Daily NCSC-FI news followup 2021-06-13

Malware disguised as antivirus protection

www.kaspersky.com/blog/malware-disguised-as-antivirus/40252/ In almost every post about Android, we recommend installing apps from official sources only, and that wont change anytime soon. A recent example illustrates why: Scammers were spreading a banking Trojan disguised as popular media players, a fitness app, a book reader, and one that hit close to home, Kaspersky Internet Security for Android. Nothing is wrong with third-party app marketplaces per se, but no one can know for sure whether any given store is trustworthy. In an official Android app store, be it Google Play or Huawei AppGallery, employees of the respective owner companies screen every application submitted by developers, weeding out any that are clearly malicious.

Why Cyber Attacks Against Film And Media Industries Are Escalating

www.forbes.com/sites/davidbalaban/2021/06/11/why-cyber-attacks-against-film-and-media-industries-are-escalating/ The entertainment industry is a gigantic ever-accelerating hype train everyone wants to ride. Movie lovers are obsessively tuned for new blockbuster releases and suffer a frustrating setback if they miss another episode of a favorite TV show. Video production companies are now busier than ever creating fresh content, with the pandemic-borne lockdowns forcing millions to immerse themselves deeper in the digital world and causing a greater demand for OTT media stuff that is fun to watch at home. Celebrities get mileage out of the boom, too, by stepping up their repertoire.

Intuit notifies customers of hacked TurboTax accounts

www.bleepingcomputer.com/news/security/intuit-notifies-customers-of-hacked-turbotax-accounts/ Financial software company Intuit has notified TurboTax customers that some of their personal and financial information was accessed by attackers following what looks like a series of account takeover attacks. In a breach notification letter sent to affected customers earlier this month, the company said that this was not a “systemic data breach of Intuit.” In account takeover attacks, cybercriminals gain access to their victims’ accounts using credentials stolen from other online services following past data breaches.

Five Arrested for Allegedly Laundering Nearly $1 Million from Business Email Compromise Fraud

www.justice.gov/usao-wdtx/pr/five-arrested-allegedly-laundering-nearly-1-million-business-email-compromise-fraud A federal grand jury indictment unsealed today charges five individuals for laundering nearly $1 million derived from a Business Email Compromise (BEC) scheme. FBI agents and local authorities arrested the defendants yesterday without incident. In a BEC scheme, scammers target businesses and individuals making wire transfer payments, especially those employees with access to company finances. The scammers trick the employees into wiring payments to bank accounts they believe belong to trusted partners but that are actually controlled by the fraudsters.

Interpol shuts down thousands of fake online pharmacies

www.bleepingcomputer.com/news/security/interpol-shuts-down-thousands-of-fake-online-pharmacies/ The Interpol (International Criminal Police Organisation) has taken down thousands of online marketplaces that posed as pharmacies and pushed dangerous fake and illicit drugs and medicine. This record number of illicit online pharmacies was shut down during Operation Pangea XIV, which targeted online sellers of counterfeit and illegal pharmaceuticals and medical devices.

Asiantuntijat näkevät Suomen hajanaisessa kyberpuolustuksessa Vastaamon kaltaisia aukkoja suurillekin iskuille

yle.fi/uutiset/3-11979008 Liikenne- ja viestintäministeriö julkaisi tällä viikolla kaksi ohjelmaa, joilla halutaan estää muun muassa Vastaamon kaltaisia tapauksia paremmin. Puolassa annettiin valheellinen ilmoitus radioaktiivisesta uhasta, kun ydinturvallisuusviranomaisten nettisivut hakkeroitiin. Hakkerit varastivat Euroopan lääkevirastosta asiakirjoja koronarokotteisiin liittyen. Nämä ovat pari esimerkkiä pelkästään tänä vuonna maailmalla tapahtuneista kyberiskuista. Vaikka kyberturvallisuudesta on puhuttu laajalti Suomessa viime vuosina, osa asiantuntijoista katsoo, että Suomen kyky varautua laaja-alaisiin kyberiskuihin on puutteellinen. Myös:

www.is.fi/digitoday/tietoturva/art-2000008050090.html

You might be interested in …

Daily NCSC-FI news followup 2021-08-31

Attracting flies with Honey(gain): Adversarial abuse of proxyware blog.talosintelligence.com/2021/08/proxyware-abuse.html With internet-sharing applications, or “proxyware,” users download software that allows them to share a percentage of their bandwidth with other internet users for a fee, with the companies that created this software acting as a go-between. As proxyware has grown in popularity, attackers have taken notice […]

Read More

Daily NCSC-FI news followup 2020-07-04

Hackers are trying to steal admin passwords from F5 BIG-IP devices www.zdnet.com/article/hackers-are-trying-to-steal-admin-passwords-from-f5-big-ip-devices/#ftag=RSSbaffb68 In an interview earlier today, [NCC group researcher] Warren told ZDNet the attacks are malicious in nature, and hackers are attempting to steal administrator passwords from the hacked devices. New Behave! extension warns of website port scans, local attacks www.bleepingcomputer.com/news/security/new-behave-extension-warns-of-website-port-scans-local-attacks/ A new browser […]

Read More

Daily NCSC-FI news followup 2019-06-14

Tietoturvayhtiö varoittaa: Merkit pahasta kyberiskusta näkyvissä www.is.fi/digitoday/tietoturva/art-2000006142010.html Tietoturvayhtiö Check Point yhtyy Microsoftin ja monien asiantuntijoiden kuoroon ja kehottaa vanhojen Windowsien käyttäjiä korjaamaan viimeistään nyt niin sanotun BlueKeep-haavoittuvuuden. The Brussels Times: Cyber-attack causes aircraft parts maker to close indefinitely www.brusselstimes.com/all-news/business/technology/58373/cyber-attack-causes-aircraft-parts-maker-to-close-indefinitely-asco/ According to Data News, Asco has shut down its base in Zaventem, as well as operations […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.