Home page
Services
Licences and fees
Surveys and statistics
Regulations, decisions and guidelines
FICORA
Contact details

Finnish Communications Regulatory Authority (FICORA)
Itämerenkatu 3 A
P.O. Box 313
FI-00181 HELSINKI

Switchboard +358 9 69 661

Television fees
Customer service +358 9 613 161

Customer service of Fi-domain names +358 9 6966 700

About cookies

 Home page > FICORA > Press releases > Year 2009 > FICORA's CERT-FI information security review 3/2009: Data-stealing malware also common in Finland

22.10.2009

FICORA's CERT-FI information security review 3/2009: Data-stealing malware also common in Finland

Data-stealing malware have become common in Finland, too. From the beginning of 2009 till the end of August, CERT-FI has compiled statistics on 1,800 cases where a data-stealing malware has forwarded user information to third parties.

The malware record keyboard activity and network traffic. In particular, they aim at discovering usernames and passwords used in services. The majority of the usernames and passwords fallen into wrong hands are associated with various social networking sites.

Malware is mostly spread via e-mail and websites.

Widespread vulnerabilities patched
The objective of vulnerability coordination is to have manufacturers test the products they already have in the market and patch eventual vulnerabilities before the products are released.

In August, CERT-FI gave out the results of a coordination project related to XML libraries. In September, the unit released the results of a long-term vulnerability coordination project related to the server implementations of the TCP protocol.

XML libraries are used for the handling of information and documents in various information systems. On the other hand, the TCP is a network protocol used for data transmission in most network applications.

CERT-FI coordinates the release of vulnerabilities together with the Japanese JPCERT/CC and CERT/CC from the United States. Owing to good cooperation between software manufacturers and CERT-Fi, the coordination projects were successful.

CERT-FI publishes a quarterly overview of information security, which deals with the most significant threats to information security. The objective of the reviews is to support companies and organisations in their attempts to improve the management of information security risks. The CERT-FI information security review 3/2009 is available in Finnish on the CERT-FI website at www.cert.fi. An English version will be published soon.


Further information:
CERT-FI, Duty Officer, tel. +358 9 6966 510
Ari Husa, Information Security Adviser, tel. +358 9 6966 842, +358 40 722 3130
Erka Koivunen, Head of CERT-FI, tel. +358 50 309 8094

Page updated 22.10.2009   Print version Print version