Internet Security Week - Issue 50

Today we celebrate the arrival of the fiftieth edition of Internet Safety Week!

In this commemorative edition of Internet Security Week , LinkedIn and Netflix password leaks, a new technique for sending phishing messages, a hacker breaks into the Ministry of Health's network, and much more.

News

The leak of 223 million Brazilians is not from Serasa, says hacker

A hacker with access to the dark web and details of a leaked table containing 223 million records of Brazilian citizens sent CISO Advisor information indicating that the data from this leak did not come from Serasa Experian.

In Ciso Advisor

Federal Police to investigate largest data leak in Brazil's history

Following the National Data Protection Authority (ANPD)'s statement on the largest data leak in Brazil's history, which occurred last month, the federal police have now opened an investigation into the matter.

By Leticia Riente in Olhar Digital

Passwords from LinkedIn, Netflix, and others are in the biggest leak in history

A set of more than 3.2 billion access credentials for major services is being made freely available on international hacking forums.

By Felipe Demartini on Canaltech

We investigated! Everything you wanted to know about the leak of 220 million CPFs

Over the past week, several national and international media outlets have reported on what is supposedly the largest data leak in Brazil's history — a cybercriminal has allegedly obtained a database containing no less than 220 million CPFs (Individual Taxpayer Registry Numbers), 40 million CNPJs (Corporate Taxpayer Registry Numbers), and detailed information on 140 million vehicles registered with state transit agencies.

By Ramon de Souza in The Hack

Criminals create new technique to send phishing messages via SMS

The feature consists of small changes in writing to circumvent the blocking that telephone operators carry out.

By Renato Rodrigues on Kaspersky Blog

Babyk Ransomware Won't Target Charities Unless They Support the LGBT Movement

The Babyk ransomware operation has launched a new data leak website used to publish stolen victim data as part of a double extortion strategy. Included is a list of targets they will not attack, with some notable exclusions.

By Lawrence Abrams in Bleeping Computer

Hacker breaks into Ministry of Health network and warns that “website is garbage”

The attacker's message was displayed in the DataSUS form creation service; the Ministry of Health reports that the situation has been controlled.

By Ana Marques in Tecnoblog

State-owned company that controls nuclear power plants in Angra dos Reis suffers cyber attack

Eletrobras reported on Thursday, the 4th, that its subsidiary, Eletronuclear, responsible for the Angra dos Reis nuclear power plants, suffered a cyber attack.

In Sputnik News

The six biggest cyberattacks of 2020

Over the past 12 months, security experts have observed a high number of cyberattacks targeting public and private organizations. Ransomware and malware attacks, phishing campaigns, data breaches, and supply chain attacks have made headlines almost daily.

By Pierluigi Paganini in Cybernews

Chinese may have exploited flaw in same software as SolarWinds supply chain attack

Cybercriminals, possibly linked to the Chinese government, are suspected of exploiting a vulnerability in SolarWinds' Orion software to hack into U.S. government networks last year. This information comes from Reuters, which received anonymous testimony from five individuals involved.

By Guilherme Petry in The Hack

Cyberthreats: HR is the target of the moment

Understand why HR department computers are particularly vulnerable and how to protect them.

By Renato Rodrigues Rupert on Kaspersky Blog

Extortion and even more dangerous ransomware are threat trends for 2021

Digital security trends for the coming year begin with security experts predicting an evolution of practices and campaigns that have been a constant over the past few months, particularly when it comes to financial crime, which will continue to be the most lucrative avenue for hackers.

By Felipe Demartini on Canaltech

Lumiun Blog 2020 Retrospective

In this retrospective, you'll see the best posts on security and productivity on the internet, as well as free materials on the topic that were released over the past year.

By Kelvin Zimmer on Lumiun Blog