Daily NCSC-FI news followup 2020-02-19

ISS: Security incident impacting parts of the IT environment

www.fi.issworld.com/ On 17 February 2020, ISS was the target of a malware attack. As a precautionary measure and as part of our standard operating procedure, we immediately disabled access to shared IT services across our sites and countries, which ensured the isolation of the incident.

Dharma Ransomware Attacks Italy in New Spam Campaign

www.bleepingcomputer.com/news/security/dharma-ransomware-attacks-italy-in-new-spam-campaign/ Security researchers JAMESWT, TG Soft, and reecDeep all noticed a new spam campaign today that is infecting users with the Ursniff keylogger or the Dharma Ransomware.

Swiss Govt Says Ransomware Victims Ignored Warnings, Had Poor Security

www.bleepingcomputer.com/news/security/swiss-govt-says-ransomware-victims-ignored-warnings-had-poor-security/ Switzerlands Reporting and Analysis Centre for Information Assurance (MELANI) today warned of ongoing ransomware attacks targeting the systems of Swiss small, medium-sized, and large companies.

The BlackBerry Cylance 2020 Threat Report

threatvector.cylance.com/en_us/home/the-blackberry-cylance-2020-threat-report.html Key topics discussed in the report: Continued evolution of ransomware tactics that include the increased availability of Ransomware-as-a-Service (RaaS) offerings, and instances where ransomware developers have collaborated with banking Trojan developers to exfiltrate data prior to encryption to be used to further extort victims.

Dozens Of Fake Help Desk Phone Numbers Seized In Fraud Investigation

nltimes.nl/2020/02/19/dozens-fake-help-desk-phone-numbers-seized-fraud-investigation The Netherlands’ authority on consumers and markets ACM and Dutch telecom providers together revoked 100 numbers that where used for fake help desks to scam people, ACM announced on Wednesday.

Hackers Were Inside Citrix for Five Months

krebsonsecurity.com/2020/02/hackers-were-inside-citrix-for-five-months/ Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords.

You might be interested in …

Daily NCSC-FI news followup 2021-04-06

Spy Operations Target Vietnam with Sophisticated RAT threatpost.com/spy-operations-vietnam-rat/165243/ An advanced cyberespionage campaign targeting government and military entities in Vietnam has been discovered that delivered a remote-access tool (RAT) for carrying out espionage operations, researchers said. Further analysis suggested that this campaign was conducted by a group related to a Chinese-speaking advanced persistent threat (APT) known […]

Read More

Daily NCSC-FI news followup 2019-06-27

Firefox Will Give You a Fake Browsing History to Fool Advertisers www.vice.com/en_us/article/43j8qm/firefox-will-give-you-a-fake-browsing-history-to-fool-advertisers Using the ‘Track THIS’ tool opens up 100 tabs at a time that will make you seem like a hypebeast, a filthy rich person, a doomsday prepper, or an influencer. Google Public DNS over HTTPS (DoH) supports RFC 8484 standard security.googleblog.com/2019/06/google-public-dns-over-https-doh.html Ever since […]

Read More

Daily NCSC-FI news followup 2020-01-26

Teenagers today. Can’t take them anywhere, eh? 18-year-old kid accused of $50m SIM-swap cryptocurrency heist www.theregister.co.uk/2020/01/25/security_roundup/ Also, Cisco, Citrix emit patches, US army advises using Signal Patching the Citrix ADC Bug Doesn’t Mean You Weren’t Hacked www.bleepingcomputer.com/news/security/patching-the-citrix-adc-bug-doesnt-mean-you-werent-hacked/ Citrix on Friday released the final patch for the critical vulnerability tracked as CVE-2019-19781 in its affected appliances. […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.