Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

Jobba på CERT-SE? Nu söker vi en förvaltningsledare IT inom cybersäkerhet med sista ansökningsdag 17 augusti, samt en administrativ stjärna med it-säkerhetskunskap till vår desk med sista ansökningsdag 23 augusti.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.33

Trevlig helg önskar CERT-SE

Veckans länkar

Process Doppelgänging meets Process Hollowing in Osiris dropper
https://blog.malwarebytes.com/threat-analysis/2018/08/process-doppelganging-meets-process-hollowing_osiris/

New PHP Code Execution Attack Puts WordPress Sites at Risk
https://thehackernews.com/2018/08/php-deserialization-wordpress.html

Firefox Add-On With 220,000+ Installs Caught Collecting Users' Browsing History
https://www.bleepingcomputer.com/news/security/firefox-add-on-with-220-000-installs-caught-collecting-users-browsing-history/

Building a Resilient Web with WebTorrent
https://hacks.mozilla.org/2018/08/dweb-building-a-resilient-web-with-webtorrent/

Office 365 Phishing Campaign Hides Malicious URLs in SharePoint Files
https://threatpost.com/office-365-phishing-campaign-hides-malicious-urls-in-sharepoint-files/136525/

A Detailed Look at RFC 8446 (a.k.a. TLS 1.3)
https://blog.cloudflare.com/rfc-8446-aka-tls-1-3/

Vulnerabilities in Fax Protocol Let Hackers Infiltrate Networks via Fax Machines
http://www.bleepingcomputer.com/news/security/vulnerabilities-in-fax-protocol-let-hackers-infiltrate-networks-via-fax-machines/

FBI Warns of ‘Unlimited’ ATM Cashout Blitz
http://krebsonsecurity.com/2018/08/fbi-warns-of-unlimited-atm-cashout-blitz/

BlackIoT: IoT Botnet of High Wattage Devices Can Disrupt the Power Grid
https://www.scribd.com/document/386117223/BlackIoT-Research#fullscreen&from_embed

Mathematicians solve age-old spaghetti mystery
https://phys.org/news/2018-08-mathematicians-age-old-spaghetti-mystery.html

Defcon

Bluetooth Devices at Risk From Btlejacking Takeover Attack
http://www.eweek.com/security/bluetooth-devices-at-risk-from-btlejacking-takeover-attack

Hackers Can Turn Body Cameras Into Malware Spewing Machines, Security Expert Says
https://gizmodo.com/hackers-can-turn-body-cameras-into-malware-spewing-mach-1828306760

Two 11-year-olds altered election results in hacker convention's replica of U.S. voting system
https://www.cbc.ca/news/technology/def-con-hacking-convention-voter-village-1.4784803?cmp=r

CERT-SE i veckan

Kritiska sårbarheter i Adobe-produkter

Microsofts säkerhetsuppdateringar augusti 2018

Kritisk sårbarhet i Oracle Database