Daily NCSC-FI news followup 2019-12-21

170m passwords stolen in September Zynga hack

www.theguardian.com/games/2019/dec/19/170m-passwords-stolen-in-zynga-words-with-friends-hack-monitor-says Words With Friends company admitted hack in September but size only now revealed

Siemens Contractor Jailed for Sabotage With Logic Bombs

www.bleepingcomputer.com/news/security/siemens-contractor-jailed-for-sabotage-with-logic-bombs/ While his spreadsheets worked without flaw for years, starting in 2014 they suddenly began randomly crashing and glitching because of the logic bombs he inserted within the password-protected code.

Canada’s broadcasting agency fines company behind the Orcus malware

www.zdnet.com/article/canadas-broadcasting-agency-fines-company-behind-the-orcus-rat/ Canada’s broadcasting agency has fined a company with 115,000 Canadian dollars (ca 79,000 EUR) for selling malware.

GozNym Gang Members Behind $100 Million Damages Sentenced

www.bleepingcomputer.com/news/security/goznym-gang-members-behind-100-million-damages-sentenced/ The GozNym group members were charged for stealing “an estimated $100 million from more than 41 000 victims, primarily businesses and their financial institutions” according to a Europol press release from May.. Europol:

www.eurojust.europa.eu/press/PressReleases/Pages/2019/2019-05-16.aspx

Hacker sentenced after trying to blackmail Apple by threatening to delete 319m accounts

www.nationalcrimeagency.gov.uk/news/hacker-tried-to-blackmail-apple-by-threatening-to-delete-319m-accounts He was sentenced today, Friday 20 December, and was given a two year suspended jail term, 300 hours of unpaid work and a six month electronic curfew at Southwark Crown Court.

Former IT Employee Jailed for Taking Down Airline Systems

www.bleepingcomputer.com/news/security/former-it-employee-jailed-for-taking-down-airline-systems/ Scott Burns, a former employee of information and communications technology (ICT) provider Blue Chip was sentenced to 10 months in prison for taking down the computers of British airline Jet2.com Limited (aka Jet2) for over 12 hours.

Tokyo 2020 Staff Warns of Phishing Disguised As Official Emails

www.bleepingcomputer.com/news/security/tokyo-2020-staff-warns-of-phishing-disguised-as-official-emails/ “We have recently detected emails disguised to look like they are coming from a Tokyo 2020 staff member,” says Tokyo Olympic Organizing Committee’s warning message.

Daily NCSC-FI news followup 2020-08-12

Annatko selaimen tallentaa salasanasi? Haittaohjelman uusi versio voi varastaa ne salaa www.is.fi/digitoday/tietoturva/art-2000006598720.html Salasanoja vohkiva Agent Tesla muuttui entistäkin pahemmaksi uhkaksi. Samalla se osoittaa, miten kätevyys voi kostautua salasanojen säilytyksessä.. Selain kysyy verkkopalveluun kirjautuessa, tallennetaanko salasana jatkoa varten. Kovin usein tulee painettua kyllä, jotta seuraavalla kerralla olisi helpompi päästä sisään. Tämä kuitenkin synnyttää rikollisille houkuttelevan varannon […]

Daily NCSC-FI news followup 2020-07-04

Hackers are trying to steal admin passwords from F5 BIG-IP devices www.zdnet.com/article/hackers-are-trying-to-steal-admin-passwords-from-f5-big-ip-devices/#ftag=RSSbaffb68 In an interview earlier today, [NCC group researcher] Warren told ZDNet the attacks are malicious in nature, and hackers are attempting to steal administrator passwords from the hacked devices. New Behave! extension warns of website port scans, local attacks www.bleepingcomputer.com/news/security/new-behave-extension-warns-of-website-port-scans-local-attacks/ A new browser […]

Daily NCSC-FI news followup 2020-03-21

Revamped HawkEye Keylogger Swoops in on Coronavirus Fears threatpost.com/revamped-hawkeye-keylogger-coronavirus-fears/154013/ Theres a new variant of the HawkEye keylogging malware making the rounds, featuring expanded info-stealing capabilities. Its operators are looking to capture the zeitgeist around the novel coronavirus. Its being distributed using spam that purports to be an alert from the Director-General of the World Health […]