Daily NCSC-FI news followup 2021-01-10

Eilakaisla joutui kyber­hyökkäyksen kohteeksi henkilö­tietojen vuoto ei pois suljettua

www.hs.fi/kotimaa/art-2000007731435.html Henkilöstöpalvelualan yritys Eilakaisla joutui viikonloppuna kyberhyökkäyksen kohteeksi. Yritys tiedotti sunnuntaina, että kiristyshaittaohjelmalla perjantaina tehdyn hyökkäyksen vuoksi Eilakaislan palvelin lakkasi sinä päivänä toimimasta. Hyökkäyksen takia on mahdollista, että työnhakijoiden ja työntekijöiden henkilötietoja sekä asiakkaiden laskutustietoja on vaarantunut.. Myös:

yle.fi/uutiset/3-11730761.

www.is.fi/digitoday/tietoturva/art-2000007731487.html

Miten kyber­uhkien torjuntaa pitäisi kehittää?

www.tivi.fi/uutiset/tv/1cfc4f24-2da5-4a3a-9d86-26f9f0898f81 Kirsi Karlamaa, pääjohtaja, Traficom. Kehitetään määrätietoisesti osaamista, koulutusta, yhteistyötä, vahvaa kotimaista kyberteollisuutta, ja osittaista kyberomavaraisuutta. Kyber­turvallisuus on kaikkien asia. Yhtä hopealuotia ei ole.

Apple removed Parler from the App Store for inciting violence

www.bleepingcomputer.com/news/apple/apple-removed-parler-from-the-app-store-for-inciting-violence/ Apple has removed the Parler social network app from the App Store for violating policies, including not providing an updated moderation plan or an updated app with objectionable content removed. Since the U.S. Capitol Building riot on January 6th, 2021, there has been an increase in social networking posts that incite violence against politicians, law enforcement, and organizations that supporters.

Maldoc Analysis With CyberChef

isc.sans.edu/forums/diary/Maldoc+Analysis+With+CyberChef/26968/ In diary entry “Maldoc Strings Analysis” I show how to analyze a malicious document, by extracting and decoding strings with command-line tools. In this video, I analyze the same malicious Word document, using CyberChef only. This is possible, because this particular maldoc contains a very long string with the payload, and this string can be extracted without parsing the structure of this .doc file.

New Zealand Reserve Bank suffers data breach via hacked storage partner

www.bleepingcomputer.com/news/security/new-zealand-reserve-bank-suffers-data-breach-via-hacked-storage-partner/ The Reserve Bank of New Zealand, known as Te Ptea Matua, has suffered a data breach after threat actors hacked a third-party hosting partner. The Reserve Bank is the central bank of New Zealand and is responsible for creating monetary policy to stabilize prices in the country. On January 10th, the Reserve Bank disclosed that they had suffered a data breach after attackers illegally accessed data stored at a third-party hosting provider.

You might be interested in …

Daily NCSC-FI news followup 2021-04-25

VPN Hacks Are a Slow-Motion Disaster www.wired.com/story/vpn-hacks-pulse-secure-espionage/ Recent spying attacks against Pulse Secure VPN are just the latest example of a long-simmering cybersecurity meltdown. Hacking campaign targets FileZen file-sharing network appliances therecord.media/hacking-campaign-targets-filezen-file-sharing-network-appliances/ Threat actors are using two vulnerabilities in a popular file-sharing server to breach corporate and government systems and steal sensitive data as part […]

Read More

Daily NCSC-FI news followup 2020-12-14

Kyberuhat yleistyvät Miten Suomen yritykset pärjäävät? www.etla.fi/julkaisut/kyberuhat-yleistyvat-miten-suomen-yritykset-parjaavat/ Vaikka Suomen yritysten kyberturva onkin Euroopan keskitasoa vahvempaa, on Suomi jäämässä kehityksen kärjestä useilla eri mittareilla arvioituna. Erityisesti tietovuodot vaikuttavat tuottavan kotimaisille yrityksille poikkeuksellisen paljon haasteita. Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html FireEye has uncovered a widespread campaign, […]

Read More

Daily NCSC-FI news followup 2020-02-05

Malware infection attempts appear to be shrinking… possibly because miscreants are less spammy and more focused on specific targets www.theregister.co.uk/2020/02/04/sonicwall_threat_report/ Attempts to infect computers with ransomware and other malware over networks are decreasing, reckons infosec outfit Sonicwall. FBI Warns of DDoS Attack on State Voter Registration Site www.bleepingcomputer.com/news/security/fbi-warns-of-ddos-attack-on-state-voter-registration-site/ The US Federal Bureau of Investigation (FBI) […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.