Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

CERT-SE växer. Nu finns två jobbannonser ute: it-säkerhetsspecialist och junior systemadministratör.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.09

Trevlig helg önskar CERT-SE!

Veckans notiser

Identifying Cobalt Strike team servers in the wild
https://blog.fox-it.com/2019/02/26/identifying-cobalt-strike-team-servers-in-the-wild/

Multiple ArtraDownloader Variants Used by BITTER to Target Pakistan
https://unit42.paloaltonetworks.com/multiple-artradownloader-variants-used-by-bitter-to-target-pakistan/

SideWinder APT Organization's disclosure of attacks on South Asia
https://translate.google.se/translate?hl=sv&sl=auto&tl=en&u=https%3A%2F%2Fs.tencent.com%2Fresearch%2Freport%2F659.html

Cisco Talos Honeypot Analysis Reveals Rise in Attacks on Elasticsearch Clusters
https://blog.talosintelligence.com/2019/02/cisco-talos-honeypot-analysis-reveals.html#more

Dawn of the Terrorbit Era
https://www.netscout.com/sites/default/files/2019-02/SECR_001_EN-1901%20-%20NETSCOUT%20Threat%20Intelligence%20Report%202H%202018.pdf

ICANN Calls for Full DNSSEC Deployment, Promotes Community Collaboration to Protect the Internet
https://www.icann.org/news/announcement-2019-02-22-en

Top ten most popular docker images each contain at least 30 vulnerabilities
https://snyk.io/blog/top-ten-most-popular-docker-images-each-contain-at-least-30-vulnerabilities/

ETS Isn't TLS and You Shouldn't Use It
https://www.eff.org/deeplinks/2019/02/ets-isnt-tls-and-you-shouldnt-use-it

Dow Jones’ watchlist of 2.4 million high-risk individuals has leaked
https://techcrunch.com/2019/02/27/dow-jones-watchlist-leak/

The Curious Case of Convexity Confusion
https://googleprojectzero.blogspot.com/2019/02/the-curious-case-of-convexity-confusion.html

Five of the Top Bug Bounty Platforms
https://www.htbridge.com/blog/five-of-the-top-bug-bounty-platforms.html

Emotet droppers
https://maxkersten.nl/binary-analysis-course/malware-analysis/emotet-droppers/

Coinhive, the in-browser cryptomining service beloved by hackers, is dead
https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/coinhive-browser-cryptomining-service-dead/

B0r0nt0K Ransomware Wants $75,000 Ransom, Infects Linux Servers
https://www.bleepingcomputer.com/news/security/b0r0nt0k-ransomware-wants-75-000-ransom-infects-linux-servers/

DIY

A Minimal Drupal Honeypot
https://github.com/d1str0/drupot

MassBleed – An Open Source SSL Vulnerability Scanner
https://latesthackingnews.com/2019/02/28/massbleed-an-open-source-ssl-vulnerability-scanner/

CERT-SE i veckan

Kritisk sårbarhet i Cisco RV110W, RV130W och RV215W