Tag Archive for: Norway’s

Ivanti Zero-Day Exploit Disrupts Norway’s Government Services

/in


A zero-day authentication bypass vulnerability in Ivanti software was exploited to carry out an attack on the Norwegian Ministries Security and Service Organization.

The attack affected communications networks at 12 Norwegian government ministries, according to the original statement, preventing employees in those departments from accessing mobile services and email.

The government noted that the Prime Minister’s office, the Ministry of Defense, the Ministry of Justice and Emergency Preparedness, and the Ministry of Foreign Affairs were not impacted.

What Was the Ivanti Security Vulnerability?

According to a statement posted by the Norwegian Security Authority, the flaw is a remote unauthenticated API access vulnerability (CVE-2023-35078) in the Ivanti Endpoint Manager.

The bug would allow a remote attacker to obtain information, add an administrative account, and change the device’s configuration, due to an authentication bypass. The vulnerability affects several software versions, including Version 11.4 and older; versions and releases from 11.10 are also at risk.

A statement from the US Cybersecurity and Infrastructure Security Agency (CISA) said the vulnerability allows unauthenticated access to specific API paths, which a cyberattacker can use to access personally identifiable information (PII) such as names, phone numbers, and other mobile device details for users on a vulnerable system.

Tenable senior research engineer Satnam Narang said in a blog post that an attacker could potentially utilize the unrestricted API paths to modify a server’s configuration file, which could result in the creation of an administrative account for the endpoint manager’s management interface, known as EPMM (short for Endpoint Manager Mobile), that can then be used to make further changes to a vulnerable system.

According to a post by Ivanti, the company had received information from a credible source indicating exploitation has occurred. A follow-up blog by Ivanti said that upon learning of the vulnerability, “we immediately mobilized resources to fix the problem and have a patch available now for supported versions of the product. For customers on an earlier version, we have an RPM script to assist…

Source…

Norway’s BankID Turns to OneSpan for Mobile Security

/in


BankID is upgrading its app security through a new partnership with OneSpan. The latter will be supplying BankID with its Mobile Security Suite, which monitors financial transactions to help spot potentially fraudulent activity.

Norway's BankID Turns to OneSpan for Mobile Security

The BankID mobile app is a digital ID that is widely used throughout Norway. The platform has the backing of the Norwegian government and all of the country’s major banks, which means that the digital ID can be used as proof of identity when gaining access to government services, and to authorize financial transactions in a range of different settings. It can also be used to access financial apps, and to generate legally binding e-signatures on official documents.

OneSpan’s Security Suite will analyze those transactions to make sure that the business being conducted is legitimate. The Suite comes with OneSpan’s Application Shielding tech, and will be supplemented with the company’s Cloud Authentication solution, which offers additional support for face and fingerprint biometrics. BankID is hoping that the features will enable a better user experience as it looks to expand into other regions.

“Innovation, flexibility and user convenience are part of Norway’s DNA as one of the most digitized countries in the world,” said BankID Business Development Manager Jan Bjerved. “OneSpan’s strong expertise in the financial sector and its extensive mobile security capabilities have been important in this large modernization project.”

“We support their vision and execution of a secure digital identity,” added OneSpan Interim President and CEO Steven Worth. “OneSpan’s digital identity and anti-fraud solutions enable financial services providers to deliver secure and trusted experiences while minimizing friction, mitigating fraud, and reducing operational costs.”

The news comes shortly after Entersekt announced that it would be offering support for the BankID platform to allow people to use their IDs to verify their identities in web browsers and mobile apps. OneSpan, meanwhile, has previously delivered its Mobile Security Suite to multiple financial institutions. Belfius Bank, Sony Bank, and Avaloq are some of the customers that the…

Source…

Cyber-espionage: Norway’s intelligence chief accuses China of stealing military secrets – International Business Times UK

/in

International Business Times UK

Cyber-espionage: Norway's intelligence chief accuses China of stealing military secrets
International Business Times UK
General Lieutenant Morten Haga Lunde, chief of Norwegian intelligence service E-tjenesten, has publicly accused hackers affiliated with the Chinese government of conducting cyber-espionage against Norway-based firms to steal sensitive data and military …

Espionage China – read more

Norway’s military computers targeted in serious attack – The Register

/in

said only one computer containing non-classified information was compromised. Among the recipients were high-ranking military personnel. “The army is regularly the target of cyber and virus attacks, but not as extensive as this,” AFP quoted INI spokeswoman …
Read more