Daily NCSC-FI news followup 2021-07-10

Cyber-attack disrupts Irans national railway system

therecord.media/cyber-attack-disrupts-irans-national-railway-system/ Train services were canceled or delayed in Iran after a cyberattack crippled the national railway companys computer systems on Friday morning. The exact nature of the disruption is unclear, but the outage affected both passenger and cargo transportation services. According to multiple local media outlets, the system used for managing train schedules along with ticketing services went down on Friday morning, local time.

Mint Mobile hit by a data breach after numbers ported, data accessed

www.bleepingcomputer.com/news/security/mint-mobile-hit-by-a-data-breach-after-numbers-ported-data-accessed/ Mint Mobile has disclosed a data breach after an unauthorized person gained access to subscribers’ account information and ported phone numbers to another carrier. According to the data breach notification email sent to affected subscribers this weekend, between June 8th and June 10th, a threat actor ported the phone numbers for a “small” number of Mint Mobile subscribers to another carrier without uthorization.

These three simple tips will keep your iPhone safe from hackers

www.zdnet.com/article/these-three-simple-tips-will-keep-your-iphone-safe-from-hackers/ How hard is it to keep your iPhone — and the data that’s on it — safe from hackers and other bad folks out there?. Not hard at all. While there’s no doubt that security is a massive subject, and you could devote your life to it, it’s not hard to get to a point where your iPhone is more secure than 99 percent of other iPhones out there.

Tapahtumahuijarit löysivät Suomen: Näin tunnistat vedätyksen

www.is.fi/digitoday/tietoturva/art-2000008113726.html HEVISAURUS-bändi joutui vastikään tappelemaan Facebook-huijarien kanssa. Aitoa tapahtumailmoitusta keikasta kopioitiin, ja huijarit levittivät bändin nimissä haitallisia verkkolinkkejä. Ilmiö on Suomessa verrattain tuore. Koronan alkuvaiheessa näitä oli paljon. Viime kesäkuussa, kun alkoi olla näitä virtuaalikonsertteja, niin silloin tämä ilmiö oikeastaan alkoi, Traficomin alaisen Kyberturvallisuuskeskuksen johtava asiantuntija Jussi Eronen taustoittaa Suomen tilannetta.

Feds indict The Bull for allegedly selling insider stock info on the dark web

arstechnica.com/gadgets/2021/07/feds-indict-the-bull-for-allegedly-selling-insider-stock-info-on-the-dark-web/ Federal prosecutors and attorneys on Friday charged a man with securities fraud for allegedly selling insider stock information on the dark web site AlphaBay. The defendant also sold information through multiple criminal marketplaces and through an encrypted messaging platform. In an indictment filed in federal court in the Southern District of New York, Department of Justice prosecutors alleged that Apostolos Trovias, 30, of Athens, Greece, created an account on AlphaBay in 2016 and used it to advertise and sell stock tips until the dark web criminal marketplace was shut down the following year.

Biden asks Putin to crack down on Russian-based ransomware gangs

www.bleepingcomputer.com/news/security/biden-asks-putin-to-crack-down-on-russian-based-ransomware-gangs/ President Biden asked Russian President Putin during a phone call today to disrupt ransomware groups operating within Russia’s borders behind the ongoing wave of attacks impacting the United States and other countries worldwide. “President Biden underscored the need for Russia to take action to disrupt ransomware groups operating in Russia and emphasized that he is committed to continued engagement on the broader threat posed by ransomware,” a White House statement reads.

You might be interested in …

Daily NCSC-FI news followup 2021-05-27

Updates on Chinese APT Actors Compromising Pulse Secure VPN Devices www.fireeye.com/blog/threat-research/2021/05/updates-on-chinese-apt-compromising-pulse-secure-vpn-devices.html In April, Mandiant published information about Pulse Secure devices, in this blog post they update the findings and provide recommendations to defenders APT hackers breached US local govt by exploiting Fortinet bugs www.bleepingcomputer.com/news/security/fbi-apt-hackers-breached-us-local-govt-by-exploiting-fortinet-bugs/ FBI: As of at least May 2021, an APT actor group […]

Read More

Daily NCSC-FI news followup 2019-07-13

Brazil is at the forefront of a new type of router attack www.zdnet.com/article/brazil-is-at-the-forefront-of-a-new-type-of-router-attack/ On these sites, malicious ads (malvertising) run special code inside users’ browsers to search and detect the IP address of a home router, the router’s model. When they detect the router’s IP and model, the malicious ads then use a list of […]

Read More

Daily NCSC-FI news followup 2021-05-07

Connected Places: new NCSC security principles for ‘Smart Cities’ www.ncsc.gov.uk/blog-post/connected-places-new-ncsc-security-principles-for-smart-cities NCSC Technical Director warns that ‘Connected Places’ will likely be a target for malicious actors. It wasnt a teenager accidentally taking control of nuclear command and control, or a magic box that can decrypt anything stolen and used by shady Bond villains intent on taking […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.