Daily NCSC-FI news followup 2021-02-13

Who is to blame for the malicious Barcode Scanner that got on the Google Play store?

blog.malwarebytes.com/android/2021/02/who-is-to-blame-for-the-malicious-barcode-scanner-that-got-on-the-google-play-store/ In our last blog, Barcode Scanner app on Google Play infects 10 million users with one update, we wrote about a barcode scanner found on the Google Play store that was infected with Android/Trojan.HiddenAds.AdQR.. All initial signs led us to believe that LavaBird LTD was the developer of this malware, but since then, a representative from LavaBird reached out to us. They claimed it was not them who was responsible for uploading malicious versions of Barcode Scanner, package name com.qrcodescanner.barcodescanner, but an account named The space team.

Supon Antti Pelttari Ykkösaamussa Tanskan terroristipidätyksistä: Suomessakin on ihmisiä, joilla on kyky ja taito tehdä iskuja

yle.fi/uutiset/3-11787822 “Autoritaarisilla valtioilla on pyrkimyksiä päästä kiinni Suomen infrastruktuuriin”, Pelttari sanoo.. Kybervakoilu on Pelttarin mukaan vilkastunut, kun koronapandemian aikana etätyöt siirsivät ihmisiä enemmän verkkoon. Valtiot eivät olleet muutokseen kovin valmistautuneita. Pelttarin mukaan nyt selvitetään, miksi ne eivät olleet ja mitä asialle pitäisi tehdä.

Supermicro spy chips, the sequel: It really, really happened, and with bad BIOS and more, insists Bloomberg

www.theregister.com/2021/02/12/supermicro_bloomberg_spying/ Server maker says latest article is ‘a mishmash of disparate allegations’

Rumat luvut: Kasvua 311 % kiristäjille ainakin 290 miljoonaa

www.is.fi/digitoday/tietoturva/art-2000007799824.html Kiristysohjelmilla taottiin rahaa aivan uudella vimmalla viime vuonna, rahan liikkeitä seuraava asiantuntija arvioi.

New Bazar Trojan Variant is Being Spread in Recent Phishing Campaign Part I

www.fortinet.com/blog/threat-research/new-bazar-trojan-variant-is-being-spread-in-recent-phishing-campaign-part-I FortiGuard Labs recently noticed a suspicious email through the SPAM monitoring system. This email was designed to entice a victim into opening a web page to download an executable file. Additional research on this executable file found that it is a new variant of Bazar.

A Windows Defender vulnerability lurked undetected for 12 years

arstechnica.com/information-technology/2021/02/a-windows-defender-vulnerability-lurked-undetected-for-12-years/ Microsoft patched the bug in its A/V program after researchers spotted it last fall.

Leading Canadian rental car company hit by DarkSide ransomware

www.bleepingcomputer.com/news/security/leading-canadian-rental-car-company-hit-by-darkside-ransomware/ Canadian Discount Car and Truck Rentals has been hit with a DarkSide ransomware attack where the hackers claim to have stolen 120GB of data.

Scallops, vaccines and Tesla: The wild world of blockchain and cryptocurrency

www.zdnet.com/article/scallops-vaccines-and-tesla-the-wild-world-of-blockchain-and-cryptocurrency/ Tesla’s Elon Musk and Twitter’s Jack Dorsey have everyone’s interest piqued in cryptocurrency and blockchain. However, these two technologies are still not well understood. What are the prospects for Bitcoin and its brethren on their journey to becoming, well, actual money?

You might be interested in …

Daily NCSC-FI news followup 2019-08-31

VLAN as an additional security layer www.kaspersky.com/blog/vlan-security/28253/ Every company has employees who handle large volumes of external e-mail. HR officers, PR managers, and salespeople are a few common examples. In addition to their regular mail, they receive a lot of spam, phishing messages, and malicious attachments. Moreover, the nature of their work requires them to […]

Read More

Daily NCSC-FI news followup 2021-01-03

2021 Cybersecurity Trends: Bigger Budgets, Endpoint Emphasis and Cloud threatpost.com/2021-cybersecurity-trends/162629/ Insider threats are redefined in 2021, the work-from-home trend will continue define the threat landscape and mobile endpoints become the attack vector of choice, according 2021 forecasts. After shrinking in 2020, cybersecurity budgets in 2021 climb higher than pre-pandemic limits. Authentication, cloud data protection and […]

Read More

Daily NCSC-FI news followup 2020-11-17

Nordean tietomurrosta kahdelle vankeutta yhden syytteet hylättiin Pohjanmaan käräjäoikeudessa yle.fi/uutiset/3-11652084?origin=rss Rikokset ajoittuivat kesään 2019. Käräjäoikeus määräsi tiistaina tuomitut maksamaan pankille yhteensä yli 276 000 euroa vahingonkorvauksia. Delhin poliisi pidätti 17 ihmistä “Microsoftin palvelukeskuksesta” www.tivi.fi/uutiset/tv/79cbdf6d-9551-46b5-b6ff-06a378686a75 Poliisin antamien tietojen mukaan huijariporukka oli ehtinyt petkuttaa ihmisiä jo runsaan vuoden ajan. Uhrien määräksi kerrotaan 2268 ja saaliiksi runsaat 0, […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.