Daily NCSC-FI news followup 2020-12-30

DHS orders federal agencies to update SolarWinds Orion platform

www.bleepingcomputer.com/news/security/dhs-orders-federal-agencies-to-update-solarwinds-orion-platform/ The Cybersecurity and Infrastructure Security Agency (CISA) has ordered all US federal agencies to update the SolarWinds Orion platform to the latest version by the end of business hours on December 31, 2020.

Microsoft: SolarWinds hackers’ goal was the victims’ cloud data

www.bleepingcomputer.com/news/security/microsoft-solarwinds-hackers-goal-was-the-victims-cloud-data/ Microsoft says that the end goal of the SolarWinds supply chain compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks.

Emotet malware hits Lithuania’s National Public Health Center

www.bleepingcomputer.com/news/security/emotet-malware-hits-lithuanias-national-public-health-center/ The internal networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities have been infected with Emotet malware following a large campaign targeting the country’s state institutions.

SearchDimension search hijackers: An overview of developments

blog.malwarebytes.com/adware/2020/12/searchdimension-search-hijackers/ SearchDimension is the name of a family of browser hijackers that makes money from ad clicks and search engine revenues. The family was named after the domain searchdimension.com that popped up in 2017, and they still sometimes use the letter combo SD in the names of their browser extensions.

Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/ In early December, we discovered a new, undetected worm written in Golang. This worm continues the popular 2020 trend of multi-platform malware developed in Golang.

Wasabi cloud storage service knocked offline for hosting malware

www.bleepingcomputer.com/news/security/wasabi-cloud-storage-service-knocked-offline-for-hosting-malware/ Cloud storage provider Wasabi suffered an outage after a domain used for storage endpoints was suspended for hosting malware.

FBI: Pranksters are hijacking smart devices to live-stream swatting incidents

www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents/ The FBI said it’s working with smart device makers to address the issue.

Apple loses copyright battle against security start-up Corellium

www.washingtonpost.com/technology/2020/12/29/apple-corellium-lawsuit/ Corellium helps customers find bugs in Apples mobile operating system. Apple aimed to shut it down.

Kahdenlaisia huijausviestejä OP Ryhmän nimissä

www.op.fi/-/kahdenlaisia-huijausviesteja-op-ryhman-nimissa Huijausviesteissä voidaan väittää, että asiakkaan tili pitäisi todentaa, ja viestit saattavat näyttää OP:n omilta, luottamuksellisilta sähköposteilta.. Toisenlaisissa huijausviesteissä väitetään, että uusi laite on linkitetty matkapuhelimeen, ja pyydetään reagoimaan, jos se ei ollut asiakas itse.

You might be interested in …

Daily NCSC-FI news followup 2020-10-11

Settings That Impact The Windows OS windowsir.blogspot.com/2020/10/settings-that-impact-windows-os.html There are a number of settings within Windows systems that can and do significantly impact the functionality of Windows, and as a result, can also impact what is available to a DFIR analyst. These settings very often manifest as modifications to Registry keys or values. These settings also […]

Read More

Daily NCSC-FI news followup 2020-07-18

Cloudflare outage takes down Discord, BleepingComputer, and other sites www.bleepingcomputer.com/news/technology/cloudflare-outage-takes-down-discord-bleepingcomputer-and-other-sites/ Cloudflare is having an outage that is affecting many sites including Discord, BleepingComputer, and others. It is not known what is causing the outage, but users will not be able to connect to the sites depending on the region you are located. Read also: www.forbes.com/sites/daveywinder/2020/07/18/internet-down-human-error-not-cyber-attack-to-blame-says-cloudflare/ […]

Read More

Daily NCSC-FI news followup 2020-10-27

Uusi työkalu johdolle kyberuhkien hallintaan www.kyberturvallisuuskeskus.fi/fi/ajankohtaista/uusi-tyokalu-johdolle-kyberuhkien-hallintaan Liikenne- ja viestintävirasto Traficomin Kyberturvallisuuskeskuksen kehittämä Kybermittari auttaa yritysjohtoa saamaan kyberriskit kattavammin hallintaan ja turvaamaan liiketoiminnan jatkuvuuden. DN: Suuri tietomurto ruotsalaiseen turvallisuusalan yritykseen, verkkoon on vuodettu muun muassa pankki­holvien piirustuksia www.hs.fi/ulkomaat/art-2000006700788.html Ruotsalaiseen, kansainvälisesti toimivaan turvallisuusalan yhtiöön on tehty mittava tietomurto, jossa verkkoon on vuodettu esimerkiksi pankkiholvien piirustuksia ja hälytysjärjestelmien […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.