Categories
APT Breach Cyber Security Data leak Hacking Malware Phishing Scam Vulnerability Zero-day

Data breach broker sells records of 26 companies, Wyndham Capital involved in class-action lawsuit over breach, and more

Major cybersecurity events on 31st December 2020 (Evening Post): Adobe Flash Player will officially reach its end of life (EOL) on 1 January 2021. New Golang-based Crypto worm infects Windows and Linux servers. Google Chrome to display warnings for weak passwords.Continue readingData breach broker sells records of 26 companies, Wyndham Capital involved in class-action lawsuit over breach, and more

Categories
APT Breach Bug CVE Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Vulnerability

SolarWinds breached Microsoft systems as well, Mednax Services notifies patients of data breach, and more

Major cybersecurity events on 18th December 2020 (Morning Post): Power supplier People’s Energy hacked, exposes 250,000 customers’ personal info. Emirati website leaks the personal information of thousands of Israelis, used to plan trips to Dubai. 5M WordPress sites run ‘Contact Form 7’ plugin with critical bugs.Continue readingSolarWinds breached Microsoft systems as well, Mednax Services notifies patients of data breach, and more

Categories
APT Breach Bug Cyber Security Data leak DoppelPaymer Hacking Malware Phishing Ransomware Scam Spam Vulnerability

3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more

Major cybersecurity events on 17th December 2020 (Morning Post): IRS form fraud campaign targets G Suite users, affects 50,000 executives already. FireEye, GoDaddy, and Microsoft creates kill switch for SolarWinds backdoor. DoppelPaymer ransomware gang harasses victims who refuse to pay.Continue reading3M users install 28 malicious Chrome, Edge extensions, IMAP leveraged to infiltrate email accounts, and more

Categories
APT Breach Bug cryptominers Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Spearphishing Vulnerability

Fake data breach targets Ledger wallets, Tax relief business exposes personal info of 100,000 clients, and more

Major cybersecurity events on 11th December 2020 (Evening Post): Glassdoor fixes critical issue that allows threat actors to take over accounts. Adrozek malware silently inject ads into search results in multiple browsers. Organized spear-phishing campaign targets 200 million Microsoft 365 users.Continue readingFake data breach targets Ledger wallets, Tax relief business exposes personal info of 100,000 clients, and more

Categories
APT Breach Bug Cyber Security Data leak Espionage Hacking Malware Phishing Ransomware RAT RCE Scam Virus Vulnerability

Facebook reveals the identity of APT32, Air France-KLM victim of cyber attack, impact unclear, and more

Major cybersecurity events on 11th December 2020 (Morning Post): U.S. warns of increased cyberattacks against K-12 educational institutions. Scammers use Chrome, Firefox extensions in widespread ad fraud campaign. Widespread malware attacks target major browsers.Continue readingFacebook reveals the identity of APT32, Air France-KLM victim of cyber attack, impact unclear, and more

Categories
Breach CVE Cyber Security Data leak DoppelPaymer Hacking Phishing Ransomware RCE Scam Spam Vulnerability

2,732 PickPoint package delivery lockers hacked, DoppelPaymer gang demands $34M ransom from Foxconn, and more

Major cybersecurity events on 8th December 2020 (Evening Post): D-Link VPN routers’ remote command injection bugs gets patched. Expert discloses zero-click, wormable flaw in Microsoft Teams. PlayStation Now critical remote code execution fixed. Google patches four high‑severity flaws in Chrome.Continue reading2,732 PickPoint package delivery lockers hacked, DoppelPaymer gang demands $34M ransom from Foxconn, and more

Categories
Bug COVID CVE Cyber Security Data leak Info-stealer Malware Phishing Ransomware Vulnerability

Chrome 87 released with fix for NAT Slipstream attacks, COVID-19 Antigen Firm Hit by Malware Attack, and more

Major cybersecurity events on 18th November 2020 (Evening Post): COVID-19 Antigen Firm Hit by Malware Attack, Chrome 87 released with fix for NAT Slipstream attacks, Ransomware attack forces hosting provider Managed.com to take servers offline.Continue readingChrome 87 released with fix for NAT Slipstream attacks, COVID-19 Antigen Firm Hit by Malware Attack, and more

Categories
APT Breach Bug Cyber Security Egregor Info-stealer Malware Ransomware RAT Vulnerability

Ticketmaster Fined £1.25m Over Data Breach, Image stock site 123RF hacked, Cencosud hit by Egregor Ransomware, and more

Major cybersecurity events on 16th November 2020 (Evening Post): Biotech research firm Miltenyi Biotec hit by Mount Locker ransomware, Chilean-based retail giant Cencosud hit by Egregor Ransomware, and Schneider Electric Warns Customers of Drovorub Linux Malware.Continue readingTicketmaster Fined £1.25m Over Data Breach, Image stock site 123RF hacked, Cencosud hit by Egregor Ransomware, and more

Categories
Arbitrary Code Execution Breach Bug Credential Stuffing Cyber Security Data leak Fleeceware Hacking Malware Phishing Ransomware Scam Vulnerability

Minecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more

Major cybersecurity events on 13th November 2020 (Morning Post): Popular stock photo service, 123RF, suffers data breach after hacker sells database containing 8.3 million user records. YouTube, YouTube TV affected by a two-hour global outage. Ransomware threats increasingly target manufacturing companies.Continue readingMinecraft-related apps defraud millions of gamers, The North Face suffers a credential stuffing attack, and more

Categories
ACE Breach Brute-force Cyber Security Data leak Hacking Malware Phishing Ransomware Scam Vulnerability

Rakuten sends cashback emails in error, Hacker-for-hire group targets South Asian organizations, and more

Major cybersecurity events on 12th November 2020 (Evening Post): KuCoin CEO, Johnny Lyu, says 84% of stolen cryptocurrency has been recovered. New modular ModPipe POS malware targets restaurants and hospitality sectors. Microsoft urges users to stop using phone-based MFA.Continue readingRakuten sends cashback emails in error, Hacker-for-hire group targets South Asian organizations, and more