Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.40

Det är fredag och dags för oktober månads första veckobrev.
Trevlig helg önskar CERT-SE

Nyheter i veckan

Facebook Leaks more than 50 Million Accounts
https://newsroom.fb.com/news/2018/09/security-update/

Gigantic 100,000-strong botnet used to hijack traffic meant for Brazilian banks
https://www.zdnet.com/article/gigantic-100000-strong-botnet-used-to-hijack-traffic-meant-for-brazilian-banks/

Are you ready? How to prepare for the DNSSEC Root KSK Rollover on October 11, 2018
https://www.internetsociety.org/blog/2018/10/are-you-ready-how-to-prepare-for-the-dnssec-root-ksk-rollover-on-october-11-2018/

Torii malware could be gateway to more sophisticated IoT botnet attacks
https://www.scmagazineuk.com/torii-malware-gateway-sophisticated-iot-botnet-attacks/article/1494408

Intel ME Manufacturing Mode: obscured dangers and their relationship to Apple MacBook vulnerability CVE-2018-4251
http://blog.ptsecurity.com/2018/10/intel-me-manufacturing-mode-macbook.html

Trustworthy Chrome Extensions, by default
https://blog.chromium.org/2018/10/trustworthy-chrome-extensions-by-default.html

Linus Torvalds and Linux Code of Conduct: 7 myths debunked
https://www.zdnet.com/article/linus-torvalds-and-linux-code-of-conduct-myths/

MAC Address Age Tracking
https://github.com/hdm/mac-ages

Avdelningen avlyssning

The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies
https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies

How Russian Spies Infiltrated Hotel Wi-Fi to Hack Victims Up Close
https://www.wired.com/story/russian-spies-indictment-hotel-wi-fi-hacking/

...och det har varit på tapeten tidigare
The Manchurian chip
http://www.popularmechanics.co.za/tech/the-manchurian-chip/

Photos of an NSA “upgrade” factory show Cisco router getting implant
https://arstechnica.com/tech-policy/2014/05/photos-of-an-nsa-upgrade-factory-show-cisco-router-getting-implant/

CERT-SE i veckan

Kritiska sårbarheter i Cisco-produkter

UEFI-rootkit i det "vilda"

Information om skanningar av RDP-protokollet

Kritiska sårbarheter i Adobe Acrobat and Reader