Internet Security Week - Edition Nº 50

Today we celebrate the arrival of the fiftieth edition of Internet Security Week!

In this commemorative edition of Internet Security Week , Linkedin and Netflix passwords are leaked, a new technique for sending phishing, a hacker invades the Ministry of Health's network and much more.

News

The leak of 223 million Brazilians is not from Serasa, says hacker

A hacker who has access to the dark web and details of the leak of a table with 223 million records of Brazilian citizens sent CISO Advisor information that the data from this leak did not come from Serasa Experian.

At Ciso Advisor

Federal Police will investigate the biggest data leak in the history of Brazil

After the statement by the National Data Protection Authority (ANPD) about the biggest data leak in the history of Brazil, which occurred last month, the federal police have now opened an investigation to investigate the action.

By Leticia Riente in Olhar Digital

Passwords for LinkedIn, Netflix and others are in the biggest leak in history

A set of more than 3.2 billion access credentials for major services is being made available for free on international hacking forums.

By Felipe Demartini on Canaltech

We investigate! Everything you wanted to know about the leak of 220 million CPFs

Over the last week, several national and foreign media outlets reported what was supposed to be the biggest data leak in Brazilian history — a cybercriminal had gotten his hands on a base containing no less than 220 million CPFs, 40 million CNPJs and detailed information about 140 million vehicles registered with state traffic agencies.

By Ramon de Souza in The Hack

Criminals create new technique to send phishing via SMS

Feature consists of small changes in writing to deceive the blocks that telephone operators carry out.

By Renato Rodrigues on Kaspersky Blog

Babyk Ransomware will not target charities unless they support the LGBT movement

The Babyk ransomware operation has launched a new data leak website used to publish the victim's stolen data as part of a double extortion strategy. Included is a list of targets they won't attack, with a few exclusions that definitely stand out.

By Lawrence Abrams in Bleeping Computer

Hacker invades Ministry of Health network and warns that “website is rubbish”

The attacker's message was presented in the DataSUS form creation service; Ministry of Health informs that the situation has been controlled.

By Ana Marques in Tecnoblog

State company that controls nuclear plants in Angra dos Reis suffers cyber attack

Eletrobras reported on Thursday, the 4th, that its subsidiary, Eletronuclear, responsible for the nuclear plants in Angra dos Reis, suffered a cyber attack.

In Sputnik News

The six biggest cyberattacks of 2020

Over the past 12 months, security experts have observed a large number of cyberattacks targeting public and private organizations. Ransomware and malware attacks, phishing campaigns, data breaches, and supply chain attacks make headlines almost daily.

By Pierluigi Paganini in Cybernews

Chinese may have exploited flaw in the same software as the SolarWinds supply chain attack

Cybercriminals, possibly linked to the Chinese government, are suspected of having exploited a vulnerability in SolarWinds' Orion software to invade United States government networks last year. Information comes from Reuters, which received anonymous testimony from five people involved.

By Guilherme Petry in The Hack

Cyberthreats: HR is the target of the moment

Understand why human resources department computers are especially vulnerable and how to protect them.

By Renato Rodrigues Rupert on Kaspersky Blog

Extortion and even more dangerous ransomware are threat trends for 2021

Digital security trends for the coming year begin with security experts predicting an evolution of practices and campaigns that have already been a constant over the last few months, especially with regard to financial crime, which will continue to be the path more profitable for hackers.

By Felipe Demartini on Canaltech

Lumiun Blog 2020 Retrospective

See in retrospect the best posts about security and productivity on the internet, in addition to the free materials on the topic, which were launched over the last year.

By Kelvin Zimmer on Lumiun Blog