Daily NCSC-FI news followup 2019-11-22

Yli 200 kuntaa ja julkista organisaatiota harjoittelee toimintaa kyberhyökkäystilanteessa

yle.fi/uutiset/3-11081256 Väestörekisterikeskuksen Taisto19-harjoituksessa hakkeriryhmä vaatii organisaatiolta lunnaita ja toteuttaa kyberhyökkäyssarjan.

Russian Hacker Behind NeverQuest Banking Malware Gets 4 Years in U.S. Prison

thehackernews.com/2019/11/lisov-neverquest-russian-hacker.html A Russian hacker who created and used Neverquest banking malware to steal money from victims’ bank accounts has finally been sentenced to 4 years in prison by the United States District Court for the Southern District of New York.

T-Mobile Suffers Data Breach Affecting Prepaid Wireless Customers

thehackernews.com/2019/11/t-mobile-prepaid-data-breach.html The US-based telecom giant T-Mobile today disclosed a yet another data breach incident that recently exposed potentially personal information of some of the customers using its prepaid services.

Iran on yhä taitavampi sulkemaan yhteydet ulkomaailmaan Netin katkaiseminen on yleistyvä keino levottomuuksien tukahduttamiseksi

yle.fi/uutiset/3-11081324 Iranin internet-yhteydet ulkomaailmaan ovat olleet katkaistuina tai ainakin osittain poissa pian jo viikon ajan. Hallinto pani yhteydet poikki, kun kansa alkoi protestoida bensan hinnan korotusta vastaan ja yhteenotot muuttuivat verisiksi.

Telian matkapuhelinverkon häiriö korjattu yhteydet toimivat jälleen normaalisti

yle.fi/uutiset/3-11082143 Telian matkapuhelinverkossa oli laaja häiriö perjantaina.

ENISA draws Threat Landscape of 5G Networks

www.enisa.europa.eu/news/enisa-news/enisa-draws-threat-landscape-of-5g-networks/ ENISA, the European Union Agency for Cybersecurity publishes a Threat Landscape for 5G Networks, assessing the threats related to the fifth generation of mobile telecommunications networks (5G).

Edenred on joutunut haittaohjelman kohteeksi

edenred.fi/fi/edenred-on-joutunut-haittaohjelman-kohteeksi/ Edenredin tietojärjestelmiin hyökättiin eilen, marraskuun 21. päivänä. Tutkimme parhaillaan hyökkäyksen laajuutta. Tällä hetkellä työntekijämme eivät pääse työkoneilleen eikä järjestelmiimme. Asiakaspalvelumme on myös suljettu, mutta asiakastukiosiostamme löytyy vastauksia yleisimpiin kysymyksiin

Personal And Social Information Of 1.2 Billion People Discovered In Massive Data Leak

www.dataviper.io/blog/2019/pdl-data-exposure-billion-people/ On October 16, 2019 Bob Diachenko and Vinny Troia discovered a wide-open Elasticsearch server containing an unprecedented 4 billion user accounts spanning more than 4 terabytes of data. A total count of unique people across all data sets reached more than 1.2 billion people, making this one of the largest data leaks from a single source organization in history.

You might be interested in …

Daily NCSC-FI news followup 2020-06-03

Critical SAP ASE Flaws Allow Complete Control of Databases threatpost.com/critical-sap-ase-flaws-complete-control-databases/156239/ If exploited, the most severe flaws could give unprivileged users complete control of databases and in some cases even underlying operating systems – The most severe vulnerability, CVE-2020-6248, has a CVSS score of 9.1 out of 10. See also: wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=545396222. And also: www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/system-takeover-through-new-sap-ase-vulnerabilities/ Vulnerability Spotlight: […]

Read More

Daily NCSC-FI news followup 2020-01-31

How Do You Measure the Success of Your Patch Management Efforts? securityintelligence.com/posts/how-do-you-measure-the-success-of-your-patch-management-efforts/ If you follow the news, you will often see that yet another company has been breached or taken hostage by ransomware. If you read the full details of these stories, usually they have one main thing in common: These organizations are behind in […]

Read More

Daily NCSC-FI news followup 2020-06-27

DarkCrewFriends Returns with Botnet Strategy threatpost.com/darkcrewfriends-returns-botnet/156963/ The botnet can be used to mount different kinds of attacks, including code-execution and DDoS. 8 U.S. City Websites Targeted in Magecart Attacks threatpost.com/8-city-gov-websites-magecart/156954/ Researchers believe that Click2Gov, municipal payment software, may be at the heart of this most recent government security incident. Admin of carding portal behind $568M […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.