Daily NCSC-FI news followup 2020-09-27

Google removes 17 Android apps doing WAP billing fraud from the Play Store

www.zdnet.com/article/google-removes-17-android-apps-doing-wap-billing-fraud-from-the-play-store/ The 17 apps were infected with the Joker (Bread) malware, which Google described in January 2020 as one of the most persistent threats it dealt with since 2017.

iOS 14: The Surprising Security Risk Of Sharing Your New iPhone Home Screen

www.forbes.com/sites/kateoflahertyuk/2020/09/27/ios-14-the-surprising-security-risk-of-sharing-your-new-iphone-home-screen/ But sharing your customized iPhone home screen far and wide isn’t actually a good ideasurprisingly, it can be a major security risk. This is because that screenshot of your iOS 14 home screen can give away a lot of information about you that could be of use to malicious hackers.

Alexa Gets New Privacy Controls All You Need To Know

www.forbes.com/sites/daveywinder/2020/09/27/amazon-alexa-all-you-need-to-know-about-unexpected-new-privacy-controls/ You can now configure Alexa so that none of your voice recordings are saved.

The Android 11 Privacy and Security Features You Should Know

www.wired.com/story/android-11-privacy-and-security-features/ Many of the updates to Google’s mobile OS are behind the scenesbut they can help you control your app permissions and keep your data safe.

Tyler Technologies warns clients to change remote support passwords

www.bleepingcomputer.com/news/security/tyler-technologies-warns-clients-to-change-remote-support-passwords/ Tyler Technologies is warning clients to change the passwords for the technology provider’s remote access accounts after suspicious logins have been reported.

Singapore urges need for international organisations to ‘reform’ in digital age

www.zdnet.com/article/singapore-urges-need-for-international-organisations-to-reform-in-digital-age/ Singapore’s Foreign Affairs Minister calls for the United Nations and World Trade Organisation to be reformed, so international rules are in line with cybersecurity and other key digital developments.

You might be interested in …

Daily NCSC-FI news followup 2019-09-18

Tortoiseshell Group Targets IT Providers in Saudi Arabia in Probable Supply Chain Attacks www.symantec.com/blogs/threat-intelligence/tortoiseshell-apt-supply-chain A previously undocumented attack group is using both custom and off-the-shelf malware to target IT providers in Saudi Arabia in what appear to be supply chain attacks with the end goal of compromising the IT providers customers.. The group, which we […]

Read More

Daily NCSC-FI news followup 2019-08-01

Ransomware: Cyberattack forces Houston County schools to postpone opening day www.scmagazine.com/home/security-news/malware/cyberattack-forces-houston-county-schools-to-postpone-opening-day/ Ransomware: Syracuse, NY and Watertown, NY City School Districts have been targeted in a ransomware attack spectrumlocalnews.com/nys/watertown/news/2019/07/30/watertown-the-latest-school-system-targeted-by-cyber-attack Ransomware: Steps to Safeguard Against Ransomware Attacks www.us-cert.gov/ncas/current-activity/2019/07/30/steps-safeguard-against-ransomware-attacks 1. Back up systems – now (and daily). Store one copy offline.. 2. Reinforce basic cybersecurity awareness and education. […]

Read More

Daily NCSC-FI news followup 2021-01-09

Excelerating Analysis Tips and Tricks to Analyze Data with Microsoft Excel www.fireeye.com/blog/threat-research/2019/12/tips-and-tricks-to-analyze-data-with-microsoft-excel.html Incident response investigations dont always involve standard host-based artifacts with fully developed parsing and analysis tools. At FireEye Mandiant, we frequently encounter incidents that involve a number of systems and solutions that utilize custom logging or artifact data. Determining what happened in an […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.