Daily NCSC-FI news followup 2019-11-30

How is NordVPN unblocking Disney+? It might be through YOUR own computer. Even if youve never used Disney+ or NordVPN.

medium.com/@derek./how-is-nordvpn-unblocking-disney-6c51045dbc30

New Chrome Password Stealer Sends Stolen Data to a MongoDB Database

www.bleepingcomputer.com/news/security/new-chrome-password-stealer-sends-stolen-data-to-a-mongodb-database/ A new trojan has been discovered that attempts to steal passwords stored in the Google Chrome browser. While this is nothing unique, what stands out is that the malware uses a remote MongoDB database to store the stolen passwords.

iOS apps could really benefit from the newly proposed Security.plist standard

www.zdnet.com/article/ios-apps-could-really-benefit-from-the-newly-proposed-security-plist-standard/ The idea is simple. App makers would create a property list file (plist) named security.plist that they would embed inside the root of their iOS apps.. The file would contain all the basic contact details for reporting a security flaw to the app’s creator. Security researchers analyzing an app would have an easy way to get in contact with the app’s creators.

You might be interested in …

Daily NCSC-FI news followup 2019-07-28

Who’s Behind the Syrian Electronic Army? – An OSINT Analysis ddanchev.blogspot.com/2019/07/whos-behind-syrian-electronic-army.html Continuing the “FBI Most Wanted Cybercriminals” series I’ve decided to continue providing actionable threat intelligence on some of the most prolific and wanted cybercriminals in the World through the distribution and dissemination of actionable intelligence regarding some of the most prolific and wanted cybercriminals.. […]

Read More

Daily NCSC-FI news followup 2021-05-25

– From Wiper to Ransomware – The Evolution of Agrius labs.sentinelone.com/from-wiper-to-ransomware-the-evolution-of-agrius/ Researchers say they’ve uncovered a new disk-wiping malware (wiper) that’s disguising itself as ransomware as it unleashes destructive attacks on Israeli targets. Full report as PDF: assets.sentinelone.com/sentinellabs/evol-agrius Evolution of JSWorm ransomware securelist.com/evolution-of-jsworm-ransomware/102428/ JSWorm ransomware was discovered in 2019 and since then different variants have […]

Read More

Daily NCSC-FI news followup 2020-12-07

KRP: Tässä ovat Vastaamo-kiristyksen päätutkintalinjat www.is.fi/digitoday/tietoturva/art-2000007666543.html Keskusrikospoliisi käy yhä läpi valtavia datamääriä, joista etsitään Vastaamo-kiristäjän jättämiä jälkiä. KRP saa edelleen arvokkaita vihjeitä yleisöltä. Tutkintalinjoja on useita, ja niiden määrä vaihtelee uusien löydösten myötä. Päätutkintalinjat ovat itse tietomurron ja kiristäjän yhteys sekä Vastaamon kiristäjän ja yksittäisten uhrien kiristäjän yhteys. Vapaaehtoiset tietoturva-asiantuntijat, valkohattuhakkerit sekä monet yritykset ovat […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.