Daily NCSC-FI news followup 2021-07-21

Virtuaalivaluuttoihin liittyviä rahanpesuilmoituksia alkuvuonna yli 3, 4 miljoonaa kappaletta, kertoo KRP

www.is.fi/digitoday/tietoturva/art-2000008140592.html Selvittelykeskus kirjasi kesäkuun loppuun mennessä rahanpesurekisteriin ennätykselliset yli 3466000 epäilyttävää liiketoimea tai epäiltyä terrorismin rahoittamista koskevaa ilmoitusta. Näistä noin 26600 tuli muilta kuin virtuaalivaluuttapalveluihin liittyviltä tahoilta.

Suomi ja Singapore 6g-yhteistyöhön “Voimme saavuttaa molemminpuolista etua”

www.tivi.fi/uutiset/tv/45e16ffc-1ba1-411e-87be-edbcd797803f Oulun yliopiston koordinoima 6g-teknologian tutkimus- ja kehitysohjelma 6g Flagship ja Singapore ovat sopineet tekevänsä yhteistyötä 6g:n kehityksessä. Kumppanuus julkaistiin tiistaina 13. heinäkuuta Asia Tech x Singapore -teknologiatapahtumassa Singaporessa.

ANSSI (CERT-FR) releases indicators of compromise related to recent APT31 activity

www.cert.ssi.gouv.fr/ioc/CERTFR-2021-IOC-003/

Malware Targeting Pulse Secure Devices

us-cert.cisa.gov/ncas/current-activity/2021/07/21/malware-targeting-pulse-secure-devices CISA has analyzed 13 malware samples related to exploited Pulse Secure devices. CISA encourages users and administrators to review the following 13 malware analysis reports (MARs) for threat actor techniques, tactics, and procedures (TTPs) and indicators of compromise (IOCs)

NPM package steals Chrome passwords on Windows via recovery tool

www.bleepingcomputer.com/news/security/npm-package-steals-chrome-passwords-on-windows-via-recovery-tool/ The packages are: nodejs_net_server (over 1, 300 total downloads) and temptesttempfile (over 800).

Google Chrome now comes with up to 50x faster phishing detection

www.bleepingcomputer.com/news/security/google-chrome-now-comes-with-up-to-50x-faster-phishing-detection/ “On average, users will get their phishing classification results after 100 milliseconds, instead of 1.8 seconds. [..] This speed improvement makes a real difference in security – especially when it comes to stopping you from entering your password in a malicious site!”. Blog:

blog.chromium.org/2021/07/m92-faster-and-more-efficient-phishing-detection.html

Top prevalent malware (Formbook) with a thousand campaigns migrates to macOS (as XLoader)

research.checkpoint.com/2021/top-prevalent-malware-with-a-thousand-campaigns-migrates-to-macos/

MosaicLoader: password-stealing Windows malware is distributed via ads in search results

www.zdnet.com/article/this-password-stealing-windows-malware-is-distributed-via-ads-in-search-results/ MosaicLoader is delivered to victims via advertising. Links to the malware appear at the top of search results when people search for cracked versions of popular software. More details:

labs.bitdefender.com/blog/labs/debugging-mosaicloader-one-step-at-a-time

USA: DHS Announces New Cybersecurity Requirements for Critical Pipeline Owners and Operators

www.dhs.gov/news/2021/07/20/dhs-announces-new-cybersecurity-requirements-critical-pipeline-owners-and-operators This Security Directive requires owners and operators of TSA-designated critical pipelines to implement specific mitigation measures to protect against ransomware attacks and other known threats to information technology and operational technology systems, develop and implement a cybersecurity contingency and recovery plan, and conduct a cybersecurity architecture design review.

You might be interested in …

Daily NCSC-FI news followup 2020-05-12

Coronavirus cyber-attacks update: beware of the phish blog.checkpoint.com/2020/05/12/coronavirus-cyber-attacks-update-beware-of-the-phish/ While we all try to get used to the Covid-19 pandemics new normal in our work and home lives, this year has been a time of unprecedented opportunity for cyber-criminals. The global response to the pandemic, and our desire for the latest information about it, has supercharged […]

Read More

Daily NCSC-FI news followup 2020-08-17

Hackers Stole 1 Terabyte Of Data From Billion-Dollar U.S. Liquor Maker www.forbes.com/sites/leemathews/2020/08/17/brown-forman-hacked-1tb-data-stolen/ The REvil ransomware gang has struck again. This time the victim is Brown-Forman, the 150-year-old Kentucky-based company behind such brands as Jack Daniels, Finlandia vodka and Korbel champagne.. see also www.bleepingcomputer.com/news/security/us-spirits-and-wine-giant-hit-by-cyberattack-1tb-of-data-stolen/ Tea at the Ritz soured by credit card scammers www.bbc.co.uk/news/technology-53793922 Diners at […]

Read More

Daily NCSC-FI news followup 2020-11-22

Manchester United Shuts Down Systems To Fend Off A Sophisticated Cyber Attack www.forbes.com/sites/leemathews/2020/11/21/manchester-united-shuts-down-systems-to-fend-off-a-sophisticated-cyber-attack/?sh=2759d59b4b60 Its not often that you find cybersecurity headlines on sports websites, but you will this weekend. Manchester United, the third most valuable soccer team in the world, announced yesterday that its network had been breached by hackers.

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.