Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.14

Ännu ett veckoslut är nu nära förestående. Här kommer då ett litet axplock av intressanta länkar.
Trevlig helg!

Nyheter i veckan

Cloudflare Launches Publicly DNS-Over-HTTPS Service
https://threatpost.com/cloudflare-launches-publicly-dns-over-https-service/130900/

Google Bans Cryptocurrency Mining Extensions From Chrome Web Store
https://thehackernews.com/2018/04/cryptojacking-chrome-extension.html

Intel Halts Spectre Fixes On Older Chips, Citing Limited Ecosystem Support
https://threatpost.com/intel-halts-spectre-fixes-on-older-chips-citing-limited-ecosystem-support/130965/

Dot-cm Typosquatting Sites Visited 12M Times So Far in 2018
https://krebsonsecurity.com/2018/04/dot-cm-typosquatting-sites-visited-12m-times-so-far-in-2018/

Those Facebook videos you thought were deleted were not deleted
https://nakedsecurity.sophos.com/2018/04/04/those-facebook-videos-you-thought-were-deleted-were-not-deleted/

Tools for Investigating Malicious URLs
https://medium.com/@0x736A/tools-for-investigating-malicious-urls-d013121c8650

Find out who is leaking your secrets with help from invisible zero-width characters
https://www.tripwire.com/state-of-security/featured/secrets-invisible-zero-width-characters/

Defend yourself from cybercrime with new Office 365 capabilities
https://blogs.office.com/en-us/2018/04/05/defend-yourself-from-cybercrime-with-new-office-365-capabilities/

VirusTotal launches 'Droidy' sandbox to detect malicious Android apps
https://thehackernews.com/2018/04/virustotal-droidy-android-sandbox.html

Subverting Backdoored Encryption
https://www.schneier.com/blog/archives/2018/04/subverting_back.html

TLS 1.3 is here. The Internet is About to Get a Lot Safer
https://www.thesslstore.com/blog/tls-1-3-approved/

Google bug bounty for security exploit that influences search results
http://www.tomanthony.co.uk/blog/google-xml-sitemap-auth-bypass-black-hat-seo-bug-bounty/

Vi avslutar veckobrevet med en härlig FAQ gällande en sårbarhet i Beep:

Holey Beep (CVE-2018-0492) is the latest breakthrough in the field of acoustic cyber security research.
https://holeybeep.ninja/

CERT-SE i veckan

Sårbarhet i Windows 7/2008 x64-kärnan - CVE-2018-1038

Säkerhetsuppdateringar från Apple