Daily NCSC-FI news followup 2020-12-30

DHS orders federal agencies to update SolarWinds Orion platform

www.bleepingcomputer.com/news/security/dhs-orders-federal-agencies-to-update-solarwinds-orion-platform/ The Cybersecurity and Infrastructure Security Agency (CISA) has ordered all US federal agencies to update the SolarWinds Orion platform to the latest version by the end of business hours on December 31, 2020.

Microsoft: SolarWinds hackers’ goal was the victims’ cloud data

www.bleepingcomputer.com/news/security/microsoft-solarwinds-hackers-goal-was-the-victims-cloud-data/ Microsoft says that the end goal of the SolarWinds supply chain compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks.

Emotet malware hits Lithuania’s National Public Health Center

www.bleepingcomputer.com/news/security/emotet-malware-hits-lithuanias-national-public-health-center/ The internal networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities have been infected with Emotet malware following a large campaign targeting the country’s state institutions.

SearchDimension search hijackers: An overview of developments

blog.malwarebytes.com/adware/2020/12/searchdimension-search-hijackers/ SearchDimension is the name of a family of browser hijackers that makes money from ad clicks and search engine revenues. The family was named after the domain searchdimension.com that popped up in 2017, and they still sometimes use the letter combo SD in the names of their browser extensions.

Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/ In early December, we discovered a new, undetected worm written in Golang. This worm continues the popular 2020 trend of multi-platform malware developed in Golang.

Wasabi cloud storage service knocked offline for hosting malware

www.bleepingcomputer.com/news/security/wasabi-cloud-storage-service-knocked-offline-for-hosting-malware/ Cloud storage provider Wasabi suffered an outage after a domain used for storage endpoints was suspended for hosting malware.

FBI: Pranksters are hijacking smart devices to live-stream swatting incidents

www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents/ The FBI said it’s working with smart device makers to address the issue.

Apple loses copyright battle against security start-up Corellium

www.washingtonpost.com/technology/2020/12/29/apple-corellium-lawsuit/ Corellium helps customers find bugs in Apples mobile operating system. Apple aimed to shut it down.

Kahdenlaisia huijausviestejä OP Ryhmän nimissä

www.op.fi/-/kahdenlaisia-huijausviesteja-op-ryhman-nimissa Huijausviesteissä voidaan väittää, että asiakkaan tili pitäisi todentaa, ja viestit saattavat näyttää OP:n omilta, luottamuksellisilta sähköposteilta.. Toisenlaisissa huijausviesteissä väitetään, että uusi laite on linkitetty matkapuhelimeen, ja pyydetään reagoimaan, jos se ei ollut asiakas itse.

You might be interested in …

Daily NCSC-FI news followup 2020-01-26

Teenagers today. Can’t take them anywhere, eh? 18-year-old kid accused of $50m SIM-swap cryptocurrency heist www.theregister.co.uk/2020/01/25/security_roundup/ Also, Cisco, Citrix emit patches, US army advises using Signal Patching the Citrix ADC Bug Doesn’t Mean You Weren’t Hacked www.bleepingcomputer.com/news/security/patching-the-citrix-adc-bug-doesnt-mean-you-werent-hacked/ Citrix on Friday released the final patch for the critical vulnerability tracked as CVE-2019-19781 in its affected appliances. […]

Read More

Daily NCSC-FI news followup 2020-09-05

Suomi ennakoi 5g:n tuomia riskejä – Supo mukana arvioimassa laitteita www.kauppalehti.fi/uutiset/suomi-ennakoi-5gn-tuomia-riskeja-supo-mukana-arvioimassa-laitteita/15541875-2408-4a72-9f79-7e8f1922ef38 Tuleva lakimuutos mahdollistaa verkoista kansallisesti vaaralliseksi arvioitavien verkkolaitteiden poistamisen. “Tämä on osittain liitoksissa 5g-turvallisuuteen, mutta laissa ei ole tarkoituksena millään tavalla jonkin verkkolaitevalmistajan säänteleminen tai markkinoilta poistaminen. Laki lähtee aivan neutraalista näkökulmasta”, johtaja Jukka-Pekka Juutinen Traficomista kertoo. Australian Cyber Security Centre (ACSC) releases cyber […]

Read More

Daily NCSC-FI news followup 2020-05-02

Scammers Using COVID-19/Coronavirus Lure to Target Medical Suppliers www.fortinet.com/blog/threat-research/scammers-using-covid-19-coronavirus-lure-to-target-medical-suppliers.html FortiGuard Labs has discovered a new malicious spearphishing campaign, once again using the COVID-19/Coronavirus pandemic as a lure. This latest email campaign targets a medical device supplier, wherein the attacker is inquiring about various materials needed to address the COVID-19 pandemic due to high demand for […]

Read More

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.