Daily NCSC-FI news followup 2019-06-30

Breaking: Huawei will be allowed to do business with U.S. companies again

www.androidauthority.com/breaking-huawei-allowed-to-do-business-with-us-companies-again-1004260/ U.S. companies will be allowed to work with Huawei again, President Trump announced in a news conference.. Its not clear what this means for now, but its likely Huawei will be able to acquire basic components like Qualcomm processors and Googles Android OS.

Tietojen kalastelua, hakkerointia, viruksia ja kiristysohjelmia Suomen terveydenhuoltojärjestelmään tehty kyberhyökkäyksiä useita kymmeniä kertoja

www.mtvuutiset.fi/artikkeli/tietojen-kalastelua-hakkerointia-viruksia-ja-kiristysohjelmia-suomen-terveydenhuoltojarjestelmaan-tehty-kyberhyokkayksia-useita-kymmenia-kertoja/7465388 Jyväskylän yliopiston informaatioteknologian tiedekunnassa tehdyssä tutkimuksessa analysoitiin 65 vuosina 20132018 tapahtunutta kansainvälistä tai suomalaista kyberhyökkäystä terveydenhuoltojärjestelmää vastaan.. Hyökkäyksissä korostuvat tietojen kalastelumenetelmät, kiristysohjelmat, palveluestohyökkäykset, hakkeroinnit, virusohjelmat ja laitteiden sekä tallenteiden varkaudet tai katoamiset.

Bulgarian IT expert arrested after demoing vulnerability in kindergarten software

www.zdnet.com/article/bulgarian-it-expert-arrested-after-demoing-vulnerability-in-kindergarten-software/ Bulgarian authorities have arrested an IT specialist for demonstrating a security flaw in the software used by local kindergartens.. The vulnerability allowed the IT expert, named Petko Petrov, to download the details of 235,543 citizens of Stara Zagora, a province in central Bulgaria with over 333,000 inhabitants.

You might be interested in …

Daily NCSC-FI news followup 2020-03-02

Active Scans for Apache Tomcat Ghostcat Vulnerability Detected, Patch Now www.bleepingcomputer.com/news/security/active-scans-for-apache-tomcat-ghostcat-vulnerability-detected-patch-now/ Ongoing scans for Apache Tomcat servers unpatched against the Ghostcat vulnerability that allows potential attackers to take over servers have been detected over the weekend.. As cyber threat intelligence firm Bad Packets said on Saturday, “mass scanning activity targeting this vulnerability has already begun. […]

Read More

Daily NCSC-FI news followup 2021-02-23

Cyber Criminals Exploit Accellion FTA for Data Theft and Extortion www.fireeye.com/blog/threat-research/2021/02/accellion-fta-exploited-for-data-theft-and-extortion.html “”. Starting in mid-December 2020, malicious actors that Mandiant tracks as UNC2546 exploited multiple zero-day vulnerabilities in Accellion’s legacy File Transfer Appliance (FTA) to install a newly discovered web shell named DEWMODE. The motivation of UNC2546 was not immediately apparent, but starting in late […]

Read More

Daily NCSC-FI news followup 2020-06-22

Google Analytics as a data exfiltration channel www.kaspersky.com/blog/web-skimming-with-ga/35986/ Web skimming, a fairly common method of getting cardholder data from visitors of online stores, is a time-honored cybercriminal practice. Recently, however, our experts discovered a rather dangerous innovation involving the use of Google Analytics to exfiltrate stolen data. Lets explore why this is dangerous and how […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.