Daily NCSC-FI news followup 2020-08-30

Major internet outage: Dozens of websites and apps are down

edition.cnn.com/2020/08/30/tech/internet-outage-cloudflare/index.html Cloudflare, an internet service that is supposed to keep websites up and running, was down itself Sunday, taking dozens of websites and online services along with it. Hulu, the PlayStation Network, Xbox Live, Feedly, Discord, and dozens of other services reported connectivity problems Sunday morning. Cloudflare said the problem was with a third-party “transit provider, ” and its service was becoming increasingly stable over the course of the day. CenturyLink, formerly known as Level 3, confirmed there was an IP outage impacting Content Delivery Networks (CDN), and that all services had been restored as of 11:12 am ET. also: isc.sans.edu/forums/diary/

Namecheap hosting and email DOWN in prolonged outage

www.bleepingcomputer.com/news/technology/namecheap-hosting-and-email-down-in-prolonged-outage/ One of the world’s largest domain registrars, Namecheap has been hit with a series of mysterious outages today and it is not clear why. The company with over 11 million registered users and 10 million domains offers domain registration, hosting, private email services, and TLS/SSL certificates and has become one of the most recognizable names in the industry. The final update issued at 11:24 AM ET blames “network issues on the side of third-party upstream provider, ” at around the same time Level 3/CenturyLink is up. Therefore this incident is likely connected to the Level 3 outage.

Google Play apps promised free shoes, but users got ad fraud malware instead

www.zdnet.com/article/google-play-apps-promised-free-shoes-but-users-got-ad-fraud-malware-instead/ Google has removed an undisclosed number of Android applications from the official Google Play Store that the company says were part of an ad fraud botnet. Named Terracotta, this botnet was discovered by the Satori mobile security team at White Ops, a security firm specialized in identifying bot behavior.

Ex-employee hacked Cisco’s AWS Infrastructure; erased virtual machines

www.hackread.com/ex-employee-hacked-cisco-cloud-erased-virtual-machines/ A former Cisco employee, Sudhish Kasaba Ramesh has pleaded guilty for damaging and exploiting the company’s internal networks. His reckless action resulted in obliterating more than 16, 000 Webex Teams application. In order to ensue remedial measures, Cisco had to spend a whopping $1.4 million and refund $1 million to the affected customers.

You might be interested in …

Daily NCSC-FI news followup 2019-07-31

Poliisi: Edistyneet kiristyshyökkäykset jatkuvat www.poliisi.fi/tietoa_poliisista/tiedotteet/1/1/edistyneet_kiristyshyokkaykset_jatkuvat_82917?language=fi Koulujen alkaessa kuullaan usein varoitteluja uusista tienkäyttäjistä. Tällä kertaa poliisi varoittaa jälleen tietoverkoissa liikkuvia ja tietoverkkojen ylläpitäjiä. Taustalla on Kokemäellä tapahtunut tietomurto.. Lounais-Suomen poliisilaitoksen kyberrikostutkintaryhmä tutkii tapausta yhteistyössä Keskusrikospoliisin ja Traficom Liikenne- ja Viestintäviraston Kyberturvallisuuskeskuksen kanssa. Tutkintanimikkeenä on törkeä datavahingonteko. On varsin todennäköistä, että muitakin rikosnimikkeitä tulee tutkinnan edetessä kyseeseen.. […]

Read More

Daily NCSC-FI news followup 2019-11-24

CNAME Cloaking, the dangerous disguise of third-party trackers medium.com/nextdns/cname-cloaking-the-dangerous-disguise-of-third-party-trackers-195205dc522a What has started to happen in the last few months in the world of third-party tracking is having a major impact on peoples privacy, and it all stayed pretty much under the radar. How to Avoid Black Friday Scams Online www.wired.com/story/how-to-avoid-black-friday-scams-online/ Black Friday attracts crowds, and […]

Read More

Daily NCSC-FI news followup 2020-06-14

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com krebsonsecurity.com/2020/06/privnotes-com-is-phishing-bitcoin-from-users-of-private-messaging-service-privnote-com/ For the past year, a site called Privnotes.com has been impersonating Privnote.com, a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. Until recently, I couldn’t quite work out what Privnotes was up to, but today it […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.