Daily NCSC-FI news followup 2019-09-27

Some Voting Machines Still Have Decade-Old Vulnerabilities

www.wired.com/story/voting-village-results-hacking-decade-old-bugs/ The results of the 2019 Defcon Voting Village are inand they paint an ugly picture for voting machine security.. In three short years, the Defcon Voting Village has gone from a radical hacking project to a stalwart that surfaces voting machine security issues. This afternoon, its organizers released findings from this year’s eventincluding urgent vulnerabilities from a decade ago that still plague voting machines currently in use.

Onko sinulla äly-tv? Nämä kaikki tiedot se kerää sinusta

www.is.fi/digitoday/tietoturva/art-2000006247849.html Älytelevisiot tarkkailevat katsojaa ja lähettävät heistä tietoa moneen paikkaan. Asennusvaiheessa on syytä pitää silmä tarkkana.

Divergent: “Fileless” NodeJS Malware Burrows Deep Within the Host

blog.talosintelligence.com/2019/09/divergent-analysis.html Cisco Talos recently discovered a new malware loader being used to deliver and infect systems with a previously undocumented malware payload called “Divergent.”This threat uses NodeJS a program that executes JavaScript outside of a web browser as well as the legitimate open-source utility WinDivert to facilitate some of the functionality in the Divergent malware.

Here’s a phishing URL to give you nightmares https://www.reddit.com/r/sysadmin/comments/d9ndnf/heres_a_phishing_url_to_give_you_nightmares/ I got an alert about a user click on a phishing email. Took a look at the alert and the URI originally looked legit – adobe.com, no problem. I tested the URI string from Adobe, and sure enough you can put anything after &p1= and adobe will redirect you.. See also:


Kaivinkone katkaisi tietoliikennekaapelin Vantaalla, Apotti-tietojärjestelmän verkkoyhteydet poikki

www.hs.fi/kaupunki/art-2000006252723.html APOTTI-TIETOJÄRJESTELMÄN yhteydet ovat tällä hetkellä poikki Vantaan kaupungin palveluissa. Sosiaali- ja terveystoimen henkilökunta ei pääse käsiksi potilastietoihin, koska he eivät pääse kirjautumaan järjestelmään.

New Checkm8 jailbreak released for all iOS devices running A5 to A11 chips

www.zdnet.com/article/new-checkm8-jailbreak-released-for-all-ios-devices-running-a5-to-a11-chips/#ftag=RSSbaffb68 A security researcher has released today a new jailbreak that impacts all iOS devices running on A5 to A11 chipsets — chips included in all Apple products released between 2011 and 2017. This includes iPhone models from 4S to 8 and X.

You might be interested in …

Daily NCSC-FI news followup 2020-03-17

Working from home: Cybersecurity tips for remote workers www.zdnet.com/article/working-from-home-cybersecurity-tips-for-remote-workers/ Switching to remote working because of the coronavirus can create cybersecurity problems for employers and employees. Here are some things to watch.. ENISA said it had already seen an increase in coronavirus-related phishing attacks. The agency recommends, as far as possible, that workers try to not […]

Read More

Daily NCSC-FI news followup 2020-03-19

Cybercriminals impersonate World Health Organization to distribute fake coronavirus e-book blog.malwarebytes.com/social-engineering/2020/03/cybercriminals-impersonate-world-health-organization-to-distribute-fake-coronavirus-e-book/ The number of scams, threats, and malware campaigns taking advantage of public concern over the coronavirus is increasing each day. As a result, we’ve been actively monitoring emails within our spam honeypot to flag such threats and make sure our users are protected. Hackers […]

Read More

Daily NCSC-FI news followup 2020-09-25

Microsoft boots apps out of Azure used by China-sponsored hackers arstechnica.com/information-technology/2020/09/microsoft-boots-apps-used-by-china-sponsored-hackers-out-of-azure/ Active Directory apps used for command-and-control infrastructure are no more. Report: www.microsoft.com/security/blog/2020/09/24/gadolinium-detecting-empires-cloud/ Feds Hit with Successful Cyberattack, Data Stolen threatpost.com/feds-cyberattack-data-stolen/159541/ The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit. FinSpy Spyware for Mac and Linux OS Targets Egyptian Organisations thehackernews.com/2020/09/finspy-malware-macos-linux.html […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.