Daily NCSC-FI news followup 2019-08-04

Extortion Emails on the Rise: A Look at The Different Types

www.bleepingcomputer.com/news/security/extortion-emails-on-the-rise-a-look-at-the-different-types/ No matter the theme of an extortion scam, their goal is all the same. To scare you into thinking the attackers have information or video about you so that you make a bitcoin payment to avoid the information from being released.. Below we take a look at the different types of extortion scams that we have seen over the past year.

Verkkohyökkäys keskeytti finaalin lähes tunniksi Assemblyn SC2-mestaruus Etelä-Koreaan, Joona Sotala ylsi välieriin

www.is.fi/digitoday/esports/art-2000006194104.html Turnausjärjestäjän mukaan finaali keskeytyi kesken kuudennen pelin, kun tapahtumaverkkoon tehty palvelunestohyökkäys teki pelaamisesta mahdotonta. Peliä pystyttiin jatkamaan vasta 45 minuutin jälkeen.

SystemBC is like Christmas in July for SOCKS5 Malware and Exploit Kits

www.proofpoint.com/us/threat-insight/post/systembc-christmas-july-socks5-malware-and-exploit-kits Proofpoint researchers have identified a previously undocumented proxy malware, dubbed “SystemBC”, being distributed by the Fallout and RIG exploit kits.. SystemBC is written in C++ and primarily sets up SOCKS5 proxies on victim computers that can then be used by threat actors to tunnel/hide the malicious traffic associated with other malware.

Daily NCSC-FI news followup 2020-10-14

German authorities raid FinFisher offices www.zdnet.com/article/german-authorities-raid-finfisher-offices/ German authorities have raided the offices of FinFisher, a German software company that makes surveillance tools, accused in the past of providing software to oppressive regimes. FinFisher markets its tools as meant for law enforcement investigations and intelligence agencies. Known customers include the German federal police and Berlin police […]

Daily NCSC-FI news followup 2019-08-16

New Bluetooth KNOB Attack Lets Attackers Manipulate Traffic www.bleepingcomputer.com/news/security/new-bluetooth-knob-attack-lets-attackers-manipulate-traffic/ A new Bluetooth vulnerability named “Key Negotiation Of Bluetooth attack” or “KNOB” has been disclosed that allow attackers to more easily brute force the encryption key used during pairing to monitor or manipulate the data transferred between two paired devices.. see also knobattack.com/ Ammottava aukko päästi […]

Daily NCSC-FI news followup 2020-12-17

Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations – Alert (AA20-352A) us-cert.cisa.gov/ncas/alerts/aa20-352a The Cybersecurity and Infrastructure Security Agency (CISA) is aware of compromises of U.S. government agencies, critical infrastructure entities, and private sector organizations by an advanced persistent threat (APT) actor beginning in at least March 2020. This APT actor […]