Publicerad
CERT-SE:s veckobrev v.40
Det är fredag och dags för oktober månads första veckobrev.
Trevlig helg önskar CERT-SE
Nyheter i veckan
Facebook Leaks more than 50 Million Accounts
https://newsroom.fb.com/news/2018/09/security-update/
Gigantic 100,000-strong botnet used to hijack traffic meant for Brazilian banks
https://www.zdnet.com/article/gigantic-100000-strong-botnet-used-to-hijack-traffic-meant-for-brazilian-banks/
Are you ready? How to prepare for the DNSSEC Root KSK Rollover on October 11, 2018
https://www.internetsociety.org/blog/2018/10/are-you-ready-how-to-prepare-for-the-dnssec-root-ksk-rollover-on-october-11-2018/
Torii malware could be gateway to more sophisticated IoT botnet attacks
https://www.scmagazineuk.com/torii-malware-gateway-sophisticated-iot-botnet-attacks/article/1494408
Intel ME Manufacturing Mode: obscured dangers and their relationship to Apple MacBook vulnerability CVE-2018-4251
http://blog.ptsecurity.com/2018/10/intel-me-manufacturing-mode-macbook.html
Trustworthy Chrome Extensions, by default
https://blog.chromium.org/2018/10/trustworthy-chrome-extensions-by-default.html
Linus Torvalds and Linux Code of Conduct: 7 myths debunked
https://www.zdnet.com/article/linus-torvalds-and-linux-code-of-conduct-myths/
MAC Address Age Tracking
https://github.com/hdm/mac-ages
Avdelningen avlyssning
The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies
https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies
How Russian Spies Infiltrated Hotel Wi-Fi to Hack Victims Up Close
https://www.wired.com/story/russian-spies-indictment-hotel-wi-fi-hacking/
...och det har varit på tapeten tidigare
The Manchurian chip
http://www.popularmechanics.co.za/tech/the-manchurian-chip/
Photos of an NSA “upgrade” factory show Cisco router getting implant
https://arstechnica.com/tech-policy/2014/05/photos-of-an-nsa-upgrade-factory-show-cisco-router-getting-implant/
CERT-SE i veckan
Kritiska sårbarheter i Cisco-produkter