Daily NCSC-FI news followup 2020-06-11

Hackers breached A1 Telekom, Austria’s largest ISP

www.zdnet.com/article/hackers-breached-a1-telekom-austrias-largest-isp/ A1 needed more than six months to kick the hackers off its network. Whsitleblower claims the intruders were Chinese hackers.

Snake Ransomware Delivers Double-Strike on Honda, Energy Co.

threatpost.com/snake-ransomware-honda-energy/156462/ The ICS/SCADA-focused malware is likely behind a duo of attacks this week, on Honda and a South American energy company, researchers said.

Gamaredon hackers use Outlook macros to spread malware to contacts

www.bleepingcomputer.com/news/security/gamaredon-hackers-use-outlook-macros-to-spread-malware-to-contacts/ New tools attributed to the Russia-linked Gamaredon hacker group include a module for Microsoft Outlook that creates custom emails with malicious documents and sends them to a victim’s contacts.. see also

www.welivesecurity.com/2020/06/11/gamaredon-group-grows-its-game/

Suomelle kakkossija digitaalisuuden hyödyntämisessä kyberturvallisuudessa ollaan jäämässä naapureista jälkeen

www.kauppalehti.fi/uutiset/suomelle-kakkossija-digitaalisuuden-hyodyntamisessa-kyberturvallisuudessa-ollaan-jaamassa-naapureista-jalkeen/50ae895f-db0a-48f0-be21-9b4e934d0388 Suomi on vertailussa seitsemättä vuotta kolmen kärjessä.

Fake Black Lives Matter voting campaign spreads Trickbot malware

www.bleepingcomputer.com/news/security/fake-black-lives-matter-voting-campaign-spreads-trickbot-malware/ A phishing email campaign asking you to vote anonymously about Black Lives Matter is spreading the TrickBot information-stealing malware.

VR:n lippukauppa esitti vaarallisen kehotuksen eihän näin pitänyt enää tapahtua?

www.is.fi/digitoday/tietoturva/art-2000006536510.html VR:n vanha lippukauppa pyysi asentamaan vaaralliseksi tunnetun Flash-ohjelmiston. VR kehottaa käyttämään uutta verkkokauppaansa.

IBM Cloud global outage caused by “incorrect” BGP routing

www.bleepingcomputer.com/news/technology/ibm-cloud-global-outage-caused-by-incorrect-bgp-routing/ On June 9th, 2020, IBM Cloud data centers suffered a global outage that caused connectivity issues for many of the web sites and platforms utilizing the service, including BleepingComputer.

Ransomware: Hackers took just three days to find this fake industrial network and fill it with malware

www.zdnet.com/article/ransomware-hackers-took-just-three-days-to-find-this-fake-industrial-network-and-fill-it-with-malware/ Industrial control networks are coming under attack from a range of ransomware attacks, security researchers have warned, after an experiment revealed the speed at which hackers are uncovering vulnerabilities in critical infrastructure.

Search hijackers change Chrome policy to remote administration

blog.malwarebytes.com/threat-spotlight/2020/06/search-hijackers-change-chrome-policy-to-remote-administration/ The latest type of installer in the saga of search hijacking changes a Chrome policy which tells users it cant be removed because the browser is managed from the outside.

Expiring SSL certs expected to break smart TVs, fridges, and IoTs

www.bleepingcomputer.com/news/security/expiring-ssl-certs-expected-to-break-smart-tvs-fridges-and-iots/ On May 30th, select Roku streaming channels stopped working, leaving impacted customers clueless with no idea what was wrong.. The same day payment platforms Stripe and Spreedly experienced disruptions and blamed it on expiring Certificate Authority (CA) root certificates.. We always knew SSL certificates came with an expiration date, but we didn’t plan for the fact it’d be happening this year!

Protecting IoT devices and OT Networks from a Cyber Pandemic

blog.checkpoint.com/2020/06/11/protecting-iot-devices-and-ot-networks-from-a-cyber-pandemic/

Researchers say online voting tech used in 5 states is fatally flawed

arstechnica.com/tech-policy/2020/06/researchers-say-online-voting-tech-used-in-5-states-is-fatally-flawed/ Elections in five states have used or plan to use OmniBallot’s online voting tech.

You might be interested in …

Daily NCSC-FI news followup 2019-06-17

Bloomberg: Argentina Isnt Ruling Out a Cyberattack in Major Power Outage www.bloomberg.com/news/articles/2019-06-16/massive-power-failure-sweeps-across-argentina-and-uruguay Though a cyberattack isnt the primary hypothesis, it cant be ruled out, Argentine Energy Secretary Gustavo Lopetegui told reporters in Buenos Aires. A technical issue or simple humidity could have triggered the breakdown, said Carlos Garcia Pereira, head of Transener, Argentinas largest power-transmission […]

Read More

Daily NCSC-FI news followup 2019-10-19

Schneier: Why Technologists Need to Get Involved in Public Policy www.schneier.com/blog/archives/2019/10/why_technologis.html US stopped using floppy disks to manage nuclear weapons arsenal www.zdnet.com/article/us-stopped-using-floppy-disks-to-manage-nuclear-weapons-arsenal/ The system was created in 1968 and has been running for nearly 50 years on top of an IBM Series/1 mainframe, using 8-inch floppy disks as its storage medium. US.GOV: Mind Your Own […]

Read More

Daily NCSC-FI news followup 2019-12-12

Hackers in Finland Test 5G Networks, Devices in Security Exercise www.wsj.com/articles/hackers-in-finland-test-5g-networks-devices-in-security-exercise-11576146601 We understand better how we need to change our approach from 4G to 5G, says government official. Read also: www.synopsys.com/blogs/software-security/5g-cyber-security-hackathon/, www.tivi.fi/uutiset/tv/32850776-f76d-4bdd-91af-445d5e3efefa and www.oulu.fi/yliopisto/uutiset/5ghack Microsoft details the most clever phishing techniques it saw in 2019 www.zdnet.com/article/microsoft-details-the-most-clever-phishing-techniques-it-saw-in-2019/ Earlier this month, Microsoft released a report on this […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.