Daily NCSC-FI news followup 2019-11-10

Tällaisilla viesteillä suomalaisilta yrityksiltä kalastellaan rahaa katso, olisitko itse haksahtanut

yle.fi/uutiset/3-11026269?origin=rss Tässä jutussa näet esimerkkejä aidoista työpaikoille tulevista huijausviesteistä.

The state of JavaScript frameworks security report 2019

snyk.io/wp-content/uploads/snyk-javascript_report_2019.pdf A security review of Angular and React with a sneak peek into Vue.js, Bootstrap and jQuery. Also

www.i-programmer.info/news/167-javascript/13232-the-perils-of-jquery.html. ” Although the JavaScript library jQuery is no longer as popular as it was, it is still widely used. As a result at least six in ten websites are impacted by jQuery XSS vulnerabilities. “

5G-teknologia tulee myös viranomaisten avuksi saako taivaalta droonikuvaa suorana?

yle.fi/uutiset/3-11060861?origin=rs Oulun yliopiston vetämä Priority-projekti tutkii ja kehittää viranomaisille ja etäyrityksille suunnattuja toiminnan kannalta kriittisiä viestintäratkaisuja. Mukana tutkimuskonsortiossa on tutkimuslaitoksia (Centria- ja Turun ammattikorkeakoulut), VTT, viranomaisia (mm. Puolustusvoimat ja pelastustoimi) sekä yrityksiä.

Miten hakkeri tekee tiedustelua?

www.jyu.fi/fi/ajankohtaista/arkisto/2019/10/miten-hakkeri-tekee-tiedustelua Team ROT -valkohattuhakkerikollektiivin Iiro Uusitalo esittelee hakkereiden käyttämiä tiedustelumenetelmiä, joilla hakkerit selvittävät etukäteen reittejä hyökkäyksen kohteena oleviin tietojärjestelmiin.

You might be interested in …

Daily NCSC-FI news followup 2020-02-08

Dangerous Domain Corp.com Goes Up for Sale krebsonsecurity.com/2020/02/dangerous-domain-corp-com-goes-up-for-sale/ As an early domain name investor, Mike OConnor had by 1994 snatched up several choice online destinations, including bar.com, cafes.com, grill.com, place.com, pub.com and television.com. Some he sold over the years, but for the past 26 years OConnor refused to auction perhaps the most sensitive domain in […]

Read More

Daily NCSC-FI news followup 2020-10-14

German authorities raid FinFisher offices www.zdnet.com/article/german-authorities-raid-finfisher-offices/ German authorities have raided the offices of FinFisher, a German software company that makes surveillance tools, accused in the past of providing software to oppressive regimes. FinFisher markets its tools as meant for law enforcement investigations and intelligence agencies. Known customers include the German federal police and Berlin police […]

Read More

Daily NCSC-FI news followup 2020-02-06

Protecting users from insecure downloads in Google Chrome security.googleblog.com/2020/02/protecting-users-from-insecure_6.html Today were announcing that Chrome will gradually ensure that secure (HTTPS) pages only download secure files. In a series of steps outlined below, well start blocking “mixed content downloads” (non-HTTPS downloads started on secure pages). This move follows a plan we announced last year to start […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.