US indicts Russian GRU ‘Sandworm’ hackers for NotPetya, worldwide attacks

Posted by & filed under Security News.

The U.S. Department of Justice has charged six Russian intelligence operatives for hacking operations related to the Pyeongchang Winter Olympics, the 2017 French elections, and the notorious NotPetya ransomware attack. Believed to be part of the elite Russian hacking group known as “Sandworm”, the indictment states that all six individuals are part of the Russian Main… Read more »

APT VS ISPs (Advanced Persistent Threat VS Internet Service Providers)

Posted by & filed under Security News.

Why ISPs? 1. Protecting ISPs is today an high priority from a nation’s national security perspective. 2. Internal research activities have shown that all the ISP-related intrusions that are attributable to organized adversaries (or APT) are aimed at digital espionage operations towards third parties or at  accessing customer data / database. 3. In 2019 there… Read more »

Office 365 adds protection against downgrade and MITM attacks

Posted by & filed under Security News.

Microsoft is working on adding SMTP MTA Strict Transport Security (MTA-STS) support to Exchange Online to ensure Office 365 customers’ email communication security and integrity. Once MTA-STS is available in Office 365 Exchange Online, emails sent by users via Exchange Online will only one delivered using connections with both authentication and encryption, protecting against both email interception… Read more »

Norway says Russian hackers were behind August Parliament attack

Posted by & filed under Security News.

Norway’s Minister of Foreign Affairs Ine Eriksen Søreide today said that Russia is behind the August 2020 cyber-attack on the Norwegian Parliament (Stortinget). “On 24 August, the Storting announced a data breach in their e-mail systems,” Søreide said in a press release published earlier today after a briefing that also included Minister of Defense Frank… Read more »

Επιθέσεις κατά πελατών Κυπριακών Τραπεζικών Ιδρυμάτων

Posted by & filed under Security News, Ειδοποιήσεις.

Αρχή Ψηφιακής Ασφάλειας – Εθνική Ομάδα Αντιμετώπισης Ηλεκτρονικών Επιθέσεων: Από την Τετάρτη 30/09/2020 οι πελάτες Τραπεζικών Ιδρυμάτων της Κύπρου δέχονται επιθέσεις Ηλεκτρονικού Ψαρέματος (Phishing). Οι πελάτες (χρήστες) των τραπεζικών ιδρυμάτων προτρέπονται μέσω κακόβουλων ηλεκτρονικών μηνυμάτων, κυρίως ηλεκτρονικού ταχυδρομείου στα οποία υπάρχουν λογότυπα και διακριτικά τραπεζικών ιδρυμάτων, να ακολουθήσουν κακόβουλο σύνδεσμο που δήθεν ανήκει στα τραπεζικά… Read more »