Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.37

Efter en kall uppstart går vi nu mot en härlig helg med ännu ett nytt veckobrev från CERT-SE.

Nyheter i veckan

The Chilling Reality of Cold Boot Attacks
https://blog.f-secure.com/cold-boot-attacks/

Hackers Can Steal a Tesla Model S in Seconds by Cloning Its Key Fob
https://www.wired.com/story/hackers-steal-tesla-model-s-seconds-key-fob/

Wi-Fi Gets More Secure: Everything You Need to Know About WPA3
https://spectrum.ieee.org/tech-talk/telecom/security/everything-you-need-to-know-about-wpa3

Tor Browser Zero-Day Exploit Revealed Online – Patch Now
https://thehackernews.com/2018/09/tor-browser-zero-day-exploit.html

DNS flag day
https://dnsflagday.net/

Nu ska internets centrala nyckel bytas ut – "en stor händelse"
https://computersweden.idg.se/2.2683/1.706973/internet-krislage-rotnyckel

Apple's Safari Falls For New Address Bar Spoofing Trick
https://www.bleepingcomputer.com/news/security/apples-safari-falls-for-new-address-bar-spoofing-trick/

Adopt TLS 1.3 – Kill Two Birds with One Stone
https://blog.radware.com/applicationdelivery/2018/09/adopt-tls-1-3-two-birds-one-stone/

Over 3,700 MikroTik Routers Abused In CryptoJacking Campaigns
https://www.bleepingcomputer.com/news/security/over-3-700-mikrotik-routers-abused-in-cryptojacking-campaigns/

What to expect from cyber-attacks during an election year
https://www.techrepublic.com/article/what-to-expect-from-cyber-attacks-during-an-election-year/

ProtonVPN, NordVPN Flaws Open Door to Privilege Escalation
https://threatpost.com/protonvpn-nordvpn-flaws-open-door-to-privilege-escalation/137332/

Mirai, Gafgyt IoT Botnets Reach To the Enterprise Sector
https://www.bleepingcomputer.com/news/security/mirai-gafgyt-iot-botnets-reach-to-the-enterprise-sector/

New Python-based Ransomware Poses as Locky
https://www.securityweek.com/new-python-based-ransomware-poses-locky

Trend Micro tools tossed from Apple's Mac App Store after spewing fans' browser histories
https://www.theregister.co.uk/2018/09/10/trend_micro_apple_macos/

A Deceitful 'Doctor' in the Mac App Store
https://objective-see.com/blog/blog_0x37.html

CERT-SE i veckan

Kritiska sårbarheter i produkter från HPE

Microsofts och Adobe säkerhetsuppdateringar september 2018

Kritisk sårbarhet i IBM WebSphere Application Server