Daily NCSC-FI news followup 2020-08-30

Major internet outage: Dozens of websites and apps are down

edition.cnn.com/2020/08/30/tech/internet-outage-cloudflare/index.html Cloudflare, an internet service that is supposed to keep websites up and running, was down itself Sunday, taking dozens of websites and online services along with it. Hulu, the PlayStation Network, Xbox Live, Feedly, Discord, and dozens of other services reported connectivity problems Sunday morning. Cloudflare said the problem was with a third-party “transit provider, ” and its service was becoming increasingly stable over the course of the day. CenturyLink, formerly known as Level 3, confirmed there was an IP outage impacting Content Delivery Networks (CDN), and that all services had been restored as of 11:12 am ET. also: isc.sans.edu/forums/diary/

Namecheap hosting and email DOWN in prolonged outage

www.bleepingcomputer.com/news/technology/namecheap-hosting-and-email-down-in-prolonged-outage/ One of the world’s largest domain registrars, Namecheap has been hit with a series of mysterious outages today and it is not clear why. The company with over 11 million registered users and 10 million domains offers domain registration, hosting, private email services, and TLS/SSL certificates and has become one of the most recognizable names in the industry. The final update issued at 11:24 AM ET blames “network issues on the side of third-party upstream provider, ” at around the same time Level 3/CenturyLink is up. Therefore this incident is likely connected to the Level 3 outage.

Google Play apps promised free shoes, but users got ad fraud malware instead

www.zdnet.com/article/google-play-apps-promised-free-shoes-but-users-got-ad-fraud-malware-instead/ Google has removed an undisclosed number of Android applications from the official Google Play Store that the company says were part of an ad fraud botnet. Named Terracotta, this botnet was discovered by the Satori mobile security team at White Ops, a security firm specialized in identifying bot behavior.

Ex-employee hacked Cisco’s AWS Infrastructure; erased virtual machines

www.hackread.com/ex-employee-hacked-cisco-cloud-erased-virtual-machines/ A former Cisco employee, Sudhish Kasaba Ramesh has pleaded guilty for damaging and exploiting the company’s internal networks. His reckless action resulted in obliterating more than 16, 000 Webex Teams application. In order to ensue remedial measures, Cisco had to spend a whopping $1.4 million and refund $1 million to the affected customers.

You might be interested in …

Daily NCSC-FI news followup 2020-12-09

Hackers steal Pfizer/BioNTech COVID-19 vaccine data in Europe, companies say www.reuters.com/article/us-ema-cyber/hackers-access-biontech-pfizer-covid-19-vaccine-data-in-cyberattack-on-eu-regulator-idUSKBN28J2Q7 The European Medicines Agency (EMA), responsible for assessing and approving medicines and vaccines for the European Union, said hours earlier it had been targeted in a cyberattack. It gave no further details.. The two companies said they had been informed by the EMA that […]

Read More

Daily NCSC-FI news followup 2021-01-23

Exclusive: SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product thehackernews.com/2021/01/exclusive-sonicwall-hacked-using-0-day.html SonicWall, a popular internet security provider of firewall and VPN products, on late Friday disclosed that it fell victim to a coordinated attack on its internal systems. “Recently, SonicWall identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting […]

Read More

Daily NCSC-FI news followup 2019-06-13

Tivi: Louhen palvelimissa tietomurto, palveluja alhaalla jo neljättä päivää Uskomattoman hidasta toimintaa www.tivi.fi/uutiset/louhen-palvelimissa-tietomurto-palveluja-alhaalla-jo-neljatta-paivaa-uskomattoman-hidasta-toimintaa/1f174864-f64a-46d7-9aab-dbdab45801c5 Suomalaisen webhotelli-yhtiö Louhen palvelut ovat kärsineet vakavista ongelmista tietomurron takia. Louhi tiedottaa verkkosivuillaan, että seitsemän webhotellipalvelinta on kärsinyt ongelmista. Niiden johdosta verkkosivut ja sähköpostipalvelut eivät ole toimineet. Tapahtuneen tietomurron johdosta palvelut tullaan siirtämään korvaaville alustoille niin pian kuin mahdollista, Louhi tiedottaa. Ransomware […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.