Daily NCSC-FI news followup 2020-04-13

How to protect yourself from cyberattacks that exploit Covid-19

www.pandasecurity.com/mediacenter/business/cyberattacks-exploit-covid-19/ The current coronavirus COVID-19 pandemic is changing the business landscape. The most immediate change that has been seen in many countries is the sudden increase in the amount of people working from home. Because of this change, the attack surface has increased significantly, forcing companies to strengthen their cybersecurity measures to ensure they dont suffer at the hands of cybercriminals.

Think Fast: Time Between Disclosure, Patch Release and Vulnerability Exploitation Intelligence for Vulnerability Management, Part Two

www.fireeye.com/blog/threat-research/2020/04/time-between-disclosure-patch-release-and-vulnerability-exploitation.html Attackers are in a constant race to exploit newly discovered vulnerabilities before defenders have a chance to respond. FireEye Mandiant Threat Intelligence research into vulnerabilities exploited in 2018 and 2019 suggests that the majority of exploitation in the wild occurs before patch issuance or within a few days of a patch becoming available.

Kaikkia tapauksia ei ole tuotu julkisuuteen hyökkääjät halvaannuttavat yrityksen koko järjestelmän vaatiakseen lunnaita

www.tivi.fi/uutiset/tv/f712b462-7905-4a05-8d9b-155db4e4c60d Verkkorikolliset ovat alkaneet metsästää suurta saalista eivätkä tyydy enää yksittäisten koneiden kaappaamiseen, varoittaa Kyberturvallisuuskeskuksen johtaja Kalle Luukkainen.

Over 500,000 Zoom accounts sold on hacker forums, the dark web

www.bleepingcomputer.com/news/security/over-500-000-zoom-accounts-sold-on-hacker-forums-the-dark-web/ Over 500 hundred thousand Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free.

Dell releases new tool to detect BIOS attacks

www.zdnet.com/article/dell-releases-new-tool-to-detect-bios-attacks/ Dell makes new tool named SafeBIOS Events & Indicators of Attack available for download for all Dell commercial PCs.

5g-verkkoja pelkäävät salaliitto­teoreetikot ryhtyivät polttamaan tukiasemia Britanniassa ja Hollannissa, Facebook suitsii yllytystä

www.hs.fi/ulkomaat/art-2000006473240.html 5g-teknologian ja koronaviruksen leviämisen väliseen yhteyteen uskovat ihmiset ovat sabotoineet tukiasemia ja uhkailleet verkkojen asentajia. Uuden teknologian vastainen liikehdintä on levinnyt jopa 30 maahan, myös Suomeen.

Look at the same phishing campaign 3 months apart

isc.sans.edu/forums/diary/Look+at+the+same+phishing+campaign+3+months+apart/26018/

You might be interested in …

Daily NCSC-FI news followup 2021-05-26

North Korean (LAZARUS) hackers behind CryptoCore multi-million dollar heists www.bleepingcomputer.com/news/security/north-korean-hackers-behind-cryptocore-multi-million-dollar-heists/ Security researchers piecing together evidence from multiple attacks on cryptocurrency exchanges, attributed to a threat actor they named CryptoCore have established a strong connection to the North Korean state-sponsored group Lazarus. Full report as PDF: www.clearskysec.com/wp-content/uploads/2021/05/CryptoCore-Lazarus-Clearsky.pdf Russian Hydra DarkNet Market Made Over $1.3 Billion in […]

Read More

Daily NCSC-FI news followup 2019-08-26

Poliisi varoittaa ihmisiä yhä yleisemmiksi käyvistä verkkorikoksista. Esimerkiksi niin sanottuja pomohuijauksia yritetään yllättäviinkin kohteisiin. www.tivi.fi/uutiset/tv/dd810717-424e-4651-b482-e5c5014dcdd5 Tänä vuonna on tehty jo 196 rikosilmoitusta epäillystä toimitusjohtajapetoksesta ja poliisin arvion mukaan yritykset ja muut rikosten kohteeksi joutuneet toimijat ovat menettäneet rikosten takia rahaa arviolta 4,2 miljoonaa euroa. Valtio aikoo fuusioida edellisen hallituksen sote- ja maakuntayhdistyksen yhteydessä perustamat it-yhtiöt […]

Read More

Daily NCSC-FI news followup 2020-02-08

Dangerous Domain Corp.com Goes Up for Sale krebsonsecurity.com/2020/02/dangerous-domain-corp-com-goes-up-for-sale/ As an early domain name investor, Mike OConnor had by 1994 snatched up several choice online destinations, including bar.com, cafes.com, grill.com, place.com, pub.com and television.com. Some he sold over the years, but for the past 26 years OConnor refused to auction perhaps the most sensitive domain in […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.