Synology warns of malware infecting NAS devices with ransomware
www.bleepingcomputer.com/news/security/synology-warns-of-malware-infecting-nas-devices-with-ransomware/ Taiwan-based NAS maker Synology has warned customers that the StealthWorker botnet is targeting their network-attached storage devices in ongoing brute-force attacks that lead to ransomware infections. According to Synology’s PSIRT (Product Security Incident Response Team), Synology NAS devices compromised in these attacks are later used in further attempts to breach more Linux systems.
Beware! New Android Malware Hacks Thousands of Facebook Accounts
thehackernews.com/2021/08/beware-new-android-malware-hacks.html A new Android trojan has been found to compromise Facebook accounts of over 10, 000 users in at least 144 countries since March 2021 via fraudulent apps distributed through Google Play Store and other third-party app marketplaces. Dubbed “FlyTrap, ” the previously undocumented malware is believed to be part of a family of trojans that employ social engineering tricks to breach Facebook accounts as part of a session hijacking campaign orchestrated by malicious actors operating. out of Vietnam, according to a report published by Zimperium’s zLabs today and shared with The Hacker News. The malicious apps claim to offer Netflix and Google AdWords coupon codes and let users vote for their favorite teams and players at UEFA EURO 2020, which took place between 11 June and 11 July 2021, only under the condition that they log in with their Facebook accounts to cast their vote, or collect the coupon code or credits. Once a user signs into the account, the malware is equipped to steal the victim’s Facebook ID, location, email address, IP address, and the cookies and tokens associated with the Facebook account.
Yritysjohdolle oma kyberturvatutkinto
www.kauppalehti.fi/uutiset/yritysjohdolle-oma-kyberturvatutkinto/790449cf-5f66-498a-9c1d-5879441781c8 Lokakuussa käynnistyy yritysjohdolle suunnattu kyberturvakoulutus. Koulutuksen tavoitteena on opettaa yritysjohto ymmärtämään organisaation nykyinen kyberturvavalmius ja kuinka kyberuhkat minimoidaan tulevaisuudessa. Osana koulutusohjelmaa jokainen osallistuja tekee kyberriskianalyysin ja laatii yritykselle kyberstrategian. Koulutuksen aikana parannetaan henkilön muita esimiestaitoja sekä luodaan edellytykset kyberjohtamisen kehittämiselle. Samalla opiskelija suorittaa Johtamisen ja yritysjohtamisen erikoisammattitutkinnon. Lokakuussa käynnistyvän koulutuksen toteuttavat Management Institute of Finland MIF ja Cyberwatch Finland. Koulutus kestää noin vuoden ja kaksi kuukautta.
Dutch government to stop issuing TLS certs because of ever-complicated standards
therecord.media/dutch-government-to-stop-issuing-tls-certs-because-of-ever-complicated-standards/ The Dutch government, the last EU country that is still running its own certificate authority (CA), announced plans last week to stop issuing new TLS certificates starting December 2021. At a technical level, Dutch officials said they do not plan to renew a root certificate for the PKIoverheid CA program once it expires next year, on December 6, 2022.
Security tools showcased at Black Hat USA 2021
therecord.media/security-tools-showcased-at-black-hat-usa-2021/ While everyone associates the Black Hat security conference with high-profile keynotes and state-of-the-art cybersecurity research, ever since the 2017 edition, the conference has also been the place where the cybersecurity community has also announced and released security tools part of the lesser-known “Arsenal” track.