Daily NCSC-FI news followup 2019-06-29

Toiminta jälleen normaalia kyberhyökkäys lamaannutti Lahden kaupungin tietoverkon

www.mtvuutiset.fi/artikkeli/toiminta-jalleen-normaalia-kyberhyokkays-lamaannutti-lahden-kaupungin-tietoverkon/7463758 Lahden kaupungin tietoverkon toiminta on palautunut pääosin normaaliksi, kertoo Lahden kaupunki. Kaupungin tietojärjestelmään tehtiin kyberhyökkäys yli kaksi viikkoa sitten.. Hyökkäyksen seurauksena verkko kuormittui ja ohjelma ehti saastuttaa koneita. Tämä lamaannutti osittain kaupungin toiminnan.. Palveluissa saattaa olla hitautta, ja joitakin toimimattomia yhteyksiä vielä työstetään

MongoDB Leak Exposed Millions of Medical Insurance Records

threatpost.com/mongodb-leak-exposed-millions-of-medical-insurance-records/146125/ Millions of records containing personal information and medical insurance data were exposed by a database belonging to insurance marketing website MedicareSupplement.com. An online database belonging to insurance marketing website MedicareSupplement.com was found exposing more than 5 million records with personal information.

NSA improperly collected US phone call data after saying problem was fixed

eu.usatoday.com/story/news/nation/2019/06/26/nsa-improperly-obtained-phone-call-data-after-saying-issues-were-fixed/1568914001/ The National Security Agency improperly collected phone call records of Americans last fall, months after a previous breach that compelled the agency to destroy millions of records from the contentious program, documents released Wednesday revealed.

Undocumented Excel Variable Used in Malicious Spam Run Targeting Japanese Users

www.fortinet.com/blog/threat-research/excel-variable-targeting-japanese-users.html Over the course of the past few months, the FortiGuard SE group has been utilizing and enhancing the Fortinet machine learning systems to detect emerging threats. Recently, one of those machines detected an anomalous spike that led us to discover a malware campaign that had been using social engineering techniques to target Japanese citizens over the course of several weeks.. The campaign consists of spam email sent to a recipient where the context of the email (loosely translated from Japanese) contains multiple variations of the same message subject that reads [!!] Matter of May invoice although various other subjects and contexts were also observed.

You might be interested in …

Daily NCSC-FI news followup 2019-06-23

U.S. Carried Out Cyberattacks on Iran www.nytimes.com/2019/06/22/us/politics/us-iran-cyber-attacks.html United States Cyber Command on Thursday conducted online attacks against an Iranian intelligence group that American officials believe helped plan the attacks against oil tankers in recent weeks, according to people briefed on the operation. The intrusion occurred the same day President Trump called off a strike on […]

Read More

Daily NCSC-FI news followup 2019-07-10

Lapin Kansa: Kemin kaupungin tietoliikenneverkossa poikkeuksellisen pitkä vikatilanne syytä selvitetään www.lapinkansa.fi/lappi/kemin-kaupungin-tietoliikenneverkossa-poikkeuksellisen-pitka-vikatilanne-syyta-selvitetaan-3596802/ Zoom reverses course to kill off Mac local web server www.zdnet.com/article/zoom-reverses-course-to-kill-off-mac-local-web-server/ Less than a day after backing its approach to get around Safari restrictions on Mac, Zoom’s local web server is no more. New FinSpy iOS and Android implants revealed ITW securelist.com/new-finspy-ios-and-android-implants-revealed-itw/91685/ FinSpy is […]

Read More

Daily NCSC-FI news followup 2020-02-25

Mobile malware evolution 2019 securelist.com/mobile-malware-evolution-2019/96280/ Ransomware Against the Machine: How Adversaries are Learning to Disrupt Industrial Production by Targeting IT and OT www.fireeye.com/blog/threat-research/2020/02/ransomware-against-machine-learning-to-disrupt-industrial-production.html Firefox enables DNS-over-HTTPS by default (with Cloudflare) for all U.S. users thehackernews.com/2020/02/firefox-dns-over-https.html Install Latest Chrome Update to Patch 0-Day Bug Under Active Attacks thehackernews.com/2020/02/google-chrome-zero-day.html New OpenSMTPD RCE Flaw Affects Linux and OpenBSD […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.