Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

CERT-SE växer. Vi har fyra jobbannonser ute just nu: Desk och junior it-säk senast 5 maj. Operativ koordinator och intrångsdetektion senast 12 maj.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.15

Trevlig helg önskar CERT-SE!

Nyheter i veckan

CERT-SE lagleder det svenska laget i världens största cyberförsvarstävling
https://www.fhs.se/arkiv/nyheter/2019-04-09-forsvarshogskolan-huserar-svenska-laget-i-varldens-storsta-cyberforsvarstavling.html

Project TajMahal – a sophisticated new APT framework
https://securelist.com/project-tajmahal/90240/

Dragonblood vulnerabilities disclosed in WiFi WPA3 standard
https://www.zdnet.com/article/dragonblood-vulnerabilities-disclosed-in-wifi-wpa3-standard/

Microsoft publishes SECCON framework for securing Windows 10
https://www.zdnet.com/article/microsoft-publishes-seccon-framework-for-securing-windows-10/

Android 7.0+ Phones Can Now Double as Google Security Keys
https://krebsonsecurity.com/2019/04/android-7-0-phones-can-now-double-as-google-security-keys/

Two in Three Hotel Websites Leak Guest Booking Details and Allow Access to Personal Data
https://www.symantec.com/blogs/threat-intelligence/hotel-websites-leak-guest-data

New 'HOPLIGHT' Malware Appears in Latest North Korean Attacks, Say DHS, FBI
https://www.darkreading.com/threat-intelligence/new-hoplight-malware-appears-in-latest-north-korean-attacks-say-dhs-fbi/d/d-id/1334406

VPN - a Very Precarious Narrative
https://schub.io/blog/2019/04/08/very-precarious-narrative.html

Planetary Ransomware Decryptor Gets Your Files Back For Free
https://www.bleepingcomputer.com/ransomware/decryptor/planetary-ransomware-decryptor-gets-your-files-back-for-free/

WikiLeaks Founder Julian Assange Arrested After Ecuador Withdraws Asylum
https://thehackernews.com/2019/04/wikileaks-julian-assange-arrested.html

Cybercrime market selling full digital fingerprints of over 60,000 users
https://www.zdnet.com/article/cybercrime-market-selling-full-digital-fingerprints-of-over-60000-users/

No one, not even the Secret Service, should randomly plug in a strange USB stick
https://techcrunch.com/2019/04/08/secret-service-mar-a-lago/

How HTML5 Ping Is Used in DDoS Attacks
https://www.eweek.com/security/how-html5-ping-is-used-in-ddos-attacks

Stuxnet research reveals possible 4th accomplice, newly discovered versions of Flame and Duqu malware
https://www.scmagazine.com/home/security-news/stuxnet-research-reveals-possible-4th-accomplice-newly-discovered-versions-of-flame-and-duqu-malware/

TRITON Actor TTP Profile, Custom Attack Tools, Detections, and ATT&CK Mapping
https://www.fireeye.com/blog/threat-research/2019/04/triton-actor-ttp-profile-custom-attack-tools-detections.html

CERT-SE i veckan

Microsofts månatliga säkerhetsuppdateringar för april 2019

Kritiska sårbarheter i Adobe-produkter