What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-03-15 11:51:30 | 60% Of Mid-sized Indian Firms Faced 2021 Data Breach, Expert Reaction (lien direct) | The Tribune (India) is reporting Over 60% of mid-sized Indian firms faced data breach in 2021. According to a survey released today by Cyber Security firm Sophos, over 60% of mid-sized businesses reported experiencing a data breach in 2021. Nineteen percent of companies discovered the attack within two weeks, but for fully 22 per cent, […] | Data Breach | ||
|
2022-03-15 11:44:49 | South Denver Cardiology Associates Discloses Data Breach Affecting 287,000 Patients (lien direct) | In response to reports that South Denver Cardiology Associates has recently announced it was the victim of a cyberattack in January 2022 in which files containing patient information were accessed, experts commented below. | Data Breach | ||
 |
2022-03-14 09:30:00 | Legal Practice Fined £100k After Hacker Stole Court Info (lien direct) | Security failings led to serious data breach at Tuckers Solicitors | Data Breach | ||
|
2022-03-11 12:20:03 | Tuckers Solicitors ICO Fine (lien direct) | The ICO has issued a fine to Tuckers Solicitors following a successful ransomware attack against them. The company was fined £98,000 after a data breach caused by ransomware, during which hackers accessed 24,000 court bundles containing sensitive data such as medical files and witness statements – which were then released on the dark web. The action […] | Ransomware Data Breach | ||
 |
2022-03-11 06:15:24 | Vodafone investigates claims of a data breach made by Lapsus$ gang (lien direct) | Vodafone is investigating a recently suffered cyberattack, after a ransomware gang Lapsus$ claimed to have stolen its source code. Vodafone announced to have launched an investigation after the Lapsus$ cybercrime group claimed to have stolen its source code. The Lapsus$ gang claims to have stolen approximately 200 GB of source code files, allegedly contained in […] | Ransomware Data Breach | ||
|
2022-03-08 16:33:00 | Oklahoma Hospital Data Breach Impacts 92,000 People (lien direct) | Patient and employee data in care of Duncan Regional Hospital exposed in security incident | Data Breach | ||
|
2022-03-08 13:58:19 | Experts Reactions On Samsung Data Breach (lien direct) | Samsung has suffered a data breach and the cybercriminals responsible are teasing the data they have stolen. | Data Breach | ||
 |
2022-03-08 04:11:29 | Samsung Confirms Data Breach After Hackers Leak Galaxy Source Code (lien direct) | Samsung on Monday confirmed a security breach that resulted in the exposure of internal company data, including the source code related to its Galaxy smartphones. "According to our initial analysis, the breach involves some source code relating to the operation of Galaxy devices, but does not include the personal information of our consumers or employees," the electronics giant told Bloomberg. | Data Breach | ||
 |
2022-03-07 12:47:44 | Adafruit suffers GitHub data breach – don\'t let this happen to you (lien direct) | Training data stashed in GitHub by mistake... unfortunately, it was *real* data | Data Breach | ||
 |
2022-03-03 15:01:09 | Healthcare Company Mon Health Discloses Second Data Breach (lien direct) | Monongalia Health System (Mon Health) this week started notifying patients, employees, and partners of a cyberattack that may have resulted in their data being stolen. | Data Breach | ||
 |
2022-03-02 18:32:16 | Data Breach Volumes in the U.S. Grow by 10% in 2021 (lien direct) |
New data shows despite decreases in global data breach levels (-5%) in 2021, the U.S. experienced proportionally more data breaches than in the previous year. |
Data Breach | ||
|
2022-03-02 15:36:17 | (Déjà vu) NVIDIA discloses data breach after the recent ransomware attack (lien direct) | Chipmaker giant Nvidia confirmed a data breach after the recently disclosed security incident, proprietary information stolen. The chipmaker giant Nvidia was recentty victim of a ransomware attack that impacted some of its systems for two days. The security breach is not connected to the ongoing crisis in Ukraine, according to a person familiar with the […] | Ransomware Data Breach | ||
|
2022-03-01 17:15:00 | State Bar of California Investigates Data Breach (lien direct) | Probe launched after 260K confidential attorney discipline records leaked online | Data Breach | ||
|
2022-02-28 11:30:00 | Conti Group Suffers Massive Data Breach (lien direct) | Researchers leak internal messages after geopolitical misstep | Data Breach | ||
 |
2022-02-23 18:46:00 | Anomali Cyber Watch: EvilPlayout: Attack Against Iran\'s State Broadcaster, Microsoft Teams Targeted With Takeover Trojans, \'Ice phishing\' on the blockchain and More (lien direct) | The various threat intelligence stories in this iteration of the Anomali Cyber Watch discuss the following topics: Emotet, Ice Phishing, Iran, Trickbot and Zoho. The IOCs related to these stories are attached to Anomali Cyber Watch and can be used to check your logs for potential malicious activity.
Figure 1 - IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed.
Trending Cyber News and Threat Intelligence
EvilPlayout: Attack Against Iran’s State Broadcaster
(published: February 18, 2022)
Checkpoint Researchers have released an article detailing their findings regarding a wave of cyber attacks directed at Iranian broadcast infrastructure during late January 2022. IRIB, an Iranian state broadcaster, was compromised, with malicious executables and wipers being responsible for the attack. Said malware had multiple functions, including hijacking of several tv stations to play recordings of political opposition leaders demanding the assassination of Iran’s supreme leader. Additional functionality includes custom backdoors, screenshot capability and several bash scripts to download other malicious executables. The malware appears new, with no previous appearances, nor has there been any actor attribution as of the date of publication.
Analyst Comment: Utilize all telemetry and feed it into a SIEM to help identify malicious activity within your network. Anomali Match can collide this telemetry against global intelligence to assist in identifying malicious indicators within your network. A defense in depth approach will also mitigate the damage any compromises can do to your infrastructure.
MITRE ATT&CK: [MITRE ATT&CK] Screen Capture - T1113
Tags: Iran, IRIB, Ava, Telewebion
Microsoft Teams Targeted With Takeover Trojans
(published: February 17, 2022)
Researchers at Avanan have documented a new phishing technique that threat actors are using that abuses the trust users of Microsoft Teams have for the platform to deliver malware. Threat Actors send phishing links to victims which initiate a chat on the platform, after which they will post a link to a dll file within the chat box. When clicked, it will install a trojan of choice on the target machine. With over 279 million users, this presents a new attack vector for threat actors to abuse.
Analyst Comment: Never click on a link or open attachments from untrusted senders when receiving email. Be skeptical of strangers attempting to move conversation to another platform, even if you use that platform. Be wary of links posted in apps that are used for communication, as links that are posted on trusted platforms are not trustworthy themselves.
MITRE ATT&CK: [MITRE ATT&CK] Phishing - T1566 | [MITRE ATT&CK] Trusted Relationship - T1199
Tags: Microsoft Teams, trojan, phishing
Red Cross: State Hackers Breached our Network Using Zoho bug
(published: February 16, 2022)
The International Committee of the Red Cross (ICRC) suffered a data breach during January 2022. The incident led to the exfiltration of over 515,000 individual's PII, linked to their Restoring Family Links pro |
Ransomware Data Breach Malware Tool Vulnerability Threat Guideline | ||
|
2022-02-23 13:16:49 | Meyer Data Breach – Expert Commentary (lien direct) | A major US-based kitchenware giant Meyer Corp has disclosed a cyber attack that may have led to the exposure of employee data. Meyer discovered an external hack to their employee database system, but is yet to confirm the number of employees impacted and the extent of the data breach. | Data Breach Hack | ||
|
2022-02-22 18:00:00 | Sea Mar Accused of Negligence Over Data Breach (lien direct) | Seattle healthcare provider facing lawsuit over exposure of 688,000 individuals' PHI | Data Breach | ||
|
2022-02-22 15:47:24 | Cookware giant Meyer Corporation discloses cyberattack (lien direct) | US cookware distributor giant Meyer Corporation discloses a data breach that affected thousands of its employees. Meyer Corporation, the second-largest cookware distributor globally, has disclosed a data breach that affects thousands of its employees. The attack took place on October 25, 2021, as reported by the data breach notification letter shared with the U.S. Attorney […] | Data Breach | ||
|
2022-02-22 12:24:10 | Cookware Distribution Giant Meyer Discloses Data Breach (lien direct) | Cookware and bakeware distribution giant Meyer Corporation has started informing employees of a cyberattack that resulted in the theft of some of their personal data. A subsidiary of Meyer Manufacturing Co. Ltd, the California-based company is the largest distributor of cookware in the United States, and the second largest in the world. | Data Breach | ||
|
2022-02-17 13:04:01 | (Déjà vu) Hackers Had Access to Red Cross Network for 70 Days (lien direct) | One month after disclosing a data breach that affected roughly 515,000 people, the International Committee of the Red Cross (ICRC) announced that the hackers had access to its network for 70 days before the attack was discovered. | Data Breach | ||
|
2022-02-15 14:24:51 | CyberheistNews Vol 12 #07 [Heads Up] FBI Warns Against New Criminal QR Code Scams (lien direct) |
[Heads Up] FBI Warns Against New Criminal QR Code Scams
Email not displaying? |
CyberheistNews Vol 12 #07 | Feb. 15th., 2022
[Heads Up] FBI Warns Against New Criminal QR Code Scams
QR codes have been around for many years. While they were adopted for certain niche uses, they never did quite reach their full potential. They are a bit like Rick Astley in that regard, really popular for one song, but well after the boat had sailed. Do not get me wrong, Rick Astley achieved a lot. In recent years, he has become immortalized as a meme and Rick roller, but he could have been so much more.
However, in recent years, with lockdown and the drive to keep things at arms length, QR codes have become an efficient way to facilitate contactless communications, or the transfer of offers without physically handing over a coupon. As this has grown in popularity, more people have become familiar with how to generate their own QR codes and how to use them as virtual business cards, discount codes, links to videos and all sorts of other things.
QRime Codes
As with most things, once they begin to gain a bit of popularity, criminals move in to see how they can manipulate the situation to their advantage. Recently, we have seen fake QR codes stuck to parking meters enticing unwitting drivers to scan the code, and hand over their payment details believing they were paying for parking, whereas they were actually handing over their payment information to criminals.
The rise in QR code fraud resulted in the FBI releasing an advisory warning against fake QR codes that are being used to scam users. In many cases, a fake QR code will lead people to a website that looks like the intended legitimate site. So, the usual verification process of checking the URL and any other red flags apply.
CONTINUED with links and 4 example malicious QR codes on the KnowBe4 blog:
https://blog.knowbe4.com/qr-codes-in-the-time-of-cybercrime
|
Ransomware Data Breach Spam Malware Threat Guideline | APT 15 APT 43 | |
 |
2022-02-15 10:55:59 | Morley companies suffers data breach (lien direct) | A data breach at a business services company based in Saginaw, Michigan may have exposed the personal information of 521,00 people. The attack was detected on August 1 last year when data in the company’s care became unavailable. The breach comes as a direct result of cyber-criminals targeting Morley Companies. Michigan attorney general Dana Nessel confirmed […] | Data Breach | ||
|
2022-02-14 12:07:49 | (Déjà vu) Croatian phone carrier reports data breach (lien direct) | ‘A1 Hrvatska’, a Croatian phone carrier, has disclosed a data breach exposing the personal information of roughly 200,000 of its customers. The organisation has not provided many details outside the fact that they suffered a cybersecurity incident involving the unauthorised access of one of their user databases containing sensitive personal information. The information leaked includes […] | Data Breach | ||
|
2022-02-14 11:28:15 | Sensitive business addresses published in COVID data breach (lien direct) | The addresses of defence sites, a missile maintenance unit and domestic violence shelters were among the 500,000 addresses leaked by mistake. This is the first major breach of the New South Wales government’s huge store of QR code data. Premier Dominic Perrottet said the information was uploaded in error and “shouldn't have happened”. The mistake […] | Data Breach | ||
|
2022-02-12 11:46:51 | (Déjà vu) Croatian phone carrier A1 Hrvatska discloses data breach (lien direct) | Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted roughly 200,000 customers. Croatian phone carrier A1 Hrvatska has disclosed a data breach that has impacted 10% of its customers, roughly 200,000 people. Threat actors had access to sensitive personal information of the customers, including names, personal identification numbers, physical addresses, and […] | Data Breach Threat | ||
|
2022-02-11 17:15:00 | Immediata Agrees $1.125m Data Breach Settlement (lien direct) | Software company agrees to settle class action lawsuit filed by victims of 2019 security breach | Data Breach | ||
 |
2022-02-11 14:29:48 | Croatian phone carrier data breach impacts 200,000 clients (lien direct) | Croatian phone carrier 'A1 Hrvatska' has disclosed a data breach exposing the personal information of 10% of its customers, roughly 200,000 people. [...] | Data Breach | ||
|
2022-02-10 12:59:53 | Data From Washington Data Breach May Be On \'Dark Web\' (lien direct) | The personal data of more than 250,000 licensed professionals in Washington may have made it to the “dark web,” where identity thieves gather information to enact their various schemes. Personal information of some of the hundreds of thousands of licensed professionals potentially exposed in a breach of a Washington state database may already have shown […] | Data Breach | ||
|
2022-02-07 15:49:03 | Puma hit by data breach after Kronos ransomware attack (lien direct) | Sportswear manufacturer Puma was hit by a data breach following the ransomware attack that hit Kronos, one of its North American workforce management service providers, in December 2021. [...] | Ransomware Data Breach | ||
 |
2022-02-07 10:02:00 | Umbrella company Parasol confirms data breach linked to cyber attack five weeks ago (lien direct) | Sportswear manufacturer Puma was hit by a data breach following the ransomware attack that hit Kronos, one of its North American workforce management service providers, in December 2021. [...] | Data Breach | ||
|
2022-02-04 21:46:06 | Over 500,000 people were impacted by a ransomware attack that hit Morley (lien direct) | Business services firm Morley was hit by a ransomware attack that may have exposed data of +500,000 individuals. Business services company Morley was victim of a ransomware attack that may have resulted in a data breach impacting more than 500,000 individuals. Morley Companies is a United States corporation that provides business services to Fortune 500 and Global 100 clients; contact […] | Ransomware Data Breach | ||
 |
2022-02-04 20:18:07 | Report: Data breach numbers may not actually be declining, and reporting them is getting slower (lien direct) | Flashpoint and Risk Based Security's report found that, despite early reports, the total number of breaches is likely much higher than reported, with the time it takes to report a breach the longest since 2014. | Data Breach | ||
|
2022-02-04 16:01:08 | Business Services Firm Morley Discloses Data Breach Affecting 500,000 People (lien direct) | Business services company Morley this week announced being targeted in a ransomware attack that may have resulted in the information of more than 500,000 individuals getting stolen. | Ransomware Data Breach | ||
 |
2022-02-03 14:00:00 | New Year, Same Risks? Six Cyber Resilience Resolutions for a Safer 2022 (lien direct) | 2021 was a banner year for cyber attacks. Compared to 2020, last year saw a 50% increase in attacks per week on corporate networks, even as the total cost of managing a cyber attack rose by 10%, according to IBM’s Cost of a Data Breach Report 2021. Add in the ongoing shift to hybrid work […] | Data Breach | ||
|
2022-02-02 11:02:58 | Business services provider Morley discloses ransomware incident (lien direct) | Morley Companies Inc. disclosed a data breach after suffering a ransomware attack on August 1st, 2021, allowing threat actors to steal data before encrypting files. [...] | Ransomware Data Breach Threat | ||
|
2022-02-02 03:36:43 | Cynet\'s Keys to Extend Threat Visibility (lien direct) | We hear about the need for better visibility in the cybersecurity space – detecting threats earlier and more accurately. We often hear about the dwell time and the time to identify and contain a data breach. Many of us are familiar with IBM's Cost of a Data Breach Report that has been tracking this statistic for years. In the 2021 report, IBM found that, on average, it takes an average of 212 | Data Breach Threat | ||
|
2022-02-02 02:29:50 | RIPTA Data Breach Affected About 22,000 People (lien direct) | A data breach at the state agency that operates Rhode Island's public bus service compromised the personal information of about 22,000 people, agency officials said at a legislative hearing. | Data Breach | ||
|
2022-01-31 16:10:58 | Cyber attacks at an all time high for UK corps (lien direct) | A new survey of 450 top finance and risk professionals at UK-listed companies have found that nearly two-thirds of organisations have experienced a data breach or cyber attack in the first year and a half of the pandemic. The research also found that the rise in cyber attacks led to the loss of money and […] | Data Breach | ||
 |
2022-01-27 12:18:42 | EyeMed agrees $600,000 settlement over 2020 data breach (lien direct) | The data of roughly 2.1 million individuals was exposed. | Data Breach | ||
|
2022-01-26 16:45:00 | EyeMed Fined $600k Over Data Breach (lien direct) | New York fines healthcare provider over exposure of 2.1 million health records | Data Breach | ||
|
2022-01-23 19:39:31 | OpenSubtitles data breach impacted 7 million subscribers (lien direct) | OpenSubtitles has suffered a data breach, the maintainers confirmed that the incident impacted 7 Million subscribers. OpenSubtitles is a popular subtitles websites, it suffered a data breach that affected 6,783,158 subscribers. Exposed data include email and IP addresses, usernames, the country of the user and passwords stored as unsalted MD5 hashes. The administrator of the […] | Data Breach | ||
|
2022-01-21 16:38:00 | Memorial Health System Confirms Data Breach (lien direct) | Ransomware attack jeopardizes data of 216K patients of Ohio-based health system | Ransomware Data Breach | ||
|
2022-01-20 10:00:00 | Red Cross: Supply Chain Data Breach Hit 500K People (lien direct) | International charity pleads with attackers not to leak information | Data Breach Guideline | ||
|
2022-01-19 17:30:00 | (Déjà vu) Ransomware Attack on Moncler (lien direct) | Luxury fashion brand confirms data breach caused by ransomware attack | Ransomware Data Breach | ||
|
2022-01-18 21:58:59 | AlphV/BlackCat ransomware gang published data stolen from fashion giant Moncler (lien direct) | Luxury fashion giant Moncler confirmed a data breach after a ransomware attack carried out by the AlphV/BlackCat. Moncler confirmed a data breach after an attack that took place in December. The luxury fashion giant was hit by AlphV/BlackCat ransomware that today published the stolen data on its leak site in the Tor network. In December, malware […] | Ransomware Data Breach Malware | ||
|
2022-01-18 14:51:50 | Fashion giant Moncler confirms data breach after ransomware attack (lien direct) | Italian luxury fashion giant Moncler confirmed that they suffered a data breach after files were stolen by the AlphV/BlackCat ransomware operation in December and published today on the dark web. [...] | Ransomware Data Breach | ||
|
2022-01-18 13:35:58 | Accellion Reaches $8.1 Million Settlement Over FTA Data Breach (lien direct) | Enterprise content firewall provider Accellion has reached an $8.1 million settlement to end a lawsuit over a data breach involving its legacy file sharing service FTA, Reuters reports. | Data Breach | ||
 |
2022-01-18 08:17:53 | GUEST ESSAY: Data breaches across the globe slowed significantly in Q4 2021 versus Q1-Q3 (lien direct) | After a gloomy start with its first three breach intensive quarters, 2021 has finally ended, and on a positive note. Related: Cybersecurity experts reflect on 2021 This conclusion is derived from an analysis of data taken from our data breach … (more…) | Data Breach | ||
|
2022-01-18 04:14:09 | Additional Healthcare Firms Disclose Impact From Netgain Ransomware Attack (lien direct) | Healthcare providers Caring Communities and Entira Family Clinics are warning patients that their personal information may have been exposed in a data breach that hit tech vendor Netgain Technology more than a year ago. | Ransomware Data Breach | ||
|
2022-01-17 18:13:00 | EHR Vendor Faces Legal Action Over Data Breach (lien direct) | Class action filed against HER vendor QRS over summertime cyber-attack | Data Breach |
To see everything:
