National Cyber Security Centre Finland | Traficom
Skip to main content
National Cyber Security Center
Report incidents
Report incidents
Report incidents

National Cyber Security Centre Finland

News

  • Cyber weather for January 2026

    , updated at 14:41

    January was largely rainy, with cyber phenomena continuing at a typical level. The growing use of AI assistants in organisations — and the related information security and cybersecurity challenges — generated discussion during the month. The first Cyber weather publication of the year also introduced a new look.

  • The National Cyber Security Centre Finland’s weekly review – 1/2023

    , updated at 16:08

    This is the weekly review of the National Cyber Security Centre Finland (NCSC-FI) (reporting period 30 December 2022–5 January 2023). The purpose of the weekly review is to share information about current cyber phenomena. The weekly review is intended for a wide audience, from cyber security specialists to regular citizens.

  • The National Cyber Security Centre Finland’s weekly review – 52/2022

    , updated at 16:14

    This is the weekly review of the National Cyber Security Centre Finland (NCSC-FI) (reporting period 23–29 December 2022). The purpose of the weekly review is to share information about current cyber phenomena. The weekly review is intended for a wide audience, from cyber security specialists to regular citizens.

View all news

Vulnerabilities

  • Finnish users' passwords in clear text revealed

    , updated at 14:07

    The website liiketoimintasuunnitelma.com of the Finnish Enterprise Agency in Helsinki, Helsingin Uusyrityskeskus, has been a target for data break-in. In this data break-in around 130,000 users' usernames and passwords in clear text were revealed. It is possible that other confidential information has also been revealed. This data leak is the third largest in Finland in terms of the number of user accounts.

  • Vulnerability in Exim email server exploited in data breaches

    , updated at 10:44

    A vulnerability has been discovered in Exim email server, which allows attackers to execute commands in the vulnerable system. The NCSC-FI has received several reports on data breaches in Finland where attackers have penetrated systems using the Exim vulnerability. The vulnerability is being actively exploited in other countries, too. In the incidents reported to the NCSC-FI, the attacker has hacked cPanel systems exploiting the vulnerability in Exim email server bundled with the cPanel software.

  • Vulnerabilities in Microsoft Remote Desktop app exploited in data breaches

    , updated at 13:00

    Several critical vulnerabilities have been discovered in Remote Desktop Services (RDS, Remote Desktop app) in the Microsoft Windows operating system. These 'wormable' vulnerabilities can be exploited by malware to propagate itself from one vulnerable computer to another automatically. The NCSC-FI has received reports about these vulnerabilities being exploited both in Finland and abroad. There are software updates addressing the vulnerabilities and it is critical to install these updates immediately.

View all vulnerabilities

Everyday information security

Not everything online is what it seems. Learn to recognize common scams and protect your personal information.

Information and guidance