Daily NCSC-FI news followup 2021-08-09

Synology warns of malware infecting NAS devices with ransomware

www.bleepingcomputer.com/news/security/synology-warns-of-malware-infecting-nas-devices-with-ransomware/ Taiwan-based NAS maker Synology has warned customers that the StealthWorker botnet is targeting their network-attached storage devices in ongoing brute-force attacks that lead to ransomware infections. According to Synology’s PSIRT (Product Security Incident Response Team), Synology NAS devices compromised in these attacks are later used in further attempts to breach more Linux systems.

Beware! New Android Malware Hacks Thousands of Facebook Accounts

thehackernews.com/2021/08/beware-new-android-malware-hacks.html A new Android trojan has been found to compromise Facebook accounts of over 10, 000 users in at least 144 countries since March 2021 via fraudulent apps distributed through Google Play Store and other third-party app marketplaces. Dubbed “FlyTrap, ” the previously undocumented malware is believed to be part of a family of trojans that employ social engineering tricks to breach Facebook accounts as part of a session hijacking campaign orchestrated by malicious actors operating. out of Vietnam, according to a report published by Zimperium’s zLabs today and shared with The Hacker News. The malicious apps claim to offer Netflix and Google AdWords coupon codes and let users vote for their favorite teams and players at UEFA EURO 2020, which took place between 11 June and 11 July 2021, only under the condition that they log in with their Facebook accounts to cast their vote, or collect the coupon code or credits. Once a user signs into the account, the malware is equipped to steal the victim’s Facebook ID, location, email address, IP address, and the cookies and tokens associated with the Facebook account.

Yritysjohdolle oma kyberturvatutkinto

www.kauppalehti.fi/uutiset/yritysjohdolle-oma-kyberturvatutkinto/790449cf-5f66-498a-9c1d-5879441781c8 Lokakuussa käynnistyy yritysjohdolle suunnattu kyberturvakoulutus. Koulutuksen tavoitteena on opettaa yritysjohto ymmärtämään organisaation nykyinen kyberturvavalmius ja kuinka kyberuhkat minimoidaan tulevaisuudessa. Osana koulutusohjelmaa jokainen osallistuja tekee kyberriskianalyysin ja laatii yritykselle kyberstrategian. Koulutuksen aikana parannetaan henkilön muita esimiestaitoja sekä luodaan edellytykset kyberjohtamisen kehittämiselle. Samalla opiskelija suorittaa Johtamisen ja yritysjohtamisen erikoisammattitutkinnon. Lokakuussa käynnistyvän koulutuksen toteuttavat Management Institute of Finland MIF ja Cyberwatch Finland. Koulutus kestää noin vuoden ja kaksi kuukautta.

Dutch government to stop issuing TLS certs because of ever-complicated standards

therecord.media/dutch-government-to-stop-issuing-tls-certs-because-of-ever-complicated-standards/ The Dutch government, the last EU country that is still running its own certificate authority (CA), announced plans last week to stop issuing new TLS certificates starting December 2021. At a technical level, Dutch officials said they do not plan to renew a root certificate for the PKIoverheid CA program once it expires next year, on December 6, 2022.

Security tools showcased at Black Hat USA 2021

therecord.media/security-tools-showcased-at-black-hat-usa-2021/ While everyone associates the Black Hat security conference with high-profile keynotes and state-of-the-art cybersecurity research, ever since the 2017 edition, the conference has also been the place where the cybersecurity community has also announced and released security tools part of the lesser-known “Arsenal” track.

You might be interested in …

Daily NCSC-FI news followup 2021-10-26

FBI: Ranzy Locker ransomware hit at least 30 US companies this year www.bleepingcomputer.com/news/security/fbi-ranzy-locker-ransomware-hit-at-least-30-us-companies-this-year/ The FBI said on Monday that Ranzy Locker ransomware operators had compromised at least 30 US companies this year from various industry sectors. “The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, […]

Read More

Daily NCSC-FI news followup 2020-01-20

Citrix Patches CVE-2019-19781 Flaw in Citrix ADC 11.1 and 12.0 www.bleepingcomputer.com/news/security/citrix-patches-cve-2019-19781-flaw-in-citrix-adc-111-and-120/ Citrix released permanent fixes for the actively exploited CVE-2019-19781 vulnerability impacting Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances and allowing unauthenticated attackers to perform arbitrary code execution.. Besides releasing these permanent fixes for the CVE-2019-19781 flaw, Citrix also says […]

Read More

Daily NCSC-FI news followup 2021-11-02

FBI says ransomware gangs are using future merger and acquisition info to pressure victims therecord.media/fbi-says-ransomware-gangs-are-using-future-merger-and-acquisition-info-to-pressure-victims/ The US Federal Bureau of Investigation says that several ransomware gangs have used financial information, such as stock valuations and upcoming mergers and acquisitions, to put pressure on victims and force them into paying large ransom demands. “During the initial […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.