Daily NCSC-FI news followup 2021-06-24

FIN7 manager sentenced to 7 years for role in global hacking scheme

therecord.media/fin7-manager-sentenced-to-7-years-for-role-in-global-hacking-scheme/ A key member of the international cybercrime group FIN7 was sentenced to 84 months in prison and ordered to pay $2.5 million in restitution

Hacker wipes database of NewsBlur RSS reader

therecord.media/hacker-wipes-database-of-newsblur-rss-reader/ NewsBlur was in process of a database migration when MongoDB was left exposed to the internet for three hours before the attacker found and wiped the database, demanding ransom payment for the contents. The company was able to manually restore the original data they had on hand by chance.

Healthcare giant Grupo Fleury likely hit by REvil/Sodinokibi ransomware attack

www.bleepingcomputer.com/news/security/healthcare-giant-grupo-fleury-hit-by-revil-ransomware-attack/ Grupo Fleury, a Brazilian medical diagnostic company, has suffered a ransomware attack that has disrupted business operations after the company took its systems offline. Cyber criminals are demanding $5 million in ransom for decryptor and for not leaking alledgedly stolen files

WD My Book NAS devices are being remotely wiped clean worldwide

www.bleepingcomputer.com/news/security/wd-my-book-nas-devices-are-being-remotely-wiped-clean-worldwide/ Cloud connected My Book NAS devices have been reset remotely for currently unknown reason

DreamHost Mistake Leaks 815 Million-Record Trove Full Of Website Owner Data

www.forbes.com/sites/thomasbrewster/2021/06/24/one-of-the-biggest-hosting-companies-in-the-world-leaks-815-million-records-of-website-data/

A supply-chain breach: Taking over an Atlassian account

research.checkpoint.com/2021/a-supply-chain-breach-taking-over-an-atlassian-account/ Researchers on disclosed critical flaws in the Atlassian project and software development platform that could be exploited to take over an account and control some connected apps

NFC Flaws Let Researchers Hack ATMs by Waving a Phone

www.wired.com/story/atm-hack-nfc-bugs-point-of-sale/ Flaws in card reader technology let a security firm consultant wreak havoc with point-of-sale systems

Brave launches its own, privacyfocused search engine

brave.com/brave-search-beta/ The Brave Search engine takes on Google, promising to let users surf the web without leaving a trace

Route53 domain name service vulnerability let researchers hijack nameservers hosted on AWS

www.darkreading.com/vulnerabilities—threats/new-dns-name-server-hijack-attack-exposes-businesses-government-agencies/d/d-id/1341377 Researchers found a “novel” class of DNS vulnerabilities in AWS Route53 and other DNS-as-a-service offerings that leak sensitive information on corporate and government customers, with one simple registration step

EU announces joint cyber-unit to respond to large-scale security incidents

therecord.media/eu-announces-joint-cyber-unit-to-respond-to-large-scale-security-incidents/ The new unit will operate separately from current EU agencies. It will only intervene in the case of a widespread security incident to coordinate resources, communications, and joint response plans between existing EU bodies and state governments if the incident impacts more than one state

Windows 11 will let you run Android apps directly on the desktop

www.bleepingcomputer.com/news/microsoft/windows-11-will-let-you-run-android-apps-directly-on-the-desktop/ Microsoft has announced that Android apps are coming to Windows 11 and can be run just like any other application installed in the operating system.

Complicated Active Directory setups are undermining security

blog.malwarebytes.com/reports/2021/06/complicated-active-directory-setups-are-undermining-security/ SpecterOps researchers found that almost every Active Directory installation had a misconfiguration issue. The researchers have written a paper to raise awareness.

5G Cyber Security Hack 2021 – 130 professional white hat hackers from 30 countries hacked 5G technology in Finland

www.epressi.com/tiedotteet/teknologia/130-professional-white-hat-hackers-from-30-countries-hacked-5g-technology-in-finland.html The global virtual hackathon attracted 130 top-level cyber security experts, from 30 different countries. The goal of the event was to develop and ensure the operations and cyber security of 5G networks and 5G-enabled services.

Schneier on Security – Norwegian Consumer Council – Time to ban surveillance-based advertising

www.schneier.com/blog/archives/2021/06/banning-surveillance-based-advertising.html Norwegian Consumer Concil published a report about privacy and data protection challenges (and much more) and possible ways forward for advertising-funded digital content. Link to report:

www.forbrukerradet.no/wp-content/uploads/2021/06/20210622-final-report-time-to-ban-surveillance-based-advertising.pdf

US seizes 33 Iranian state-run media sites accused of election disinformation

arstechnica.com/tech-policy/2021/06/us-seizes-33-iranian-state-run-media-sites-accused-of-election-disinformation/ US government said it seized 33 websites run by a branch of the Iranian government that spread disinformation in the US before the 2020 presidential election. The US also seized three websites that it said were operated by an Iraqi terrorist organization

BIOSConnect code execution bugs impact millions of Dell devices

www.zdnet.com/article/biosconnect-code-execution-bugs-impact-millions-of-dell-devices/ A critical bug chain allows attackers to impersonate the vendor and impact code at the root level

Anti-Virus pioneer John McAfee dies in Spanish jail

thehackernews.com/2021/06/antivirus-pioneer-john-mcafee-found.html Controversial mogul and antivirus pioneer John McAfee on Wednesday died by suicide in a jail cell in Barcelona, hours after reports that he would be extradited to face federal charges in the U.S.

You might be interested in …

Daily NCSC-FI news followup 2020-05-30

List of well-known web sites that port scan their visitors www.bleepingcomputer.com/news/security/list-of-well-known-web-sites-that-port-scan-their-visitors/ Last weekend, news heavily circulated that eBay.com was port scanning visitors’ computers when they browsed their site. To see what other sites may be using this script, BleepingComputer reached out to DomainTools, a cybersecurity company specializing in web domain and DNS threat intelligence. Of […]

Read More

Daily NCSC-FI news followup 2019-11-21

The Cyber-Physical Security of the Power Grid smartgrid.ieee.org/newsletters/november-2019/the-cyber-physical-security-of-the-power-grid Since critical infrastructures play a crucial role in our everyday life, its security has to be considered as one of the most important challenges in this modern era.. Physical and cyber security of smart power grids is very difficult due to their complexity and inhomogeneity. A huge […]

Read More

Daily NCSC-FI news followup 2021-01-12

Going Rogue a Mastermind Behind Android Malware Returns with a New RAT blog.checkpoint.com/2021/01/12/going-rogue-a-mastermind-behind-android-malware-returns-with-a-new-rat/ Now more than ever, we rely on our smartphones to keep in touch with our work, our families and the world around us. There are over 3.5 billion smartphone users worldwide, and it is estimated that over 85% of those devices around […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.