Information security now!
This week we’ll cover topics such as the ‘Be vigilant on the web!’ campaign and we’ve collected snippets from the Assembly event. We also look at current scams.
Topics covered in this week’s review
The ‘Be vigilant on the web!’ campaign gives guidance on how to spot scams
The number of scans is increasing every year. This is professional international crime, where in Finland alone we are talking about at least tens of millions of euros stolen from citizens and organisations. In addition to money, criminals are also after people's personal, private and sensitive information.
A joint campaign launched on Monday 19 August by Traficom's Cyber Security Centre, the police and the Digital and Population Data Services Agency provides tips on how to recognise scams and protect your data. We also tell you what to do if you've been scammed.
Threat analysis and threat modelling for cyber security risk management
Threat analysis and threat modelling are key tools for managing cyber security risks. The NIS2 Directive also obliges many operators to manage risk in their own organisations. Threat analysis helps to identify and assess the vulnerabilities of communication networks and information systems and the likelihood of their exploitation. These tools allow organisations to plan effective management measures that improve security and ensure business continuity.
Cyber security strongly present at the Assembly event in Helsinki from 1 to 4 August
Assembly, the largest digital art and gaming event in Finland, attracted more than 20,000 participants to the Helsinki Exhibition Centre in early August. For the first time, Traficom's Cyber Security Centre and the police participated in the event with a joint stand. On the police side, the Cyber Crime Exit project of the National Bureau of Investigation and the Gaming Police from Police University College and the Ostrobothnia Police Department were present.
The theme of the joint stand of the authorities was "The grass is greener on this side of the fence". This theme aimed to remind young people about information security, ethical hacking and the boundaries between legal and illegal activities. It also aimed to share information about educational opportunities in cyber security and to encourage people to apply for jobs in the field. The stand also provided an opportunity to try out a security game produced by the EU Cyber Citizen project and to test their skills in a CTF game produced by the young hacker community Testausserveri ry.
During the four days of the event, around 2,000 visitors came to the joint standing the Expo area. The stand received EU funding from the National Coordination Centre (NCC-FI).
Recently reported scams
In this summary, we provide information about scams reported to NCSC-FI during the past week.
WHAT TO DO IF YOU GET SCAMMED
- Immediately contact your bank if you have made a payment based on a scam or a criminal has gained access to your online banking codes or got hold of your payment card information.
- File a police report. You can file a police report online. (External link)
- You can also report the incident to the NCSC-FI. (External link)
- Instructions for victims of data leaks (External link)
Learn how to detect and protect yourself against online scams
Vulnerabilities
CVE: CVE-2024-28000
CVSS: 9.8
What: Critical vulnerability in LiteSpeed Cache WordPress plug-in (External link)
Product: LiteSpeed Cache WordPress plugin
Repair: Update product
ABOUT THE WEEKLY REVIEW
This is the weekly review of the National Cyber Security Centre Finland (reporting period 16–22 August 2024). The purpose of the weekly review is to share information about current cyber phenomena. The weekly review is intended for a wide audience, from cyber security specialists to regular citizens.