Daily NCSC-FI news followup 2020-06-08

German Task Force for COVID-19 Medical Equipment Targeted in Ongoing Phishing Campaign

securityintelligence.com/posts/german-task-force-for-covid-19-medical-equipment-targeted-in-ongoing-phishing-campaign/ During the course of ongoing research on coronavirus-related cyber activity, IBM X-Force Incident Response and Intelligence Services (IRIS) uncovered a COVID-19 related phishing campaign targeting a German multinational corporation (MNC), associated with a German government-private sector task force to procure personal protective equipment (Task Force Schutzausrüstung). . see also

threatpost.com/phishing-attack-german-coronavirus-task-force/156377/

Uusi Office-hyökkäys iskee etätyöläisiin varo tätä viestiä

www.is.fi/digitoday/tietoturva/art-2000006534245.html Ihmisiltä kalastellaan käyttäjätunnuksia muka muuttuneiden vpn-asetusten varjolla.

SMBGhost RCE Exploit Threatens Corporate Networks

threatpost.com/smbghost-rce-exploit-corporate-networks/156391/ The release of a PoC for the Windows flaw known as SMBGhost could set off cyberattack waves, CISA warned.

Honda investigates possible ransomware attack, networks impacted

www.bleepingcomputer.com/news/security/honda-investigates-possible-ransomware-attack-networks-impacted/ Computer networks in Europe and Japan from giant car manufacturer giant Honda have been affected by issues that are reported related to a SNAKE Ransomware cyber attack.

Any Indian DigiLocker Account Could’ve Been Accessed Without Password

thehackernews.com/2020/06/aadhar-digilocker-hacked.html The Indian Government said it has addressed a critical vulnerability in its secure document wallet service Digilocker that could have potentially let a remote attacker bypass mobile one-time passwords (OTP) and sign in as other users.

Can Governments Defeat Nation-State Attacks on Critical Infrastructures?

threatpost.com/can-governments-defeat-nation-state-attacks-on-critical-infrastructures/156338/ The one cyber risk that governments are much better at controlling than we are is insider threats. Governments have been dealing with people threats for centuries and have powerful tools at their disposal for such investigations.

Suomen uusien 5g-taajuuksien huutokauppa oli ennätyksellisen lyhyt tässä voittajat

www.is.fi/digitoday/mobiili/art-2000006534121.html Suomen suurimmat operaattorit saivat myös 5g-verkon ylätaajuudet.. see also

www.tivi.fi/uutiset/tv/940d15c5-8eac-4032-be56-897995864fa2

Facebook sues company for registering impostor domains

www.bleepingcomputer.com/news/security/facebook-sues-company-for-registering-impostor-domains/ Facebook filed a lawsuit today against 12 domain names registered by Compsys Domain Solutions Private Ltd, an Indian provider of proxy/privacy services, domains that impersonate Facebook apps and were allegedly used for malicious purposes.

You might be interested in …

Daily NCSC-FI news followup 2020-12-24

Windows zero-day with bad patch gets new public exploit code www.bleepingcomputer.com/news/security/windows-zero-day-with-bad-patch-gets-new-public-exploit-code/ Back in June, Microsoft released a fix for a vulnerability in the Windows operating system that enabled attackers to increase their permissions to kernel level on a compromised machine. The patch did not stick.. The issue, which advanced hackers exploited as a zero-day in […]

Read More

Daily NCSC-FI news followup 2019-10-05

Vulnerabilities Exploited in Multiple VPN Applications www.us-cert.gov/ncas/current-activity/2019/10/04/vulnerabilities-exploited-multiple-vpn-applications The United Kingdom (UK) National Cyber Security Centre (NCSC) has released an alert on advanced persistent threat (APT) actors exploiting vulnerabilities in Virtual Private Network (VPN) applications. A remote attacker could exploit these vulnerabilities to take control of an affected system. DHS and FDA warn about much broader […]

Read More

Daily NCSC-FI news followup 2020-06-27

DarkCrewFriends Returns with Botnet Strategy threatpost.com/darkcrewfriends-returns-botnet/156963/ The botnet can be used to mount different kinds of attacks, including code-execution and DDoS. 8 U.S. City Websites Targeted in Magecart Attacks threatpost.com/8-city-gov-websites-magecart/156954/ Researchers believe that Click2Gov, municipal payment software, may be at the heart of this most recent government security incident. Admin of carding portal behind $568M […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.