Daily NCSC-FI news followup 2020-09-27

Google removes 17 Android apps doing WAP billing fraud from the Play Store

www.zdnet.com/article/google-removes-17-android-apps-doing-wap-billing-fraud-from-the-play-store/ The 17 apps were infected with the Joker (Bread) malware, which Google described in January 2020 as one of the most persistent threats it dealt with since 2017.

iOS 14: The Surprising Security Risk Of Sharing Your New iPhone Home Screen

www.forbes.com/sites/kateoflahertyuk/2020/09/27/ios-14-the-surprising-security-risk-of-sharing-your-new-iphone-home-screen/ But sharing your customized iPhone home screen far and wide isn’t actually a good ideasurprisingly, it can be a major security risk. This is because that screenshot of your iOS 14 home screen can give away a lot of information about you that could be of use to malicious hackers.

Alexa Gets New Privacy Controls All You Need To Know

www.forbes.com/sites/daveywinder/2020/09/27/amazon-alexa-all-you-need-to-know-about-unexpected-new-privacy-controls/ You can now configure Alexa so that none of your voice recordings are saved.

The Android 11 Privacy and Security Features You Should Know

www.wired.com/story/android-11-privacy-and-security-features/ Many of the updates to Google’s mobile OS are behind the scenesbut they can help you control your app permissions and keep your data safe.

Tyler Technologies warns clients to change remote support passwords

www.bleepingcomputer.com/news/security/tyler-technologies-warns-clients-to-change-remote-support-passwords/ Tyler Technologies is warning clients to change the passwords for the technology provider’s remote access accounts after suspicious logins have been reported.

Singapore urges need for international organisations to ‘reform’ in digital age

www.zdnet.com/article/singapore-urges-need-for-international-organisations-to-reform-in-digital-age/ Singapore’s Foreign Affairs Minister calls for the United Nations and World Trade Organisation to be reformed, so international rules are in line with cybersecurity and other key digital developments.

You might be interested in …

Daily NCSC-FI news followup 2019-09-01

Latest Sextortion Email Scheme Sent by ChaosCC Hacker Group www.bleepingcomputer.com/news/security/latest-sextortion-email-scheme-sent-by-chaoscc-hacker-group/ A new sextortion scam is underway that claims to be from the ChaosCC hacker group who states they infected the recipient’s computer with a Trojan that videoed them on adult web sites. If you received this email, it is important to know from the beginning […]

Read More

Daily NCSC-FI news followup 2021-10-25

Microsoft says Russia hacked at least 14 IT service providers this year therecord.media/microsoft-says-russias-apt29-hacked-at-least-14-it-service-providers-this-year/ Microsoft said on Monday that a Russian state-sponsored hacking group known as Nobelium had attacked more than 140 IT and cloud services providers, successfully breaching 14 companies. NOBELIUM targeting delegated administrative privileges to facilitate broader attacks www.microsoft.com/security/blog/2021/10/25/nobelium-targeting-delegated-administrative-privileges-to-facilitate-broader-attacks/ The targeted activity has been […]

Read More

Daily NCSC-FI news followup 2021-03-12

Exploits on Organizations Worldwide Tripled every Two Hours after Microsoft’s Revelation of Four Zero-days blog.checkpoint.com/2021/03/11/exploits-on-organizations-worldwide/ Following the revelation of four zero-day vulnerabilities currently affecting Microsoft Exchange Server, Check Point Research (CPR) discloses its latest observations on exploitation attempts against organizations that it tracks worldwide. myös: www.tivi.fi/uutiset/tv/31187ac4-d460-4a33-be35-0256443bbb11 F-Secure: “Tilanne voi revetä käsiin” Exchange-hyökkäysten hirmumyrsky repii maailmaa […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.