Daily NCSC-FI news followup 2020-08-30

Major internet outage: Dozens of websites and apps are down

edition.cnn.com/2020/08/30/tech/internet-outage-cloudflare/index.html Cloudflare, an internet service that is supposed to keep websites up and running, was down itself Sunday, taking dozens of websites and online services along with it. Hulu, the PlayStation Network, Xbox Live, Feedly, Discord, and dozens of other services reported connectivity problems Sunday morning. Cloudflare said the problem was with a third-party “transit provider, ” and its service was becoming increasingly stable over the course of the day. CenturyLink, formerly known as Level 3, confirmed there was an IP outage impacting Content Delivery Networks (CDN), and that all services had been restored as of 11:12 am ET. also: isc.sans.edu/forums/diary/

Namecheap hosting and email DOWN in prolonged outage

www.bleepingcomputer.com/news/technology/namecheap-hosting-and-email-down-in-prolonged-outage/ One of the world’s largest domain registrars, Namecheap has been hit with a series of mysterious outages today and it is not clear why. The company with over 11 million registered users and 10 million domains offers domain registration, hosting, private email services, and TLS/SSL certificates and has become one of the most recognizable names in the industry. The final update issued at 11:24 AM ET blames “network issues on the side of third-party upstream provider, ” at around the same time Level 3/CenturyLink is up. Therefore this incident is likely connected to the Level 3 outage.

Google Play apps promised free shoes, but users got ad fraud malware instead

www.zdnet.com/article/google-play-apps-promised-free-shoes-but-users-got-ad-fraud-malware-instead/ Google has removed an undisclosed number of Android applications from the official Google Play Store that the company says were part of an ad fraud botnet. Named Terracotta, this botnet was discovered by the Satori mobile security team at White Ops, a security firm specialized in identifying bot behavior.

Ex-employee hacked Cisco’s AWS Infrastructure; erased virtual machines

www.hackread.com/ex-employee-hacked-cisco-cloud-erased-virtual-machines/ A former Cisco employee, Sudhish Kasaba Ramesh has pleaded guilty for damaging and exploiting the company’s internal networks. His reckless action resulted in obliterating more than 16, 000 Webex Teams application. In order to ensue remedial measures, Cisco had to spend a whopping $1.4 million and refund $1 million to the affected customers.

You might be interested in …

Daily NCSC-FI news followup 2020-08-07

The Secret Life of an Initial Access Broker ke-la.com/the-secret-life-of-an-initial-access-broker/ Recently, ZDNet exclusively reported a leak posted on a cybercrime community containing details and credentials of over 900 enterprise Secure Pulse servers exploited by threat actors. Since this leak represents an ever-growing ransomware risk, KELA delved into both the leaks content and the actors who were […]

Read More

Daily NCSC-FI news followup 2020-12-13

Exclusive: U.S. Treasury breached by hackers backed by foreign government – sources www.reuters.com/article/us-usa-cyber-amazon-com-exclsuive-idUSKBN28N0PG A sophisticated hacking group backed by a foreign government stole information from the U.S. Treasury Department and a U.S. agency responsible for deciding policy around the internet and telecommunications, according to people familiar with the matter. “The United States government is aware […]

Read More

Daily NCSC-FI news followup 2021-08-14

Russian cyberspies targeted the Slovak government for months therecord.media/russian-cyberspies-targeted-slovak-government-for-months/ A Russian cyber-espionage group linked to one of Russia’s intelligence forces has targeted the Slovak government for months, Slovak security firms ESET and IstroSec said this week. The attacks were attributed to a group known as the Dukes, Nobelium, or APT29, which cyber-security agencies from the […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.