Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

CERT-SE söker IT-säkerhetsspecialist, teknikinformatör, IT-säkerhetsanalytiker och personal till vår nya Desk.
Sista dag för ansökan är 15 oktober.

Uppdaterad | Publicerad - Veckobrev

CERT-SE:s veckobrev v.34

Trevlig helg önskar CERT-SE

Nyheter i veckan

New multi platform malware/adware spreading via Facebook Messenger
https://securelist.com/new-multi-platform-malwareadware-spreading-via-facebook-messenger/81590/

Is Malware Hiding in Your Resume? Vulnerability in LinkedIn Messenger Would Have Allowed Malicious File Transfer
http://blog.checkpoint.com/2017/08/18/malware-hiding-resume-vulnerability-linkedin-messenger-allowed-malicious-file-transfer/

Reverse Engineering My Home Security System: Decompiling Firmware Updates
https://markclayton.github.io/reverse-engineering-my-home-security-system-decompiling-firmware-updates.html

Raspberry pi with kali linux as intercepting router
https://github.com/koenbuyens/kalirouter

Bypassing VirtualBox Process Hardening on Windows
https://googleprojectzero.blogspot.se/2017/08/bypassing-virtualbox-process-hardening.html?m=1

How to buy MacBook for $1, or hacking SAP POS
https://erpscan.com/research/hacking-sap-pos/

Vault 7: CIA used fake software update to spy on NSA, DHS, FBI
https://hotforsecurity.bitdefender.com/blog/vault-7-cia-used-fake-software-update-to-spy-on-nsa-dhs-fbi-18825.html

Touchscreens ‘at risk from chip in the middle attack’, warn researchers
https://nakedsecurity.sophos.com/2017/08/25/touchscreens-at-risk-from-chip-in-the-middle-attack-warn-researchers/

Deprecated, Insecure Apple Authorization API Can Be Abused To Run Code At Root
https://threatpost.com/deprecated-insecure-apple-authorization-api-can-be-abused-to-run-code-at-root/127618/

Android Spyware Linked to Chinese SDK Forces Google to Boot 500 Apps
https://threatpost.com/android-spyware-linked-to-chinese-sdk-forces-google-to-boot-500-apps/127585/

CERT-SE i veckan

Allvarliga sårbarheter i HPE iLO 4