The National Cyber Security Centre Finland’s weekly review – 29/2023

Topics covered in this week’s review 

• Protect your devices from USB-based malware 
• We share the latest tips for ensuring the security of your mobile phone 
• Cyber criminals never rest – Tips for a secure summer 
• Cyber weather in June was rainy on many fronts

Protect your devices from USB-based malware

Malicious USB devices have re-entered the world of cyber crime as a method of spreading malware. Both ransomware attacks and cyber espionage operators utilise USB devices to access organisations’ systems. But how does a USB memory become contaminated, and how can you protect your devices from malware?

Malware can sneak into your USB memory on a conference trip

Your USB memory can become infected when you least expect it. Check Point’s information security researchers have reported an incident where a health care expert returned home from a conference with a USB infected with a malicious software called HopperTick. The memory was infected when the expert shared their presentation with other conference participants. How was this possible?

Another participant’s laptop had been infected by the same malware. The malware infected every single USB memory connected to the laptop, including the USB used to share the presentation. After returning from the trip, the expert connected the infected USB memory to their organisation’s computer, from which the malware had access to the organisation’s systems.

Remember to protect your devices against old-school threats

The chain of infection of USB-based malware can be unexpected and give the attacker access to new organisations. Can you recognise malicious USB devices in your organisation? In addition to technical protection, it is recommended to increase one’s awareness of the risks related to unfamiliar USB devices. You should never connect conference gifts or other people’s USB devices to your organisation’s computers due to the malware risk.

Make sure to protect your USB memories, because they may be unexpectedly infected on a conference trip or when visiting another organisation. Do you know who to contact in your organisation if you find a USB device suspicious? Does your organisation have a policy for using unfamiliar USB devices? It is important to protect your devices against USB-based malware because malicious USB devices continue to be a common method of attack.

Check our tips for keeping your information secure both at home and at work

Read Check Point’s article about the USB malware incident (External link)

We share the latest tips for ensuring the security of your mobile phone

Mobile phones have become an integral part of our everyday lives and they contain large amounts of sensitive information, the misuse of which could have a major impact on our privacy and security. Mobile phones are also an attractive target for criminals who aim to benefit from the different functions of mobile devices. Every week, the NCSC-FI receives reports of incidents where mobile phones have been used for criminal purposes. Such incidents include scam and phishing messages.

Read more

Cyber criminals never rest – Tips for a secure summer

You cannot avoid phishing emails and messages even on holiday. Cyber criminals never rest, which is why you should stick to your information security principles also during the holiday season. Our top tip is to always use multi-factor authentication. It protects you even if your password is compromised as a result of a data leak, for example. You should consider carefully what information to disclose online and when to post your holiday snaps. We have compiled all our tips for ensuring information security during the holiday season in one article.

Read more

Cyber weather in June was rainy on many fronts

Our Cyber Weather report for June was released last week and it contained a lot of updated statistical data. The report included an industry-specific situational picture of cyber security in the second quarter of 2023. This month, the section on development in the information security sector contained plenty of interesting news. For example, we reported about a recent judgement of the Court of Justice of the European Union, according to which everyone has the right to know the time of and reason for enquiries concerning their personal data, introduced the EU’s proposal for artificial intelligence regulation, and discussed the EU’s digital services regulation.

Read more (External link)

Vulnerabilities

CVE: CVE-2023-3519
CVSS: 9.8
What: Critical vulnerability in Citrix Netscaler Gateway and ADC software
Product: Organisation-administered Citrix Netscaler ADC and Gateway software. Citrix-managed cloud services or Citrix-managed Adaptive Authentication services are not vulnerable. Netscaler ADC and Gateway software were previously called Citrix ADC and Gateway.
Fix: Citrix urges the administrators of these products to update the software to the latest software versions without delay. Instances of the vulnerability being exploited have already been reported.

More information about the vulnerability (in Finnish) (External link)