Daily NCSC-FI news followup 2019-11-10

Tällaisilla viesteillä suomalaisilta yrityksiltä kalastellaan rahaa katso, olisitko itse haksahtanut

yle.fi/uutiset/3-11026269?origin=rss Tässä jutussa näet esimerkkejä aidoista työpaikoille tulevista huijausviesteistä.

The state of JavaScript frameworks security report 2019

snyk.io/wp-content/uploads/snyk-javascript_report_2019.pdf A security review of Angular and React with a sneak peek into Vue.js, Bootstrap and jQuery. Also

www.i-programmer.info/news/167-javascript/13232-the-perils-of-jquery.html. ” Although the JavaScript library jQuery is no longer as popular as it was, it is still widely used. As a result at least six in ten websites are impacted by jQuery XSS vulnerabilities. “

5G-teknologia tulee myös viranomaisten avuksi saako taivaalta droonikuvaa suorana?

yle.fi/uutiset/3-11060861?origin=rs Oulun yliopiston vetämä Priority-projekti tutkii ja kehittää viranomaisille ja etäyrityksille suunnattuja toiminnan kannalta kriittisiä viestintäratkaisuja. Mukana tutkimuskonsortiossa on tutkimuslaitoksia (Centria- ja Turun ammattikorkeakoulut), VTT, viranomaisia (mm. Puolustusvoimat ja pelastustoimi) sekä yrityksiä.

Miten hakkeri tekee tiedustelua?

www.jyu.fi/fi/ajankohtaista/arkisto/2019/10/miten-hakkeri-tekee-tiedustelua Team ROT -valkohattuhakkerikollektiivin Iiro Uusitalo esittelee hakkereiden käyttämiä tiedustelumenetelmiä, joilla hakkerit selvittävät etukäteen reittejä hyökkäyksen kohteena oleviin tietojärjestelmiin.

You might be interested in …

Daily NCSC-FI news followup 2019-07-24

Low Barr: Don’t give me that crap about security, just put the backdoors in the encryption, roars US Attorney General www.theregister.co.uk/2019/07/23/us_encryption_backdoor/ While speaking today in New York, Barr demanded eavesdropping mechanisms be added to consumer-level software and devices, mechanisms that can be used by investigators to forcibly decrypt and pry into strongly end-to-end encrypted chats, […]

Read More

Daily NCSC-FI news followup 2020-05-22

Ragnar Locker ransomware deploys virtual machine to dodge security news.sophos.com/en-us/2020/05/21/ragnar-locker-ransomware-deploys-virtual-machine-to-dodge-security/ A new ransomware attack method takes defense evasion to a new leveldeploying as a full virtual machine on each targeted device to hide the ransomware from view. In a recently detected attack, Ragnar Locker ransomware was deployed inside an Oracle VirtualBox Windows XP virtual machine.. […]

Read More

Daily NCSC-FI news followup 2019-10-24

Some ICS Security Incidents Resulted in Injury, Loss of Life: Survey www.securityweek.com/some-ics-security-incidents-resulted-injury-loss-life-survey Some of the recent cybersecurity incidents involving industrial control systems (ICS) have resulted in injury and even loss of life, according to a survey conducted by Control Systems Cyber Security Association International (CS2AI). Cyber chief: The IoT could provide a model for improved […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.