Daily NCSC-FI news followup 2019-08-26

Poliisi varoittaa ihmisiä yhä yleisemmiksi käyvistä verkkorikoksista. Esimerkiksi niin sanottuja pomohuijauksia yritetään yllättäviinkin kohteisiin.

www.tivi.fi/uutiset/tv/dd810717-424e-4651-b482-e5c5014dcdd5 Tänä vuonna on tehty jo 196 rikosilmoitusta epäillystä toimitusjohtajapetoksesta ja poliisin arvion mukaan yritykset ja muut rikosten kohteeksi joutuneet toimijat ovat menettäneet rikosten takia rahaa arviolta 4,2 miljoonaa euroa.

Valtio aikoo fuusioida edellisen hallituksen sote- ja maakuntayhdistyksen yhteydessä perustamat it-yhtiöt Vimanan ja SoteDigin. Asian vahvistaa Tiville alivaltiosihteeri Päivi Nerg valtiovarainministeriöstä.

www.tivi.fi/uutiset/tv/9170be5d-9e91-430a-960e-feae7e2db207

Apple Releases iOS 12.4.1 to Patch Security Flaw Behind Jailbreak (CVE-2019-8605)

www.bleepingcomputer.com/news/security/apple-releases-ios-1241-to-patch-security-flaw-behind-jailbreak/

Cisco has released a hardware tool, called 4CAN, developed to help researchers to discover vulnerabilities in automotive systems.

securityaffairs.co/wordpress/90317/hacking/4can-automotive-testing-tool.html

New Nemty Ransomware May Spread via Compromised RDP Connections

www.bleepingcomputer.com/news/security/new-nemty-ransomware-may-spread-via-compromised-rdp-connections/

WeDidIt! – Fundraising Platform Exposes 7.5 Million Records Online

securitydiscovery.com/wedidit-fundraising-platform/ 7.5 million records including full names names, user account numbers, home addresses, emails, and other identifiable details.

Detecting Bluetooth Credit Card Skimmers

www.schneier.com/blog/archives/2019/08/detecting_credi_1.html

Australia Plans to Block Domains That Host Terrorist Material During Crisis Situations

gizmodo.com/australia-plans-to-block-domains-that-host-terrorist-ma-1837560178

Microsoft is offering a Windows 7 extended security update to some users

www.zdnet.com/article/microsoft-is-offering-some-enterprise-users-a-one-year-windows-7-extended-security-update-promo/ Microsoft is running a limited-time promotion for EA and EAS customers which will give them a year of Windows 7 extended security updates for no additional charge.

Clickjacking scripts found on 613 popular sites, academics say

www.zdnet.com/article/clickjacking-scripts-found-on-613-popular-sites-academics-say/ Alexa top 250K websites — we detected 437 third-party scripts that intercepted user clicks on 613 websites, which in total receive around 43 million visits on a daily basis,” researchers said.

ThreatList: Half of All Social Media Logins Are Fraud

threatpost.com/half-social-media-logins-fraud/147688/ More than half of logins (53 percent) on social-media sites are fraudulent; and 25 percent of all new account applications on social media are fake, according to a recent analysis

You might be interested in …

Daily NCSC-FI news followup 2021-02-26

Ransomware gang hacks Ecuador’s largest private bank, Ministry of Finance www.bleepingcomputer.com/news/security/ransomware-gang-hacks-ecuadors-largest-private-bank-ministry-of-finance/ A hacking group called ‘Hotarus Corp’ has hacked Ecuador’s Ministry of Finance and the country’s largest bank, Banco Pichincha, where they claim to have stolen internal data. Ryuk ransomware now self-spreads to other Windows LAN devices www.bleepingcomputer.com/news/security/ryuk-ransomware-now-self-spreads-to-other-windows-lan-devices/ “Through the use of scheduled tasks, the […]

Read More

Daily NCSC-FI news followup 2019-09-10

Business Email Compromise Is a $26 Billion Scam Says the FBI www.bleepingcomputer.com/news/security/business-email-compromise-is-a-26-billion-scam-says-the-fbi/ FBI’s Internet Crime Complaint Center (IC3) says that Business Email Compromise (BEC) scams are continuing to grow every year, with a 100% increase in the identified global exposed losses between May 2018 and July 2019. 281 Arrested in Worldwide Business Email Compromise Crackdown […]

Read More

Daily NCSC-FI news followup 2021-01-02

The Week in Ransomware – January 1st 2021 – New Year Edition www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-1st-2021-new-year-edition/ This holiday edition cover the latest ransomware news from the past two weeks, including known ransomware attacks and law enforcement takedowns. Over the past two weeks, we have seen ransomware attacks on scent and flavor designed Symrise, FreePBX developer Sangoma, trucking giant […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.