---
title: "Cybersecurity Updates For The Week 27 of 2022 | Phish Protection"
description: "Cybersecurity Updates For The Week 27 of 2022: Phishing attack prevention is a daily struggle for us netizens because attackers are always looking for."
image: "https://phishprotection.com/og/blog/cybersecurity-updates-week-27-2022.png"
canonical: "https://phishprotection.com/blog/cybersecurity-updates-week-27-2022/"
---

Quick Answer

Phishing attack prevention is a daily struggle for us netizens because attackers are always looking for opportunities to breach our systems. Here are the latest phishing headlines so that you can plan your cybersecurity measures better. A cyberattack recently targeted the private and public websites in Norway, which caused a temporary breakdown of the websites.

Share 

[ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-week-27-2022%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2027%20of%202022&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-week-27-2022%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-week-27-2022%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-week-27-2022%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2027%20of%202022 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2027%20of%202022&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-week-27-2022%2F "Share via Email") 

![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2022/07/anti-phishing-software.jpg) 

[Phishing attack prevention](/content/protection-from-phishing/how-to-stop-phishing/)is a daily struggle for us netizens because attackers are always looking for opportunities to breach our systems. Here are the latest phishing headlines so that you can plan your **cybersecurity** measures better.

### Cyberattack Hits Norwegian Websites

A cyberattack recently targeted the private and public websites in Norway, which caused a **temporary breakdown** of the websites. The Norwegian Prime Minister, Jonas Gahr Store, claimed that the attack had not caused much damage. A [DDoS attack](https://www.techradar.com/news/ddos-attacks-are-getting-more-complex-and-harder-to-spot) on the national data network brought down the national data network for several hours. As per reports, a pro-Russian attack group is responsible for the attacks.

Norway, though not a member of the European Union, mirrors its stand on several topics and has disrupted the transit of\*\* Russian supplies\*\* via Norway to Arctic Russia, just as the EU has placed sanctions on its goods. This attack on Norwegian systems came after the **country’s resistance**.

Despite taking

phishing prevention

measures, countries **standing against Russia** have been constantly targeted by cyberattacks. This attack on Norway’s websites comes just days after a similar attack on Lithuanian public and[private websites](https://www.cnbc.com/2022/06/30/cyberattack-hits-norway-pro-russian-hacker-group-suspected.html?&web%5Fview=true)was launched by a pro-Moscow hacker group. In this case, too, Lithuania had resisted the transit of Russian ferrous metals and steel through Lithuania to Kaliningrad.

### Cyberattack Hits Geographic Solutions, Inc.

A national outage at Geographic Solutions, Inc. (GSI) recently **caused downtime** at its client, the Nebraska Department of Labor’s website. The GSI [outage](https://www.computerweekly.com/news/365534245/Three-day-Capita-outage-was-result-of-cyber-attack) was caused by a cyberattack that made the organization shut down its state labor exchange and unemployment claims systems to contain the attack’s spread.

GSI is taking all

[anti-phishing](/content/anti-phishing) protection

measures to restore systems **at the earliest**. While the organization has provided no tentative resolution date, they warn that the website will be down for at least two days.

GSI has assured that only the online systems were affected by the breach and user data remains **uncompromised**. The Nebraska Department of Labor is[constantly communicating](https://www.ketv.com/article/nebraska-officials-unemployment-site-offline-two-days/40449889)with GSI and will share updates whenever it gets them. Fortunately, the department has mentioned that this incident won’t come in the way of eligible claimants receiving **unemployment insurance** benefits.

![Anti phishing software](https://media.mailhop.org/phishprotection/images/2022/07/anti-phishing-software.jpg) 

### Data Breach Hits OpenSea

OpenSea, the popular NFT marketplace, recently underwent a data breach. With a user base of over 600,000 and a transaction volume of over $20 billion , OpenSea is the largest NFT marketplace. The platform is now **warning its users** of possible [phishing attacks](/resources/phishing-attacks-examples) and asking them to adopt measures for

protection against phishing

.

OpenSea’s Head of Security, Cory Hardman, an employee of its email delivery vendor, Customer.io, downloaded the email addresses of newsletter subscribers and users of OpenSea. Because an **unauthorized party** also had access to these [email addresses](https://www.bbc.com/news/technology-64153381), user data was potentially exposed. Therefore, OpenSea urges its users to remain vigilant and watch out for possible phishing attempts.

Currently, OpenSea is working with Customer.io to get to the attack’s roots and has informed[law enforcement](https://www.bleepingcomputer.com/news/security/opensea-discloses-data-breach-warns-users-of-phishing-attacks/?&web%5Fview=true)of the breach.

### Scalper Botnet Targets Israeli Government Entities

Israeli government entities are **constantly targeted** by the Scalper [botnet](https://www.paloaltonetworks.com/cyberpedia/what-is-botnet), making it extremely difficult for them to conduct essential intra-national services.

The Scalper compromised the public service appointment systems and **scheduled meetings** with different government agencies. It then offered to sell these appointments to distressed citizens for over $100.

The targeted [government agencies](https://abcnews.go.com/Politics/government-agencies-urge-revamp-software-cybersecurity-burden-off/story?id=98540069) whose **fake appointments** were being dealt with include the Israeli Ministry of Interior, passport renewal, National Insurance, the Ministry of Transport, Israel Post, and the Israeli State Electricity Company.

This Scalper attack leverages a flaw in the GamkenBot created by the Israeli government to **auto-schedule appointments** for a backlog of passport applications that have remained unaddressed since the pandemic.

Whenever the GamkenBot is made public, adversaries modify its functions and steal all available data. In addition, the [threat actors](/phishing/threat-actors-target-western-digital-cripple-its-my-cloud-service) established a Telegram group where they **offered instant appointments**.

Despite being aware of the actions of Scalper, the Israeli government couldn’t remove the online platform considering the risk of canceling valid appointments. The government **enabled CAPTCHA** on the booking page as part of its measures for [protection from phishing](/).

But the adversaries found a way to solve the CAPTCHA functionality within a few days. Experts advise using advanced measures like **behavioral analysis** and device fingerprinting to deal with such[modern bots](https://cyware.com/news/scalper-bots-leave-the-israeli-government-helpless-9275ebad).

### Beware of Extortion Scams Targeting the LGBTQ+ Community Online

The U.S. Federal Trade Commission (FTC) warns LGBTQ+ community members to be vigilant while using online [dating apps](https://www.gmanetwork.com/news/scitech/technology/725942/dating-app-users-at-risk-of-falling-victim-to-malware-phishing-cybersecurity-provider/story/) like Feeld and Grindr because adversaries are launching **extortion campaigns** by abusing these platforms and posing as potential romantic partners.

These threat actors initiate romantic conversations on these LGBTQ+ dating apps and then ask victims for **explicit photos**. Victims falling for this trap are blackmailed into paying the ransom through untraceable gift cards. The hackers **threaten victims** that not complying with the ransom demand would compel hackers to leak their sexual imagery or the fact that they are still “closeted” (wherever applicable) to their family and friends.

![Spear phishing prevention](https://media.mailhop.org/phishprotection/images/2022/07/spear-phishing-prevention-6837.jpg) 

Therefore, the FTC recommends that LGBTQ+ community members use such dating apps with a lot of caution and refrain from sharing explicit photos with **strangers** they meet online. Furthermore,[protect yourself from phishing](/resources/protect-yourself-from-phishing)by doing a **reverse image search** on any person you recently met online.

If the **name and details don’t match**, that’s a red flag for you. Also, avoid paying scammers to delete your chats or photos because there is[no guarantee](https://www.bleepingcomputer.com/news/security/lgbtq-plus-community-warned-of-extortionists-abusing-dating-apps/?&web%5Fview=true)that they will.

### Japanese Contractor Exposes 460k Residents’ Data.

An unidentified Japanese contractor working for the city of Amagasaki accidentally placed a drive containing the records of over 460,000 residents in this bag and went for a **night out of town**. Eventually, he ended up passing out in the street, and when he woke up, his bag was missing.

The incident report stated that the [memory stick](https://www.techopedia.com/definition/5303/memory-stick) in possession of this man contained sensitive and **confidential information** about residents. These include their names, addresses, birth dates, tax details, social security records, and banking information. Amagasaki officials mentioned that the USB stick **data was encrypted** to ensure

anti-phishing

protection.

It extended sincere apologies for risking the **public’s trust** in the city administration. Fortunately, the **police found the bag** and the USB stick later. So far, there is[no evidence](https://www.theregister.com/2022/06/27/security%5Fin%5Fbrief/?&web%5Fview=true)that anyone accessed the USB stick information.

### Ransomware Hits Napa Valley College Website

A ransomware attack recently **brought down the website** and network systems of Napa Valley College. Soon after discovering the breach, NVC launched an investigation into the incident. All the while attempts to reach the site led to an **error message** saying, “This site can’t be reached,” or a redirect to the internet domain name registrar [GoDaddy](/phishing-awareness/godaddy-customers-beware-hackers-have-been-stealing-source-code-for-years).

As part of the college’s measures to ensure

protection against phishing attacks

, some network systems were deliberately brought down, whereas others were down as a result of the attack. The school is reportedly heading towards **full recovery**, but there is no fixed date when all systems will be restored.

The school is offering free [identity protection](https://oxfordcomputertraining.com/glossary/what-is-identity-protection/) and **credit monitoring** to all students and employees. Furthermore, state and federal law enforcement have been informed, and the school is working with **third-party security** experts to restore services.

While the school is trying its best to restore systems, it maintains that it **never had to cancel classes** for such unprecedented problems and that students never lost access to their student portals or emails in the past.

NVC is affirmative that this incident, too, won’t lead to any drop-off in fall registrations. The school believes its endeavor to keep things as smooth as possible for employees and students despite everything **ensures** that[enrollment numbers](https://napavalleyregister.com/news/local/ransomware-attack-caused-ongoing-napa-valley-college-internet-and-phone-system-outage/article%5F8bc46c5a-f410-11ec-bca2-e35eddc616de.html?&web%5Fview=true)will remain unaffected .

### Protect Your Organization

- [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/)
- [See how Phish Protection blocks threats in real time](/anti-phishing-tools/)

## Topics

[ Announcements ](/tags/announcements/) 

![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) 

[ Brad Slavin ](/authors/brad-slavin/) 

General Manager

Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base.

[LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) 

## Protect your inbox from phishing attacks

Real-time email security with 60-day free trial. No credit card required.

[Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) 

## Related Articles

[  Intermediate 5m  Cybersecurity Updates For The Week 33 of 2022  Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[  Intermediate 6m  Cybersecurity Updates For The Week 41 of 2022  Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[  Intermediate 5m  Cybersecurity Updates For The Week 1 of 2021  Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[  Intermediate 6m  Cybersecurity Updates For The Week 1 of 2022  Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/)

```json
{"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]}
```

```json
{"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}}
```

```json
{"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 27 of 2022","description":"Cybersecurity Updates For The Week 27 of 2022: Phishing attack prevention is a daily struggle for us netizens because attackers are always looking for.","url":"https://phishprotection.com/blog/cybersecurity-updates-week-27-2022/","datePublished":"2022-07-10T09:52:49.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2022-07-10T09:52:49.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-week-27-2022/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1311,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2022/07/anti-phishing-software.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}}
```

```json
{"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 27 of 2022","item":"https://phishprotection.com/blog/cybersecurity-updates-week-27-2022/"}]}
```