SENTINEL^TM by IDSTRONG

Flagstar Bank is in the news for the wrong reason. The bank recently publicized the fact that it discovered a digital breach.

We are nearly halfway through 2022. News stories detailing hacks and other digital breaches continue to roll in on a daily basis.

There has been a significant spike in tourism following the gradual decline of the coronavirus pandemic.  The increase in travel has caught the attention of digital miscreants looking to scam tourists as well as travel services providers.

The cybercriminals responsible for BRATA malware have enhanced their digital Frankenstein with a slew of additional features.

Digital security specialists have identified an APT linked to China that was unknown for nearly a decade. Though the APT is diminutive, it is quite potent.

A messenger scam on Facebook has fooled millions of the social media platform's users.  Around 10 million Facebook users were duped by the phishing message.

Researchers with Google have identified a vulnerability in Apple Safari that has been exploited in the wild. The 5-year-old vulnerability resurfaced yet went unnoticed for quite a lengthy period of time, even after repair and reintroduction.

Most people are surprised to learn hundreds of thousands of new forms of malware are made on a daily basis. Programming has advanced to the point that hackers can lean on artificial intelligence to help craft new and even more creative internet-based attacks.  

Digital security specialists insist a new form of Linux malware is discrete to the point that it is almost impossible to identify.

The medical records of nearly 70,000 individuals have been exposed in a massive data breach. The breach occurred at Kaiser Permanente. 

Chinese hackers are zeroing in on Android and iOS users with the distribution of Web3 wallets that are backdoored. The hackers are attempting to steal money using the backdoored apps in a creative way.

An internet marketplace that made the private information of more than 20 million individuals available for purchase has been removed from the web, hopefully for good.

Qbot, a powerful form of malware, is now being used by Black Basta ransomware attackers to create a whole that is greater than the sum of its parts.

Shields Health Care Group, a medical imaging provider, has been hacked. A total of two million people were affected by the attack.

Take a look back through the previous week's digital security news headlines and you'll find no shortage of stories.  Online aggression has reached an all-time high, yet it isn't only multinational corporations that are in hackers' crosshairs.

The online attacks simply do not stop. In the latest wave of online crime, ransomware hackers have obtained 1,200 Elasticsearch databases that lacked the necessary digital security protections.  

Apple is programming its computers with a new feature that adds security updates without requiring a manual prompt. Nor is there any need for a full operating system update for the improvements to be seamlessly implemented.

An especially harmful strain of malware known as "FluBot" has finally been taken down. It took several federal agencies and more than a year's time to eliminate FluBot.

Atlassian, one of the world's leading digital work specialists, is in the news for issuing a new security patch. The patch pertains to a zero-day vulnerability that is considered to be critical.

The pace of online attacks hasn't slowed nearly halfway into the year. Fire up a digital security website in your browser, and you are sure to find a nearly endless list of digital break-ins and other crimes in the virtual realm.

A PyPi package referred to as "CTX," and another referred to as "phpass" PHP Library are being used to steal AWS keys. The PHP and Python packages function as trojans.

A zero-day bug referred to as "Follina" sets the stage for outdated versions of Microsoft Office to be attacked. The malware is a significant threat as it loads itself on remote servers, bypassing the system's scanner dubbed "Defender AV" and permitting the running of harmful code on computers.

Flaws described as "critical" within the widely used ICS platform have the potential to catalyze RCE into action. RCE is an acronym commonly used by those in the tech world to refer to remote code execution.

REvil, one of the most feared cyber gangs in the history of the internet, appears to have returned.  The hacking collective is back on the scene with new DDoS attacks.

A link between several different types of the most threatening ransomware has been identified.  The link connects Yashma, Onyx, and Chaos ransomware together.

The final days of May have been quite tumultuous in the context of internet security. Online attacks continue to occur at an alarmingly high frequency here in the United States and abroad.

Those who pay attention to malware attacks have noted a considerable uptick in the number of XorDdos Linux attacks. XorDdos has developed a reputation for using attacks characterized as secure with shell brute force.  

A new ransomware variant dubbed Yashma has been pinpointed in the wild. The Chaos builder represents the latest version of the ransomware line.

A botnet referred to as Fronton tracks activity on the internet and conducts illegal operations. The IoT botnet aims to steal information, disinform, and wreak general havoc on the web.

A keylogger is infecting computers through harmful PDF files. The snake keylogger centers on an email campaign that sends PDF files and other files from Microsoft Word programs.

The failure to quickly patch a bug might empower online criminals to steal money directly out of the accounts of PayPal users.

The digital landscape is becoming more treacherous as the new year takes shape. Check out the news headlines, and you will find mention of ransomware, phishing, malware, and more.

A botnet referred to as "Sysrv-K" is targeting computers that run on both Windows and Linux operating systems. According to researchers with Microsoft, the botnet uses bugs within a Spring Framework and WordPress plugins.

The ransomware as a service specialist AvosLocker insists it is responsible for yet another healthcare facility attack. If the allegation is true, AvosLocker has successfully stolen data from CHRISTUS Health in Texas.

Attention iPhone users: your phone might be susceptible to hacking attacks even when in the off mode. Powering down the device still allows the NFC, Bluetooth, and UWB to remain functional.

If your computer is experiencing authentication errors or problems with its Windows operating system, there is a chance it is the result of a Microsoft patch.

Some of the world's top information technology managed services providers, or MSPs for short, have been warned of potential upcoming web-based attacks.

As we transition to the second half of the year, it is becoming increasingly clear that digital attacks are not slowing down in the slightest.

More than 1,000 phishing emails have been sent from the inboxes of National Health Service employees.  The National Health Service, or NHS for short, is based in the United Kingdom.

Microsoft is in the news for implementing a patch to combat the exploitation of an active zero-day bug.  The patch in question also contains important fixes for several weaknesses within the cloud environment infrastructure.

The use of malware designed to steal computer users' information, including login credentials and system information, is rising.

A new form of malware that functions with USBs is targeting Windows installers. The wormable threat is sometimes referred to as Raspberry Robbin. 

A massive digital security breach at Illuminate Education has put students' sensitive information between the ages of 5 and 18 at risk.

We are only four months into the new year, and cyber-attacks are soaring to record levels. As detailed below, businesses in all sectors are enduring digital offensives ranging from hackers transmitting ransomware to those embedding malware, conducting phishing scams, launching DDoS attacks, and more.

Kellogg Community College has suspended classes at its five campuses after being targeted by a nasty ransomware attack.  The ransomware offensive affected nearly 9,000 students at the college's campuses in Hastings, Albion, Battle Creek, Fort Custer Industrial Park, and Coldwater, Michigan.

The Emotet botnet is back and more powerful than ever before. The botnet is employing a different method for delivery when compromising computers that operate with Windows.

Cloudflare, a digital security specialist, is in the news for stopping a record-setting DDoS attack.  The DDoS attack in question transmitted an incredible 15 million requests each second.

Constella Intelligence's latest report on digital security highlights the ever-growing threat of ransomware, malware, phishing, and a slew of additional cyber threats.

The statistics and trends highlighted in the latest Constella Intelligence report indicate the number of digital breaches is increasing as time progresses.

Digital attacks are on the rise as we transition to the first week of May.  Though the weather is warming, cybercriminals are remaining within the comfy confines of home, infiltrating one network after another.

Digital criminals have breached dozens of repositories used on GitHub. The attack was performed with stolen tokens. The tokens in question are "OAuth" tokens.

Hackers are exploiting an NPM bug to send malware that appears to be harmless packages. The bug in question is referred to as a "logical flaw" by those in the digital security community.

Check Point, cyber security specialists based in Israel, reports flawed chipset bugs in Android smartphones have created an opportunity for digital criminals to perform comprehensive spying.

Atlassian is providing users of Jira with a digital security patch.  The patch is in response to the identification of a flawed authentication bypass process.

T-Mobile has been hacked again. This time, Lapsus$ hackers are responsible for the attack. Here is a quick look at T-Mobile's latest digital security breach details.

From ransomware attacks to phishing scams, spyware, malware, and beyond, businesses in the United States and elsewhere were slammed by digital offenses of every type in the third week of April.

Beanstalk Farms, one of the DeFi industry's most promising businesses, was recently hacked. DeFi is short for decentralized finance.

The NSO Group has placed spyware on computers, servers, and networks used by the United Kingdom's federal government. To be more specific, the spyware compromised the computing equipment used by the UK Prime Minister's office.  

Vulnerabilities in Unified Extensible Firmware Interface (UEFI) firmware have put Lenovo laptop computers at risk. A total of three UEFI security flaws have been identified in Lenovo laptops sold to consumers.

The popular Italian menswear brand Zegna was recently hit by a ransomware attack. RansomExx hackers illegally accessed and leaked the company's accounting data to the web.

The Lazarus hacking collective has been identified as the digital miscreants responsible for the $500+ million hack of Axie Infinity.

The week has gone by and had its fair share of digital attacks. Search Google's News section for "digital attacks" or "cyber-attacks" in the previous week, and you will find at least one story of a digital attack published nearly every single hour of the day going back several months.  

A ZLoader botnet has been wreaking havoc across the world. Microsoft recently highlighted the botnet's global operation to halt its progress.

Microsoft's digital security team is shining the spotlight on Tarrask malware. The new malware from China targets computers that run Windows operating systems.

Darkfeed, a platform that monitors the darknet, recently revealed that BlackCat ransomware hackers stole in excess of one terabyte of information from Florida International University.

Google's digital security team is warning Android phone users of a new hack that can obtain control of phones in mere seconds.

Digital security professionals are going out of their way to warn businesses and everyday computer users about two forms of malware that steal information.

Digital security is squarely in the spotlight as the world is increasingly on edge during Russia's war against Ukraine. The federal government has warned of potential cyber-attacks here at home.

Bugs within SpringShell and Spring Cloud are spurring the need for patching.  The push for patching is the result of proof-of-concept exploits.

The United States has successfully thwarted a Russian botnet before it could cause widespread havoc.   The news was revealed during a press conference on Wednesday.

A recent report from Immunefi states that hacks targeting decentralized finance (DeFi) platforms have resulted in losses that total more than a billion dollars.

A representative from Globant has admitted an unauthorized party has accessed the company's internal data system. All in all, about 70 gigabytes of the company's data has been leaked onto the internet.

A new form of malware dubbed "AcidRain" might be responsible for the wiping of Viasat modems. Though the company has not confirmed that the AcidRain malware is the underlying cause of the compromised modems, its representatives have indicated that the malware is likely responsible for the breach.

The pace of digital attacks has picked up as Russia's war against Ukraine continues. Though Russia has not come close to crippling the digital infrastructure of the free world, cybersecurity industry veterans are on edge as the war enters its second month.

Attention all Wyze camera owners: your camera has bugs that have the potential to allow criminals to take over the device. If a criminal obtains control over your Wyze camera, they will have access to the entirety of your video feeds.

Partnership Health Plan of California's IT systems have been down for an extended period of time due to a Hive ransomware attack.

A critical digital security bug within Sophos is allowing RCE to infiltrate firewalls. RCE is an acronym that stands for remote code execution.

If you use Google Chrome to surf the internet, you should be aware the tech giant has issued a warning. Google's public relations specialists are adamant that Chrome users need to upgrade the browser due to a zero-day hack.

Hackers are spreading malware through the hijacking of email chains on exchange servers lacking the necessary patching. This emerging email phishing effort uses conversation tactics to take control, transmitting IcedID malware that steals information.

Dozens of cyber-attacks occur every single day.  Though most of these attempts to breach systems and steal data are thwarted, some succeed in compromising targeted computers.

The ransomware attacks launched by AvosLocker are taking a toll on the United States' critically important infrastructure. The attacks are serious enough to warrant attention from the FBI.

Digital criminals are tapping into a novel rootkit to steal funds from bank ATM machines. The threat actor's rootkit zeroes in on Oracle Solaris systems.

Okta representatives have admitted they are investigating a possible cyber-attack. The software specialist made the admission early Tuesday morning.   

President Biden issued a memo to corporate heads across the land yesterday, insisting they must take action now to prevent a potentially crippling digital attack.

If you have been waiting for your credit score to increase, don't lose hope. The major credit bureaus of TransUnion, Experian, and Equifax recently announced nearly three-quarters of all medical debt will be removed from consumer credit reports as early as July of this year.

Cyber-attacks might not seem as threatening as a conventional in-person attack at your business or other building, yet a digital infiltration has the potential to cause even more damage than a traditional break-in.

Digital criminals are taking advantage of a Linux bug within a netfilter firewall module to gain root access. The digital security vulnerability within the Linux kernel can be compromised through a local adversary looking to secure elevated privileges on susceptible systems.

A ransomware hacking collective that speaks Russian is zeroing in on gaming and gambling businesses with repurposed ransomware tools initially developed by APT groups.

A trash panda that steals user credentials has made its way into the Telegram chat app. The Raccoon Stealer stores and updates addresses, creating a new avenue for digital criminals to transmit malware.  

Digital security specialists have discovered several security flaws within software package managers that have the potential to be abused for the purpose of running code that opens the door to highly sensitive information.

The video game company Ubisoft has been hacked. The digital attack caused the game-maker to issue a company-wide memo mandating that each employee reset their password.

The temperatures are finally rising after a grueling winter. People are spending less time indoors on their computers. However, the transition to spring does not mean digital attacks are dissipating.

Mozilla recently released an emergency update for its popular Firefox browser. The update pertains to several critical security flaws.

A days-long DDoS cyber-attack complete with an embedded ransom note has been halted. DDoS is an acronym that stands for distributed denial of service.

Samsung public relations representatives are admitting the company has been struck by Lapsus$ ransomware. The attack comes merely one week after NVIDIA was attacked by the same ransomware.  

Digital security researchers have figured out how to manipulate Amazon's popular Echo device.  The smart device has the potential to be remotely manipulated by way of its own speakers.

The Google Play store might seem safe at first glance, but those who perform their due diligence will find it contains several malicious apps.

The world is on edge as the war continues in Eastern Europe. There is a prevailing sentiment that the current boots-on-the-ground war will eventually transition to a cyberwar in which Russian hackers inflict digital pain on the United States, Ukraine, and countries that comprise NATO.

Digital security specialists are reporting several critical bugs within open-source multimedia known as PJSIP. At the moment, nearly half a dozen such security vulnerabilities have been identified.

Hackers are starting to use TCP Middlebox Reflection as a component of DDoS attacks. DDoS attacks are also known as denial-of-service attacks.