Daily NCSC-FI news followup 2019-12-08

Clever Microsoft Phishing Scam Creates a Local Login Form

www.bleepingcomputer.com/news/security/clever-microsoft-phishing-scam-creates-a-local-login-form/ A clever phishing campaign has been spotted that bundles the scam’s landing page in the HTML attachment rather than redirecting users to another site that asks them to log in. A typical credential-stealing phishing scam consists of an email where the attacker tries to convince the user to click a link in order to retrieve a document or prevent something from happening. These links will then bring the user to a web site, or landing page, that includes a login form where the user must enter their login credentials to proceed. With this type of attack, users can either detect the scam by the contents of the email, by a suspicious remote site and landing page, or by alerts from security solutions. Read also:

isc.sans.edu/forums/diary/Phishing+with+a+selfcontained+credentialsstealing+webpage/25580/

Ransomware at Colorado IT Provider Affects 100+ Dental Offices

krebsonsecurity.com/2019/12/ransomware-at-colorado-it-provider-affects-100-dental-offices/ A Colorado company that specializes in providing IT services to dental offices suffered a ransomware attack this week that is disrupting operations for more than 100 dentistry practices, KrebsOnSecurity has learned. Multiple sources affected say their IT provider, Englewood, Colo. based Complete Technology Solutions (CTS), was hacked, allowing a potent strain of ransomware known as “Sodinokibi” or “rEvil” to be installed on computers at more than 100 dentistry businesses that rely on the company for a range of services including network security, data backup and voice-over-IP phone service.

#kyberpuolustus-kirja opastaa kyberin maailmaan

maanpuolustuskorkeakoulu.fi/artikkeli/-/asset_publisher/-kyberpuolustus-kirja-opastaa-kyberin-maailmaan Kybertoimintaympäristö kehittyy kovalla vauhdilla, ja kyberturvallisuus koskettaa koko yhteiskuntaa kriittisestä infrastruktuurista aina kuluttajiin asti.. b#kyberpuolustus kuvaa kybertoimintaympäristöä ja siihen liittyviä ilmiöitä etenkin Puolustusvoimien henkilöstölle, mutta kirjan esimerkit soveltuvat myös ulkopuoliseen käyttöön. Kybertoimintaympäristö on tärkeä maanpuolustukselle, mutta monia kirjassa käsiteltäviä ilmiöitä ja uhkia lähestytään Puolustusvoimia laajemminkin. Kirjan sisältö soveltuukin hyvin lähteeksi myös muille toimijoille.. Kirjassa avataan monia kyberpuolustukseen liittyviä käsitteitä yksinkertaisesti, ja yhtenä kirjan tavoitteena on ollut mahdollisimman yleistajuinen ja helposti lähestyttävä kielenkäyttö. Kirja:

urn.fi/URN:ISBN:978-951-25-3120-2

You might be interested in …

Daily NCSC-FI news followup 2021-04-11

Clubhouse data leak: 1.3 million user records leaked online for free cybernews.com/security/clubhouse-data-leak-1-3-million-user-records-leaked-for-free-online/ So far, it seems like its been the worst week of the year for social media platforms in terms of data leaks, with Clubhouse seemingly joining the fray. Sudden New Warning Will Surprise Millions Of WhatsApp Users www.forbes.com/sites/zakdoffman/2021/04/10/shock-new-warning-for-millions-of-whatsapp-users-on-apple-iphone-and-google-android-phones/ A nasty new surprise for […]

Read More

Daily NCSC-FI news followup 2020-10-31

Code of Practice for Cyber Security and Safety in Engineering www.ncsc.gov.uk/news/code-of-practice-cyber-security-and-safety-in-engineering The Institution of Engineering and Technology has published a Code of Practice with the support of the NCSC. A Code of Practice to help the engineering sector implement effective cyber security has been published today. The Code, developed by the Institution of Engineering and […]

Read More

Daily NCSC-FI news followup 2020-08-19

A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide thehackernews.com/2020/08/p2p-botnet-malware.html Cybersecurity researchers today took the wraps off a sophisticated, multi-functional peer-to-peer (P2P) botnet written in Golang that has been actively targeting SSH servers since January 2020.. Called “FritzFrog,” the modular, multi-threaded and file-less botnet has breached more than 500 servers to date, infecting well-known […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.