue

Personal details of more than a thousand crime victims leaked in another huge police data breach

Phishing Scammers Use WordPress, Abandoned Sites to Host Malicious Pages

Phishing scams targeting small business on social media including Meta are a ‘gold mine’ for criminals

Phishing the Most Dominant and Fastest Growing Internet Crime of 2023

Press notice regarding data breach at Norfolk and Suffolk police

Prudential Insurance Company of America says MOVEit Transfer hack impacted 320k customers

PSNI: Leaked Data Will be Used to Target Police Officers

PwC breach spills into Banco Popular de Puerto Rico

Raccoon Stealer malware returns with new stealthier version

Ransomware: To pay or not to pay

Ransomware Hit Disrupts Real Estate Property Listings in US

Ransomware targeting the NHS: securing data and saving lives

Russian hackers trying to bring down Starlink

Safeguarding critical infrastructure from cyber extortion

Scammers are coming for your phone number: How to protect your data

Suburban DC school district responds to cyberattack

The Future of Cybersecurity: AI and Semiconductor Integration in Hardware

The Growing Threat of Cyber Attacks on Global Healthcare Systems

The Rise of CISO Accountability

The World’s Largest Cyber Heists

Tift Regional Health System, Inc. Notifies 187k of Data Breach Following Cyberattack

Time to Sunset Email Security Gateway Appliances?

UAE warns residents against online shopping fraud, shares tips to stay safe

UK Police Data Breach Exposes Victim Information

UK police data breach exposes victim information

UK police forces accidentally shared victims’ details in data breach

UK Voter Data Breach Leaked the Personal Information of 40 Million Individuals

Uncovering the internet's most enduring threat: The Email Threat Landscape

Understanding and Preventing Bitcoin-Related Hacks on Instagram

Unearthed LockBit secrets suggest gang is faltering in bid to corner ransomware market

US hit by major cyberattack, hackers exploit IBM, steal over millions of people’s healthcare, personal data

US lawmaker informed of email breach tied to Microsoft cloud hack

Virtual Realities, Real Dangers: How To Protect Yourself From Crime In The Metaverse

Why Service Mapping is Critical for Microservices Security

Workers Duped by HR-Related Phishing Attacks

Zero-Trust in the Cloud is Hard. Here’s How to Do it Right

14th August

29% of SMBs admit to tossing IT hardware into landfills

Alberta Dental Service Corporation data breach impacts 1.5 million customers

Alberta Dental Services Security Breach Exposes 1.47M Records

Almost all VPNs are vulnerable to traffic-leaking TunnelCrack attacks

APTs use of lesser-known TTPs are no less of a headache

Authorities Take Down Lolek Bulletproof Hosting Provider

Belt Railway Company of Chicago investigates data theft by Akira ransomware gang

Charming Kitten Targets Iranian Dissidents with Advanced Cyber Attacks

China identifies the culprits behind cyberattack on Wuhan Earthquake Monitoring Center; a secretive US global reconnaissance system to be exposed

China to disclose secret US ‘global reconnaissance system,’ claims official

China would consider attacks on US railroads, pipelines if it invades Taiwan

CISA expects upcoming industry rules to show ‘scope and scale’ of ransomware problem

Clorox says certain business operations disrupted in cyber attack

Cloud Security Made Simple: A Beginner's Guide for Business Owners

Colorado HCPF breached via IBM attack, clinical data stolen

Colorado students' records exposed after massive data breach

Colorado warns 4 million of data stolen in IBM MOVEit breach

Complexity of APIs Make Them Harder to Secure

Connecticut School District Has Recouped Half of $6 Million Lost in Cyber Attack

Critical CODESYS Flaws Could Shut Down Power Plants

Cumbria Police data breach: Staff names and salaries leaked online by error

Data center flaws spurred disruptions, espionage and malware attacks

Deception technology and breach anticipation strategies

Discord.io Admits Data Breach: Info of 760K Users Sold Online

Discord.io confirms breach after hacker steals data of 760K users

Downfall, Inception Highlight the Challenges of Securing Hardware

Ernst & Young says MOVEit Transfer hack impacted over 30,000 Bank of America customers

Experts call for enhanced cybersecurity measures in the wake of Alberta ransomware attack

Fake Chrome Browser Update Installs NetSupport Manager RAT

FBI warns of increasing cryptocurrency recovery scams

Hackers may have stolen SSNs, other info from Coastal Orthopedics. Here’s what to know

Health plan provider PH TECH joins MOVEit victim list, 1.7 million exposed

How Do Computer Viruses Actually Work?

How to Ensure Cyber Resilience Across the Supply Chain

How to Help Manage the Risks of Generative AI in the Enterprise

How to make your instant messages ‘unhackable’

Identity Threat Detection and Response: Rips in Your Identity Fabric

India: Government's Parivahan website likely suffered data breach

India Passes New Digital Personal Data Protection Bill (DPDPB), Putting Users' Privacy First

Intel insiders go undercover revealing fresh details into NoName hacktivist operations

INTERPOL Disrupts Phishing-as-a-Service (PaaS) Operation

LetMeSpy Android Spyware app permanently shuts down after data breach

macOS Ventura Background Task Flaws Can Be Exploited for Malware

Macs are getting compromised to act as proxy exit nodes

Major vulnerabilities discovered in data center solutions

Massive EvilProxy Phishing Attack Campaign Bypasses 2FA, Targets Top-Level Executives

Microsoft reveals severe vulnerabilities in CODESYS industrial automation software

Monti ransomware targets VMware ESXi servers with new Linux locker

Monti Ransomware Unleashes a New Encryptor for Linux

Monti Returns From 2-Month Break with Revamped Ransomware Variant

Most DDoS attacks tied to gaming, business disputes, FBI and prosecutors say

Most Impactful Ransomware Attacks of 2023

Navigating generative AI risks and regulatory challenges

New Financial Malware 'JanelaRAT' Targets Latin American Users

New York Life data exposed in third-party breach

Ongoing Xurum Attacks on E-commerce Sites Exploiting Critical Magento 2 Vulnerability

Over 100K hacking forums accounts exposed by info-stealing malware

PBI data breach impacted more than 1.2m customers of Wilton Reassurance Life Company

Personal information 'likely stolen' in Kings County cyberattack

Phishing Operators Make Ready Use of Abandoned Websites for Bait

Prince George's County Public Schools (PGCPS) network hit by cyber attack: 4,500 accounts affected

PSNI data breach: Details of Northern Ireland police in hands of dissident republicans

QwixxRAT: New Remote Access Trojan Emerges via Telegram and Discord

Ransomware groups shift focus to return-on-investment targeting critical industries

Researchers discover vulnerabilities in Moovit software allowing free subway rides

Security Researchers Publish Gigabud Banking Malware Analysis

Several Flaws Found in CyberPower and Dataprobe Products

Sophos Uncovers New Connections Between Hive, Royal, and Black Basta Ransomware

South African Power Supplier Hit by DroxiDat Malware

Strengthening Your Business’ Cybersecurity: Effective Strategies and Tips

SuperMailer Exploitation Shows Need for Dynamic Cybersecurity

Sydney engineering firm allegedly hit by Play ransomware attack

Tackling Cyber Threats Head-On: Evaluating the Effectiveness of Global Enterprise Cyber Security Solutions

This Bizarre Hack is a Reminder To Protect Your Streaming Service Accounts

Threat actors use beta apps to bypass mobile app store security

What Is a Blank Image Phishing Scam?

Who do cybersecurity laws actually protect?

Why spyware attacks are increasing in Kenya

Why the public sector still loves Capita (even though it got hacked)

Zunami Protocol lost $2.1 million to cyber attack