Daily NCSC-FI news followup 2020-03-15

CovidLock: Mobile Coronavirus Tracking App Coughs Up Ransomware

www.domaintools.com/resources/blog/covidlock-mobile-coronavirus-tracking-app-coughs-up-ransomware Cybercriminals like to exploit people when they are at their most vulnerable. They use dramatic events that cause people to be emotional or fearful to drive their profits. Any time there are major news cycles happening on a topic that stirs a strong reaction, cybercriminals will not be far behind. The Coronavirus is no different. Shortly after the first cases were confirmed, DomainTools’ researchers observed a minor uptick in domain names leveraging Coronavirus and COVID-19. These registrations have peaked significantly in the past few weeks and many of them are scams.

One man lost his life savings in a SIM hack. Here’s how you can try to protect yourself

edition.cnn.com/2020/03/13/tech/sim-hack-million-dollars/index.html Robert Ross was sitting in his San Francisco home office in October 2018 when he noticed the bars on his phone had disappeared and he had no cell coverage. A few hours later, he had lost $1 million. Ross was the victim of a SIM hack, an attack that occurs when hackers take over a victim’s phone number by transferring it to a SIM card they control. By taking over his cellphone number, a hacker was able to gain access to his email address and ultimately his life-savings, Ross said in an interview with CNN Business.

Vesi- ja energialaitosten toiminta halutaan taata myös epidemiatilanteessa varautumisastetta on jo kohotettu

yle.fi/uutiset/3-11257287 Pienet vesilaitokset voivat olla haavoittuvia kriisitilanteessa. Vesilaitokset saivat perjantaina ministeriöiltä ohjeistuksen(siirryt toiseen palveluun), miten turvata vesihuollon toimivuus mahdollisen laajemman koronavirusepidemian aikana. Suurimpana uhkana vesihuollon toimintavarmuudelle pidetään vesihuoltolaitosten henkilökunnan laajamittaista sairastumista.

Data of millions of eBay and Amazon shoppers exposed

nakedsecurity.sophos.com/2020/03/12/data-of-millions-of-ebay-and-amazon-shoppers-exposed/ Researchers have discovered another big database containing millions of European customer records left unsecured on Amazon Web Services (AWS) for anyone to find using a search engine.

You might be interested in …

Daily NCSC-FI news followup 2020-03-04

Are our police forces equipped to deal with modern cybercrimes? blog.malwarebytes.com/opinion/2020/03/are-our-police-forces-equipped-to-deal-with-modern-cybercrimes/ You should have asked for the presence of a digital detective, Karen said when I told her what happened at the police station. I had accompanied a neighbor, who is a small business owner, that had been hit with ransomware and wanted to file […]

Read More

Daily NCSC-FI news followup 2021-12-12

Guidance for preventing, detecting, and hunting for CVE-2021-44228 Log4j 2 exploitation www.microsoft.com/security/blog/2021/12/11/guidance-for-preventing-detecting-and-hunting-for-cve-2021-44228-log4j-2-exploitation/ Microsoft’s unified threat intelligence team, comprising the Microsoft Threat Intelligence Center (MSTIC), Microsoft 365 Defender Threat Intelligence Team, RiskIQ, and the Microsoft Detection and Response Team (DART), among others, have been tracking threats taking advantage of CVE-2021-44228, a remote code execution (RCE) vulnerability […]

Read More

Daily NCSC-FI news followup 2021-06-12

Tracking ransomware cryptocurrency payments: What now for Bitcoin? www.welivesecurity.com/2021/06/11/tracking-ransomware-cryptocurrency-payments/ Earlier this week, the Department of Justice announced it seized around $2.3 million worth of bitcoin (BTC 63.7) collected in the BTC 75 payment for Colonial Pipeline ransomware. Does this mean Bitcoin is hackable given enough computation horsepower?. For years Bitcoins weaknesses (or strengths, depending on […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.