Daily NCSC-FI news followup 2020-08-15

PoC Exploit Targeting Apache Struts Surfaces on GitHub

threatpost.com/poc-exploit-github-apache-struts/158393/ Researchers have discovered freely available PoC code and exploit that can be used to attack unpatched security holes in Apache Struts 2.

Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack

krebsonsecurity.com/2020/08/medical-debt-collection-firm-r1-rcm-hit-in-ransomware-attack/ R1 RCM Inc. [NASDAQ:RCM], one of the nations largest medical debt collection companies, has been hit in a ransomware attack.

Hacker leaks data for U.S. gun exchange site on cybercrime forum

www.bleepingcomputer.com/news/security/hacker-leaks-data-for-us-gun-exchange-site-on-cybercrime-forum/ On August 10th, a threat actor posted databases that they claim contain 195,000 user records for the utahgunexchange.com, 45,000 records for their video site, 15,000 records from the hunting site muleyfreak.com, and 24,000 user records from the Kratom site deepjunglekratom.com.

Where there’s a .mil, there’s Huawei: Pentagon allowed to keep using Chinese tech deemed too dangerous for everyone else report

www.theregister.com/2020/08/15/dod_huawei_extension/ DoD said to get extension to avoid crackdown on Chinese comms kit

For six months, security researchers have secretly distributed an Emotet vaccine across the world

www.zdnet.com/article/for-six-months-security-researchers-have-secretly-distributed-an-emotet-vaccine-across-the-world/ Binary Defense researchers have identified a bug in the Emotet malware and have been using it to prevent the malware from making new victims.

Milloin 5g kattaa Suomen? Vastaus tähän ja 24:ään muuhun 5g-kysymykseen

www.tivi.fi/uutiset/tv/813d38f5-68df-4a5f-b3b3-4319965a6790 Mihin 5g-verkkoa tarvitaan? Milloin se leviää kaupunkien ulkopuolelle? Onko 5g-mastojen säteily vaarallista? Tivin sisarjulkaisu Mikrobitti pyysi kevään ja kesän aikana esittämään mieltä askarruttavia kysymyksiä 5g:stä. Niitä tuli valtavasti, joten esitimme ne operaattoreille, Traficomille, Säteilyturvakeskukselle ja Aalto-yliopistolle.

Lamphone: A new kind of visual eavesdropping

www.kaspersky.com/blog/black-hat-lamphone/36744/ A lightbulb is all the specialist equipment Lamphone needed to eavesdrop on a conversation in a soundproofed room.

TikTokin käyttö kiellettiin Kiinassa ennen Yhdysvaltoja

www.kauppalehti.fi/uutiset/tiktokin-kaytto-kiellettiin-kiinassa-ennen-yhdysvaltoja/a7f1252c-3061-4f7e-a42d-73ba1347cb0a Kiinalaissovellusten pääosin poliittisin perustein tehty Yhdysvaltojen käyttökielto uhkaa iskeä yhdysvaltalaisyrityksiin yhdellä niiden merkittävimmistä markkinoista.

Elon Musk Confirms Overdue Move To Make Tesla Cars Harder To Hack

www.forbes.com/sites/daveywinder/2020/08/15/elon-musk-confirms-overdue-move-to-make-tesla-cars-harder-to-hack/

Tokmannin sivut alhaalla koko viikonlopun syynä kömmähdys verkkotunnuksen kanssa: Tapahtui vielä perjantaina

www.is.fi/taloussanomat/art-2000006603134.html Tokmannin sijoittajasuhde- ja viestintäpäällikkö Maarit Mikkonen kertoo, että sivut ovat todennäköisesti alhaalla maanantaihin saakka.. toim. huom. sivut palautuivat lauantai-illalla käyttöön

You might be interested in …

Daily NCSC-FI news followup 2020-11-06

Update Your iOS Devices Now 3 Actively Exploited 0-Days Discovered thehackernews.com/2020/11/update-your-ios-devices-now-3-actively.html Rolled out as part of its iOS, iPadOS, macOS, and watchOS updates, the flaws reside in the FontParser component and the kernel, allowing adversaries to remotely execute arbitrary code and run malicious programs with kernel-level privileges. Lisäksi: support.apple.com/en-us/HT201222. Lisäksi: us-cert.cisa.gov/ncas/current-activity/2020/11/06/apple-releases-security-updates-multiple-products. Lisäksi: threatpost.com/apple-patches-bugs-zero-days/161010/. Lisäksi: www.zdnet.com/article/apple-fixes-three-ios-zero-days-exploited-in-the-wild. […]

Read More

Daily NCSC-FI news followup 2020-07-13

The NCSC-UK’s Exercise in a Box tool set has been updated to help organisations keep their employees safe while working from home www.zdnet.com/article/remote-working-this-free-tool-tests-how-good-your-security-really-is/ The ‘Home and Remote Working’ exercise has been added to the NCSC-UK’s Exercise in a Box, a toolkit designed to help small and medium-sized businesses prepare to defend against cyber attacks by […]

Read More

Daily NCSC-FI news followup 2020-09-07

Windows 10 low-effort zero-day in Hyper-V / Windows Sandbox enabled computers www.bleepingcomputer.com/news/security/windows-10-sandbox-activation-enables-zero-day-vulnerability/ A reverse engineer discovered a new zero-day vulnerability in most Windows 10 editions, which allows creating files in restricted areas of the operating system – e.g. under system32. The researcher told BleepingComputer that the vulnerable component is ‘storvsp.sys’ (Storage VSP – Virtualization Service […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.