Daily NCSC-FI news followup 2021-02-15

Sandworm intrusion set campaign targeting Centreon systems

www.cert.ssi.gouv.fr/cti/CERTFR-2021-CTI-005/ ANSSI has been informed of an intrusion campaign targeting the monitoring software Centreon distributed by the French company CENTREON which resulted in the breach of several French entities.. see full report


Microsoft: SolarWinds attack took more than 1,000 engineers to create

www.zdnet.com/article/microsoft-solarwinds-attack-took-more-than-1000-engineers-to-create/ The months-long hacking campaign that affected US government agencies and cybersecurity vendors was “the largest and most sophisticated attack the world has ever seen,” Microsoft president Brad Smith has said, and involved a vast number of developers.. Microsoft, which was also breached by the bad Orion update, assigned 500 engineers to investigate the attack said Smith, but the (most likely Russia-backed) team behind the attack had more than double the engineering resources.

Oululainen Kati sai huonolla hetkellä tulleesta tekstarista 630 euron laskun sitten puhelimeen kilahti 10 sekunnissa satoja viestejä

www.is.fi/digitoday/tietoturva/art-2000007799834.html 630 euron lasku syntyi hetkessä huijausviestin osuttua todella uskottavaan saumaan.

Valkohattuhakkeri paljasti suomalaisten suosimat salasanat älä missään nimessä käytä mitään tältä listalta

www.is.fi/digitoday/tietoturva/art-2000007804375.html Suomalaisten salasanat ovat saaneet kansainvälistä väriä kahdessa vuodessa.

270 addresses are responsible for 55% of all cryptocurrency money laundering

www.zdnet.com/article/270-addresses-are-responsible-for-55-of-all-cryptocurrency-money-laundering/ Most cryptocurrency money laundering is concentrated in a few online services, opening the door for law enforcement actions.

Google Chrome, Microsoft Edge getting this Intel security feature

www.bleepingcomputer.com/news/security/google-chrome-microsoft-edge-getting-this-intel-security-feature/ Chromium-based browsers such as Microsoft Edge and Google Chrome will soon support the Intel CET security feature to prevent a wide range of vulnerabilities.

22-vuotias kiukustui asumisyksikön sääntöihin tilasi nettihyökkäyksen ja jumitti järjestelmän

www.is.fi/digitoday/tietoturva/art-2000007804798.html Vastaajan mielestä asumisyksikkö rajoitti kavereiden menemisiä liikaa.

Microsoft will alert Office 365 admins of Forms phishing attempts

www.bleepingcomputer.com/news/security/microsoft-will-alert-office-365-admins-of-forms-phishing-attempts/ Microsoft is adding new security warnings to the Security and Compliance Center (SCC) default alert policies to inform IT admins of detected phishing attempts abusing Microsoft Forms in their tenants.

Spam and phishing in 2020


The weirdest hacking techniques youve never heard of


You might be interested in …

Daily NCSC-FI news followup 2019-11-13

While CISOs Fret, Business Leaders Tout Security Robustness www.darkreading.com/operations/while-cisos-fret-business-leaders-tout-security-robustness/d/d-id/1336342 Nominet recently surveyed nearly 300 senior security and IT practitioners, including CISOs, CIOs, and CTOs from the US and UK. The survey sought to assess the level of confidence among executives about their organizations’ cybersecurity posture and readiness to deal with threats.. Seventy percent of the […]

Read More

Daily NCSC-FI news followup 2020-02-23

U.S. Defense Agency That Secures Trumps Communications Confirms Data Breach www.forbes.com/sites/daveywinder/2020/02/21/us-defense-agency-that-secures-trumps-communications-confirms-data-breach/ The Department of Defense agency responsible for securing the communications of President Trump has suffered a data breach. Heres what is known so far. Governments of the world just ramped up spying on reporters www.cjr.org/first_person/ft-nations-surveillance-attacks.php Transparent Tribe: Four Years Later blog.yoroi.company/research/transparent-tribe-four-years-later/ Operation Transparent Tribe […]

Read More

Daily NCSC-FI news followup 2020-01-16

APT40 is run by the Hainan department of the Chinese Ministry of State Security intrusiontruth.wordpress.com/2020/01/16/apt40-is-run-by-the-hainan-department-of-the-chinese-ministry-of-state-security/ Either a Hainan intelligence officer has a side-hustle running a business empire of at least 13 fast-growing, high-tech information security companies, and that business empire has a side-hustle recruiting people with knowledge of the languages spoken in APT40 target countries […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.