Daily NCSC-FI news followup 2020-09-19

5 ways cybercriminals can try to extort you

www.welivesecurity.com/2020/09/18/five-cybercriminals-extortion-schemes/ When it comes to coercing people into parting with their money, cybercriminals seem to have an endless bag of tricks to choose from. There are some tricks, that they favor more than others, one of which is extortion. According to the FBIs latest Internet Crime Report, US victims of extortion lost some US$107.5 million to these crimes last year.

Stubborn WooCommerce Plugin Bugs Get Third Patch

threatpost.com/woocommerce-plugin-bug-allows-site-takeover/159364/ E-commerce sites using the WordPress plugin Discount Rules for WooCommerce are being urged to patch two high-severity cross-site scripting flaws that could allow an attacker to hijack a targeted site. Two fixes for the flaws, first available on Aug. 22 and second on Sept. 2, failed to patch the problem. A third round of patches for the bugs became available to customers on Sept. 9. On Thursday, the Wordfence Threat Intelligence researchers that were tipped-off to the vulnerabilities, publicly disclosed the flaws and offered a technical analysis.

Firefox bug lets you hijack nearby mobile browsers via WiFi

www.zdnet.com/article/firefox-bug-lets-you-hijack-nearby-mobile-browsers-via-wifi/ Mozilla has fixed a bug that can be abused to hijack all the Firefox for Android browsers on the same WiFi network and force users to access malicious sites, such as phishing pages. The bug was discovered by Chris Moberly, an Australian security researcher working for GitLab. The actual vulnerability resides in the Firefox SSDP component. SSDP stands for Simple Service Discovery Protocol and is the mechanism through which Firefox finds other devices on the same network in order to share or receive content (i.e., such as sharing video streams with a Roku device).

Tutanota encrypted email service suffers DDoS cyberattacks

www.bleepingcomputer.com/news/security/tutanota-encrypted-email-service-suffers-ddos-cyberattacks/ Encrypted email service, Tutanota has experienced a series of DDoS attacks this week, first targeting the Tutanota website and further its DNS providers. This had caused downtime for several hours for millions of Tutanota users. The outage was further exacerbated by the fact that different DNS servers continued to cache the incorrect entries for the domain. Tutanota is a German provider of end-to-end encrypted email service with over 2 million users. The company is frequently cited alongside popular encrypted email providers like ProtonMail.

CISA Releases Emergency Directive on Microsoft Windows Netlogon Remote Protocol

us-cert.cisa.gov/ncas/current-activity/2020/09/18/cisa-releases-emergency-directive-microsoft-windows-netlogon The Cybersecurity and Infrastructure Security Agency (CISA) has released Emergency Directive (ED) 20-04 addressing a critical vulnerability CVE-2020-1472affecting Microsoft Windows Netlogon Remote Protocol. An unauthenticated attacker with network access to a domain controller could exploit this vulnerability to compromise all Active Directory identity services.

Nainen kuoli ambulanssiin, kun kyberhyökkäys jumitti saksalaisen sairaalan tietojärjestelmän syyttäjä avasi harvinaisen henkirikostutkimuksen

yle.fi/uutiset/3-11553530 Jos tutkimukset johtavat syytteeseen, on kyseessä Reutersin mukaan ensimmäinen kerta, kun ihmisen kuolema on suoraan yhdistetty kyberhyökkäykseen. Rikosnimikkeenä olisi kuolemantuottamus. Saksassa syyttäjä avasi perjantaina harvinaisen henkirikostutkimuksen, jossa naisen epäillään kuolleen sairaalaan tehdyn kyberhyökkäyksen seurauksena, kertoo uutistoimisto Reuters.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.