Daily NCSC-FI news followup 2019-12-14

New Orleans city government under cyberattack; workers told to turn off, unplug computers

www.nola.com/news/politics/article_0039909a-1dd3-11ea-919e-938ea62f03b5.html Workers in New Orleans City Hall were told a cyberattack has struck the city government, multiple sources said on Friday. The exact extent of the attack is unknown. The attack was announced over the loudspeaker system in City Hall and workers were told to turn off and unplug their computers about before noon on Friday. City websites are also down.. Also:

www.forbes.com/sites/daveywinder/2019/12/14/new-orleans-declares-state-of-emergency-following-cyber-attack/.

www.zdnet.com/article/new-orleans-hit-by-ransomware-city-employees-told-to-turn-off-computers/.

www.bleepingcomputer.com/news/security/new-orleans-suffers-ransomware-attack-emergency-services-intact/

GitLab Doles Out Half a Million Bucks to White Hats

threatpost.com/gitlab-doles-out-half-a-million-bucks-to-white-hats/151138/ The DevOps lifecycle management said that response to its year-old bug-bounty program has been robust. GitLab has awarded a total of $565,650 in security bug bounties to 171 researchers who reported valid vulnerabilities in the past year and has announced the winners of its latest hacking contest.

One in every 172 active RSA certificates are vulnerable to attack

www.zdnet.com/article/1-in-every-172-active-rsa-certificates-are-vulnerable-to-exploit/ Researchers say improper number generation can impact the security of keys used to protect everything from IoT to medical devices. A vulnerability has been discovered in RSA certificates that could compromise one in every 172 certificates currently in active use. On Saturday at the First IEEE Conference on Trust, Privacy, and Security in Intelligent Systems and Applications in Los Angeles, Calfornia, a team of researchers from Keyfactor presented their findings into the security posture of digital certificates.

Todellisen tietomurron tekijän mukaan lähti Facebookin salaamattomia henkilötietoja ei syytä paniikkiin

www.tivi.fi/uutiset/tv/5f3096e0-22be-45f2-853c-b6305f242956 Tietomurrot hoidetaan nykyisin yleensä näppäimistön ja näytön avulla. Perinteisellä sorkkarautametodillakin datavarkauksia silti tapahtuu. Somejätti Facebook on julkaissut tietoja ikävästä tapauksesta. Yhtiön työntekijän autoon oli murtauduttu ja autosta varastettu kiintolevyjä, CNBC kertoo. Levyille oli tallennettu salaamattomassa muodossa tietoja yhtiön entisistä ja nykyisistä työntekijöistä.. Also:

www.theregister.co.uk/2019/12/13/facebook_data_loss/

Attackers Terrify Homeowners After Hacking Ring Devices

www.bleepingcomputer.com/news/security/attackers-terrify-homeowners-after-hacking-ring-devices/ In a series of hacks targeting Ring camera devices, attackers are terrifying homeowners and making them feel violated in their own homes after taunting them or speaking to their children over the device’s speakers. On December 12th, numerous media outlets reported that homeowner’s Ring devices were being hacked and used to talk to people in their homes while they are making dinner, having breakfast, or playing in their rooms.

You might be interested in …

Daily NCSC-FI news followup 2019-11-03

BlueKeep attacks are happening, but it’s not a worm www.zdnet.com/article/bluekeep-attacks-are-happening-but-its-not-a-worm/ Hackers are using BlueKeep to break into Windows systems and install a cryptocurrency miner. Security researchers have spotted the first mass-hacking campaign using the BlueKeep exploit; however, the exploit is not being used as a self-spreading worm, as Microsoft was afraid it would happen last […]

Read More

Daily NCSC-FI news followup 2020-08-28

Is China the World’s Greatest Cyber Power? www.darkreading.com/threat-intelligence/is-china-the-worlds-greatest-cyber-power/d/d-id/1338778 The nation’s aggressive approach to using cyber operations to achieve political and national aims has set its cyber strategy apart from the more cautious and considered approaches of most other nations. Attackers linked to China have vacuumed up personally identifiable information on US and European citizens, stolen […]

Read More

Daily NCSC-FI news followup 2020-07-22

Verkkohyökkäys lukitsi autotarvikeliikkeen kassat, salasi tiedot ja sulki ovet Tiedätkö miten varautua, sillä voit olla rikollisen seuraava kohde? yle.fi/uutiset/3-11456333 Kyberturvallisuuskeskus kehottaa varautumaan verkkoiskuun, jotta toimintaa pystyisi jatkamaan mahdollisimman pian. Yrittäjä Raimo Tunkkaria odotti heinäkuisena aamuna ikävä yllätys. Keminmaassa toimivan autotarvike- ja korjaamoyrityksen tietokoneruudulla oli viesti, jossa hakkerit kertoivat lukinneensa yrityksen tiedot. Varaosa Paakkarin asiakas- ja […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.