Daily NCSC-FI news followup 2019-09-13

Israel accused of planting mysterious spy devices near the White House

www.politico.com/story/2019/09/12/israel-white-house-spying-devices-1491351 The U.S. government concluded within the past two years that Israel was most likely behind the placement of cellphone surveillance devices that were found near the White House and other sensitive locations around Washington, according to three former senior U.S. officials with knowledge of the matter.

France to block Facebook’s Libra cryptocurrency in Europe

www.theguardian.com/technology/2019/sep/12/france-block-development-facebook-libra-cryptocurrency The French finance minister, Bruno Le Maire, said plans for Libra could not move ahead until concerns over consumer risk and governments monetary sovereignty were addressed.

Treasury Sanctions North Korean State-Sponsored Malicious Cyber Groups

home.treasury.gov/news/press-releases/sm774 Today, the U.S. Department of the Treasurys Office of Foreign Assets Control (OFAC) announced sanctions targeting three North Korean state-sponsored malicious cyber groups responsible for North Koreas malicious cyber activity on critical infrastructure. Todays actions identify North Korean hacking groups commonly known within the global cyber security private industry as Lazarus Group, Bluenoroff, and Andariel as agencies,

Autumn Aperture: Threat Campaign Highlights New Evasion Technique using an Antiquated File Format

blog.prevailion.com/2019/09/autumn-aperture-report.html After detecting several related trojanized documents all discussing nuclear deterrence, North Koreas nuclear submarine program, and North Korean economic sanctions Prevailion has determined the existence of a coordinated threat campaign. We have dubbed the campaign Autumn Aperture and have associated it with moderate confidence to the Kimsuky, a.k.a. Smoke Screen, threat actors.

You might be interested in …

Daily NCSC-FI news followup 2019-10-05

Vulnerabilities Exploited in Multiple VPN Applications www.us-cert.gov/ncas/current-activity/2019/10/04/vulnerabilities-exploited-multiple-vpn-applications The United Kingdom (UK) National Cyber Security Centre (NCSC) has released an alert on advanced persistent threat (APT) actors exploiting vulnerabilities in Virtual Private Network (VPN) applications. A remote attacker could exploit these vulnerabilities to take control of an affected system. DHS and FDA warn about much broader […]

Read More

Daily NCSC-FI news followup 2019-10-30

Major vulnerability patched in the EU’s eIDAS authentication system www.zdnet.com/article/major-vulnerability-patched-in-the-eus-eidas-authentication-system/ Vulnerability would have allowed attackers to pose as any EU citizen or business. SEC Consult researchers said they found that current versions of the eIDAS-Node package fail to validate certificates used in eIDAS operations, allowing attackers to fake the certificate of any other eIDAS citizen […]

Read More

Daily NCSC-FI news followup 2019-08-26

Poliisi varoittaa ihmisiä yhä yleisemmiksi käyvistä verkkorikoksista. Esimerkiksi niin sanottuja pomohuijauksia yritetään yllättäviinkin kohteisiin. www.tivi.fi/uutiset/tv/dd810717-424e-4651-b482-e5c5014dcdd5 Tänä vuonna on tehty jo 196 rikosilmoitusta epäillystä toimitusjohtajapetoksesta ja poliisin arvion mukaan yritykset ja muut rikosten kohteeksi joutuneet toimijat ovat menettäneet rikosten takia rahaa arviolta 4,2 miljoonaa euroa. Valtio aikoo fuusioida edellisen hallituksen sote- ja maakuntayhdistyksen yhteydessä perustamat it-yhtiöt […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.