German Parliament targeted again by Russian state hackers
www.bleepingcomputer.com/news/security/german-parliament-targeted-again-by-russian-state-hackers/ It is believed that the attackers were able to gain access to the email accounts of seven members of the German federal parliament (Bundestag) and 31 members of German regional parliaments. “The Ghostwriter campaign leverages traditional cyber threat activity and information operations tactics to promote narratives intended to chip away at NATO’s cohesion and undermine local support for the organization in Lithuania, Latvia, and Poland, ” FireEye said.
Kyberrikollisuus on poliisiasia uusi opas neuvoo yrityksiä kyberrikostilanteissa
www.epressi.com/tiedotteet/turvallisuus/kyberrikollisuus-on-poliisiasia-uusi-opas-neuvoo-yrityksia-kyberrikostilanteissa.html Kyberrikokset voivat aiheuttaa yrityksen toimintaan vakavia häiriöitä ja merkittävää taloudellista vahinkoa. Kyberrikoksen uhriksi joutuminen ei ole häpeä
SolarWinds patches critical code execution bug in Orion Platform
Apple fixes iOS zero-day vulnerability exploited in the wild
www.bleepingcomputer.com/news/security/apple-fixes-ios-zero-day-vulnerability-exploited-in-the-wild/ Apple has released security updates to address an iOS zero-day bug actively exploited in the wild and affecting iPhone, iPad, iPod, and Apple Watch devices. The zero-day was discovered in the Webkit browser engine and allows attackers to launch universal cross-site scripting attacks after tricking targets into opening maliciously crafted web content on their devices.
Insurance Giant CNA Hit with Novel Ransomware Attack
threatpost.com/cna-hit-novel-ransomware/165044/ The incident, which forced the company to disconnect its systems, caused significant business disruption. The attack occurred earlier this week and leveraged a new variant of the Phoenix CryptoLocker malware.
Hades ransomware operators are hunting big game in the US
www.zdnet.com/article/hades-ransomware-operators-are-hunting-big-game-in-the-us/ Accenture says that the threat actors are focused on hunting organizations that generate at least $1 billion in annual revenue. See also:
New Advanced Android Malware Posing as “System Update”
blog.zimperium.com/new-advanced-android-malware-posing-as-system-update/ The new malware disguises itself as a System Update application, and is stealing data, messages, images and taking control of Android phones. Once in control, hackers can record audio and phone calls, take photos, review browser history, access WhatsApp messages, and more