Daily NCSC-FI news followup 2020-12-30

DHS orders federal agencies to update SolarWinds Orion platform

www.bleepingcomputer.com/news/security/dhs-orders-federal-agencies-to-update-solarwinds-orion-platform/ The Cybersecurity and Infrastructure Security Agency (CISA) has ordered all US federal agencies to update the SolarWinds Orion platform to the latest version by the end of business hours on December 31, 2020.

Microsoft: SolarWinds hackers’ goal was the victims’ cloud data

www.bleepingcomputer.com/news/security/microsoft-solarwinds-hackers-goal-was-the-victims-cloud-data/ Microsoft says that the end goal of the SolarWinds supply chain compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks.

Emotet malware hits Lithuania’s National Public Health Center

www.bleepingcomputer.com/news/security/emotet-malware-hits-lithuanias-national-public-health-center/ The internal networks of Lithuania’s National Center for Public Health (NVSC) and several municipalities have been infected with Emotet malware following a large campaign targeting the country’s state institutions.

SearchDimension search hijackers: An overview of developments

blog.malwarebytes.com/adware/2020/12/searchdimension-search-hijackers/ SearchDimension is the name of a family of browser hijackers that makes money from ad clicks and search engine revenues. The family was named after the domain searchdimension.com that popped up in 2017, and they still sometimes use the letter combo SD in the names of their browser extensions.

Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

www.intezer.com/blog/research/new-golang-worm-drops-xmrig-miner-on-servers/ In early December, we discovered a new, undetected worm written in Golang. This worm continues the popular 2020 trend of multi-platform malware developed in Golang.

Wasabi cloud storage service knocked offline for hosting malware

www.bleepingcomputer.com/news/security/wasabi-cloud-storage-service-knocked-offline-for-hosting-malware/ Cloud storage provider Wasabi suffered an outage after a domain used for storage endpoints was suspended for hosting malware.

FBI: Pranksters are hijacking smart devices to live-stream swatting incidents

www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents/ The FBI said it’s working with smart device makers to address the issue.

Apple loses copyright battle against security start-up Corellium

www.washingtonpost.com/technology/2020/12/29/apple-corellium-lawsuit/ Corellium helps customers find bugs in Apples mobile operating system. Apple aimed to shut it down.

Kahdenlaisia huijausviestejä OP Ryhmän nimissä

www.op.fi/-/kahdenlaisia-huijausviesteja-op-ryhman-nimissa Huijausviesteissä voidaan väittää, että asiakkaan tili pitäisi todentaa, ja viestit saattavat näyttää OP:n omilta, luottamuksellisilta sähköposteilta.. Toisenlaisissa huijausviesteissä väitetään, että uusi laite on linkitetty matkapuhelimeen, ja pyydetään reagoimaan, jos se ei ollut asiakas itse.

You might be interested in …

Daily NCSC-FI news followup 2020-03-27

Best password managers for business in 2020: 1Password, Keeper, LastPass, and more www.zdnet.com/article/best-password-managers/ Everyone needs a password manager. Period, full stop. It’s the only possible way to maintain unique, hard-to-guess credentials for every secure site you, your family members, and your team access daily. Booz Allen analyzed 200+ Russian hacking operations to better understand their […]

Read More

Daily NCSC-FI news followup 2019-12-24

Google Chrome impacted by new Magellan 2.0 vulnerabilities www.zdnet.com/article/google-chrome-impacted-by-new-magellan-2-0-vulnerabilities/ A new set of SQLite vulnerabilities can allow attackers to remotely run malicious code inside Google Chrome, the world’s most popular web browser.. All apps that use an SQLite database to store data are vulnerable, although, the vector for “remote attacks over the internet” is How […]

Read More

Daily NCSC-FI news followup 2019-06-14

Tietoturvayhtiö varoittaa: Merkit pahasta kyberiskusta näkyvissä www.is.fi/digitoday/tietoturva/art-2000006142010.html Tietoturvayhtiö Check Point yhtyy Microsoftin ja monien asiantuntijoiden kuoroon ja kehottaa vanhojen Windowsien käyttäjiä korjaamaan viimeistään nyt niin sanotun BlueKeep-haavoittuvuuden. The Brussels Times: Cyber-attack causes aircraft parts maker to close indefinitely www.brusselstimes.com/all-news/business/technology/58373/cyber-attack-causes-aircraft-parts-maker-to-close-indefinitely-asco/ According to Data News, Asco has shut down its base in Zaventem, as well as operations […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.