Daily NCSC-FI news followup 2020-12-30

DHS orders federal agencies to update SolarWinds Orion platform

www.bleepingcomputer.com/news/security/dhs-orders-federal-agencies-to-update-solarwinds-orion-platform/ The Cybersecurity and Infrastructure Security Agency (CISA) has ordered all US federal agencies to update the SolarWinds Orion platform to the latest version by the end of business hours on December 31, 2020.

Microsoft: SolarWinds hackers’ goal was the victims’ cloud data

www.bleepingcomputer.com/news/security/microsoft-solarwinds-hackers-goal-was-the-victims-cloud-data/ Microsoft says that the end goal of the SolarWinds supply chain compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks.

Emotet malware hits Lithuania’s National Public Health Center

www.bleepingcomputer.com/news/security/emotet-malware-hits-lithuanias-national-public-health-center/ The internal networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities have been infected with Emotet malware following a large campaign targeting the country’s state institutions.

SearchDimension search hijackers: An overview of developments

blog.malwarebytes.com/adware/2020/12/searchdimension-search-hijackers/ SearchDimension is the name of a family of browser hijackers that makes money from ad clicks and search engine revenues. The family was named after the domain searchdimension.com that popped up in 2017, and they still sometimes use the letter combo SD in the names of their browser extensions.

Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/ In early December, we discovered a new, undetected worm written in Golang. This worm continues the popular 2020 trend of multi-platform malware developed in Golang.

Wasabi cloud storage service knocked offline for hosting malware

www.bleepingcomputer.com/news/security/wasabi-cloud-storage-service-knocked-offline-for-hosting-malware/ Cloud storage provider Wasabi suffered an outage after a domain used for storage endpoints was suspended for hosting malware.

FBI: Pranksters are hijacking smart devices to live-stream swatting incidents

www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents/ The FBI said it’s working with smart device makers to address the issue.

Apple loses copyright battle against security start-up Corellium

www.washingtonpost.com/technology/2020/12/29/apple-corellium-lawsuit/ Corellium helps customers find bugs in Apples mobile operating system. Apple aimed to shut it down.

Kahdenlaisia huijausviestejä OP Ryhmän nimissä

www.op.fi/-/kahdenlaisia-huijausviesteja-op-ryhman-nimissa Huijausviesteissä voidaan väittää, että asiakkaan tili pitäisi todentaa, ja viestit saattavat näyttää OP:n omilta, luottamuksellisilta sähköposteilta.. Toisenlaisissa huijausviesteissä väitetään, että uusi laite on linkitetty matkapuhelimeen, ja pyydetään reagoimaan, jos se ei ollut asiakas itse.

You might be interested in …

Daily NCSC-FI news followup 2020-11-26

ENISA Report Highlights Resilience of Telecom Sector in Facing the Pandemic www.enisa.europa.eu/news/enisa-news/telecom-security-and-resilience-during-covid19 ENISA is releasing its Telecom Security During a Pandemic report at the 32nd meeting of EU telecom security authorities. Underlining the current strength of the sector in the face of the pandemic, the report also calls for increased cooperation, as telecommunications become more […]

Read More

Daily NCSC-FI news followup 2021-05-07

Connected Places: new NCSC security principles for ‘Smart Cities’ www.ncsc.gov.uk/blog-post/connected-places-new-ncsc-security-principles-for-smart-cities NCSC Technical Director warns that ‘Connected Places’ will likely be a target for malicious actors. It wasnt a teenager accidentally taking control of nuclear command and control, or a magic box that can decrypt anything stolen and used by shady Bond villains intent on taking […]

Read More

Daily NCSC-FI news followup 2020-03-20

GUIDANCE ON THE ESSENTIAL CRITICAL INFRASTRUCTURE WORKFORCE www.cisa.gov/publication/guidance-essential-critical-infrastructure-workforce MEMORANDUM ON IDENTIFICATION OF ESSENTIAL CRITICAL INFRASTRUCTURE WORKERS DURING COVID-19 RESPONSE Sodinokibi Ransomware Data Leaks Now Sold on Hacker Forums www.bleepingcomputer.com/news/security/sodinokibi-ransomware-data-leaks-now-sold-on-hacker-forums/ Ransomware victims who do not pay a ransom and have their stolen files leaked are now facing a bigger nightmare as other hackers and criminals sell […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.