Daily NCSC-FI news followup 2019-10-14

Laajamittainen häiriö Nesteen IT-järjestelmissä

www.neste.com/fi/tiedotteet-ja-uutiset/laajamittainen-hairio-nesteen-it-jarjestelmissa Nesteen IT-järjestelmissä on havaittu laajamittainen häiriö. Häiriö vaikuttaa Nesteen Suomen ja Baltian toimintoihin laajasti prosessi-, säiliö- ja terminaalialueella, ja aiheuttaa viivästyksiä tuotejakelussa. Häiriön syytä tutkitaan parhaillaan yhteistyössä palveluntarjoajien kanssa.

Connecting the dots: Exposing the arsenal and methods of the Winnti Group

www.welivesecurity.com/2019/10/14/connecting-dots-exposing-arsenal-methods-winnti/ New ESET white paper released describing updates to the malware arsenal and campaigns of this group known for its supply-chain attacks. full report


Valtionhallinnon tietoliikenneyhteydet takkuilivat maanantaiaamuna Vika vaikutti noin kymmenen organisaation yhteyksiin

yle.fi/uutiset/3-11018866 Häiriö johtui viikonloppuna tehdyistä huoltotöistä.

Iranian Hackers Create Credible Phishing to Steal Library Access

www.bleepingcomputer.com/news/security/iranian-hackers-create-credible-phishing-to-steal-library-access/ The Silent Librarian threat group is constantly updating its tactics and techniques, to the point of using on its login phishing pages info and alerts that is accurate and relevant to potential victims.. Security researchers track this group under different names (TA407, Cobalt Dickes, Mabna Institute). They all agree on its connection with the Iranian government and that its purpose is to steal intellectual property from universities across the globe.

Apple Under Fire Over Sending Some Users Browsing Data to China’s Tencent

thehackernews.com/2019/10/apple-safari-safebrowsing-tencent.html Late last week, it was widely revealed that starting from at least iOS 12.2, Apple silently integrated the “Tencent Safe Browsing” service to power its “Fraudulent Website Warning” feature in the Safari web browser for both iOS and macOS.. see also


Huijarit ottivat kohteekseen pienten elokuvateattereiden asiakkaat viesteillä luvataan halpoja lippuja

yle.fi/uutiset/3-11019578 Viestejä on lähetetty ainakin Helsingin Orionin, Tampereen Arthouse Cinema Niagaran ja Järvenpään Studio 123:n nimissä.

Mikko Hyppönen: Teemme parhaillaan virhettä, jonka vuoksi lapsemme vielä vihaavat meitä

www.is.fi/digitoday/tietoturva/art-2000006269566.html F-Securen tutkimusjohtaja vertaa esineiden internetiä asbestipommiin, jonka jättimäiset haitat tajuttiin vasta isolla viiveellä.

McAfee ATR Analyzes Sodinokibi aka REvil Ransomware-as-a-Service Follow The Money

securingtomorrow.mcafee.com/other-blogs/mcafee-labs/mcafee-atr-analyzes-sodinokibi-aka-revil-ransomware-as-a-service-follow-the-money/ This is the third installment of the McAfee Advanced Threat Research (ATR) analysis of Sodinokibi and its connections to GandCrab, the most prolific Ransomware-as-a-Service (RaaS) Campaign of 2018 and mid 2019.

Microsoft Defender ‘Tamper Protection’ reaches general availability

www.zdnet.com/article/microsoft-defender-tamper-protection-reaches-general-availability/ Tamper Protection prevents malware from disabling Windows Defender features.

Google announces new USB-C Titan Security Key

www.zdnet.com/article/google-announces-new-usb-c-titan-security-key/ The latest version of the second-factor security key is compatible with Android, Chrome OS, macOS, and Windows devices

Factoring 2048-bit Numbers Using 20 Million Qubits

www.schneier.com/blog/archives/2019/10/factoring_2048-.html This theoretical paper shows how to factor 2048-bit RSA moduli with a 20-million qubit quantum computer in eight hours. It’s interesting work, but I don’t want overstate the risk.

You might be interested in …

Daily NCSC-FI news followup 2020-07-04

Hackers are trying to steal admin passwords from F5 BIG-IP devices www.zdnet.com/article/hackers-are-trying-to-steal-admin-passwords-from-f5-big-ip-devices/#ftag=RSSbaffb68 In an interview earlier today, [NCC group researcher] Warren told ZDNet the attacks are malicious in nature, and hackers are attempting to steal administrator passwords from the hacked devices. New Behave! extension warns of website port scans, local attacks www.bleepingcomputer.com/news/security/new-behave-extension-warns-of-website-port-scans-local-attacks/ A new browser […]

Read More

Daily NCSC-FI news followup 2020-02-12

Valentines & Chocolate Dont Always Equal Love blog.checkpoint.com/2020/02/12/valentines-chocolate-dont-always-equal-love/ With Valentines Day approaching, lovers around the world are working on finding the best way to celebrate with their loved ones. Meanwhile cyber criminals around the world also seem to be caught up in the spirit of this unique day. Over the past 2 years, Check Point […]

Read More

Daily NCSC-FI news followup 2021-02-13

Who is to blame for the malicious Barcode Scanner that got on the Google Play store? blog.malwarebytes.com/android/2021/02/who-is-to-blame-for-the-malicious-barcode-scanner-that-got-on-the-google-play-store/ In our last blog, Barcode Scanner app on Google Play infects 10 million users with one update, we wrote about a barcode scanner found on the Google Play store that was infected with Android/Trojan.HiddenAds.AdQR.. All initial signs led […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.