Daily NCSC-FI news followup 2019-12-21

170m passwords stolen in September Zynga hack

www.theguardian.com/games/2019/dec/19/170m-passwords-stolen-in-zynga-words-with-friends-hack-monitor-says Words With Friends company admitted hack in September but size only now revealed

Siemens Contractor Jailed for Sabotage With Logic Bombs

www.bleepingcomputer.com/news/security/siemens-contractor-jailed-for-sabotage-with-logic-bombs/ While his spreadsheets worked without flaw for years, starting in 2014 they suddenly began randomly crashing and glitching because of the logic bombs he inserted within the password-protected code.

Canada’s broadcasting agency fines company behind the Orcus malware

www.zdnet.com/article/canadas-broadcasting-agency-fines-company-behind-the-orcus-rat/ Canada’s broadcasting agency has fined a company with 115,000 Canadian dollars (ca 79,000 EUR) for selling malware.

GozNym Gang Members Behind $100 Million Damages Sentenced

www.bleepingcomputer.com/news/security/goznym-gang-members-behind-100-million-damages-sentenced/ The GozNym group members were charged for stealing “an estimated $100 million from more than 41 000 victims, primarily businesses and their financial institutions” according to a Europol press release from May.. Europol:

www.eurojust.europa.eu/press/PressReleases/Pages/2019/2019-05-16.aspx

Hacker sentenced after trying to blackmail Apple by threatening to delete 319m accounts

www.nationalcrimeagency.gov.uk/news/hacker-tried-to-blackmail-apple-by-threatening-to-delete-319m-accounts He was sentenced today, Friday 20 December, and was given a two year suspended jail term, 300 hours of unpaid work and a six month electronic curfew at Southwark Crown Court.

Former IT Employee Jailed for Taking Down Airline Systems

www.bleepingcomputer.com/news/security/former-it-employee-jailed-for-taking-down-airline-systems/ Scott Burns, a former employee of information and communications technology (ICT) provider Blue Chip was sentenced to 10 months in prison for taking down the computers of British airline Jet2.com Limited (aka Jet2) for over 12 hours.

Tokyo 2020 Staff Warns of Phishing Disguised As Official Emails

www.bleepingcomputer.com/news/security/tokyo-2020-staff-warns-of-phishing-disguised-as-official-emails/ “We have recently detected emails disguised to look like they are coming from a Tokyo 2020 staff member,” says Tokyo Olympic Organizing Committee’s warning message.

Daily NCSC-FI news followup 2020-11-25

Laser-Based Hacking from Afar Goes Beyond Amazon Alexa threatpost.com/light-based-attacks-digital-home/161583/ They broadened their research to show how light can be used to manipulate a wider range of digital assistantsincluding Amazon Echo 3 but also sensing systems found in medical devices, autonomous vehicles, industrial systems and even space systems. Live Patching Windows API Calls Using PowerShell isc.sans.edu/diary/rss/26826 […]

Daily NCSC-FI news followup 2019-06-06

Microsoft and Oracle link up their clouds techcrunch.com/2019/06/05/microsoft-and-oracle-link-up-their-clouds/ Microsoft and Oracle announced a new alliance today that will see the two companies directly connect their clouds over a direct network connection so that their users can then move workloads and data seamlessly between the two. This alliance goes a bit beyond just basic direct connectivity […]

Daily NCSC-FI news followup 2021-07-24

Internet Futures www.ofcom.org.uk/__data/assets/pdf_file/0013/222205/internet-futures.pdf This report should not be seen as an exhaustive list of every innovative technology being developed. Indeed, it can be no more than a sample of the high-quality ongoing research work being conducted in industry and academia. Further, the omission or inclusion of any technology shouldnt be taken as a signal of […]