Daily NCSC-FI news followup 2020-09-17

Ransomware attack at German hospital leads to death of patient

www.bleepingcomputer.com/news/security/ransomware-attack-at-german-hospital-leads-to-death-of-patient/ A person in a life-threatening condition passed away after being forced to go to a more distant hospital due to a ransomware attack.

www.is.fi/digitoday/tietoturva/art-2000006638568.html Postin nimissä lähetettäviä huijaustekstiviestejä tulee suomalaisille hyvin aktiivisesti. Ilta-Sanomat Digitoday on saanut useita ilmoituksia viime viikonloppuna ja tällä viikolla lähetetyistä viesteistä.

Zerologon hacking Windows servers with a bunch of zeros

nakedsecurity.sophos.com/2020/09/17/zerologon-hacking-windows-servers-with-a-bunch-of-zeros/ The big, bad bug of the week is called Zerologon.. As you can probably tell from the name, it involves Windows everyone else talks about logging in, but on Windows youve always very definitely logged on and it is an authentication bypass, because it lets you get away with using a zero-length password.

Emotet strikes Quebecs Department of Justice: An ESET Analysis

www.welivesecurity.com/2020/09/16/emotet-quebec-department-justice-eset/ The cyber attack affects 14 inboxes belonging to the Department of Justice was confirmed by ESET researchers.

Ransomware warning: Hackers are launching fresh attacks against universities

www.zdnet.com/article/ransomware-warning-hackers-are-launching-fresh-attacks-against-universities/ Cybersecurity agency warns about a spike in ransomware attacks targeting universities and colleges.

Maze ransomware now encrypts via virtual machines to evade detection

www.bleepingcomputer.com/news/security/maze-ransomware-now-encrypts-via-virtual-machines-to-evade-detection/ The Maze ransomware operators have adopted a tactic previously used by the Ragnar Locker gang; to encrypt a computer from within a virtual machine.

A New Botnet Attack Just Mozied Into Town

securityintelligence.com/posts/botnet-attack-mozi-mozied-into-town/ A relatively new player in the threat arena, the Mozi botnet, has spiked among Internet of things (IoT) devices, IBM X-Force has discovered.

Two Russians Charged in $17M Cryptocurrency Phishing Spree

krebsonsecurity.com/2020/09/two-russians-charged-in-17m-cryptocurrency-phishing-spree/ U.S. authorities today announced criminal charges and financial sanctions against two Russian men accused of stealing nearly $17 million worth of virtual currencies in a series of phishing attacks throughout 2017 and 2018 that spoofed websites for some of the most popular cryptocurrency exchanges.

You might be interested in …

Daily NCSC-FI news followup 2020-07-06

U.K. Set to Start Huawei 5G Phase-Out as Soon as This Year www.bloomberg.com/news/articles/2020-07-05/u-k-prepares-to-start-huawei-5g-phase-out-as-soon-as-this-year Prime Minister Boris Johnson is preparing to begin phasing out the use of Huawei Technologies Co. equipment in the U.K.s 5G telecoms network as soon as this year, a person familiar with the matter said. OVER 1,800 F5 BIG-IP ENDPOINTS VULNERABLE TO […]

Read More

Daily NCSC-FI news followup 2021-06-05

Attackers are scanning for vulnerable VMware servers, patch now! www.bleepingcomputer.com/news/security/attackers-are-scanning-for-vulnerable-vmware-servers-patch-now/ Threat actors are actively scanning for Internet-exposed VMware vCenter servers unpatched against a critical remote code execution (RCE) vulnerability impacting all vCenter deployments and patched by VMware ten days ago. The ongoing scanning activity was spotted by threat intelligence company Bad Packets yesterday and confirmed […]

Read More

Daily NCSC-FI news followup 2019-09-03

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming krebsonsecurity.com/2019/09/feds-allege-adconion-employees-hijacked-ip-addresses-for-spamming/ Federal prosecutors in California have filed criminal charges against four employees of Adconion Direct, an email advertising firm, alleging they unlawfully hijacked vast swaths of Internet addresses and used them in large-scale spam campaigns. KrebsOnSecurity has learned that the charges are likely just the opening […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.