Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Uppdaterad | Publicerad - Veckobrev

CERT-SE:s veckobrev v.18

May the Fourth be with you! [1]
Trevlig helg önskar vi på CERT-SE

Veckans länksamling

Sodinokibi ransomware exploits WebLogic Server vulnerability
https://blog.talosintelligence.com/2019/04/sodinokibi-ransomware-exploits-weblogic.html

LockerGoga Ransomware Family Used in Targeted Attacks
https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/lockergoga-ransomware-family-used-in-targeted-attacks/

Packaging the PwnedPassword data set
https://philwantsfish.github.io/security/packaging-pwnedpassword-data-set

190,000 Docker Hub user names and passwords exposed in security breach
https://www.computing.co.uk/ctg/news/3074715/190-000-docker-hub-user-names-and-passwords-exposed-in-security-breach

Free test checks website security and PCI DSS compliance
https://betanews.com/2019/04/29/free-website-security-test/

Unprotected Database Exposes Personal Info of 80 Million American Households
https://thehackernews.com/2019/04/america-personal-data.html

Emotet gang is trying to build a shell of IoT devices around its banking botnet
https://www.zdnet.com/article/emotet-gang-is-trying-to-build-a-shell-of-iot-devices-around-its-banking-botnet/

Vodafone Found Hidden Backdoors in Huawei Equipment
https://www.bloomberg.com/news/articles/2019-04-30/vodafone-found-hidden-backdoors-in-huawei-equipment

Cybersecurity for the Public Interest
https://www.schneier.com/blog/archives/2019/05/cybersecurity_f_2.html

P2P Weakness Exposes Millions of IoT Devices
https://krebsonsecurity.com/2019/04/p2p-weakness-exposes-millions-of-iot-devices/

Over Dozen Popular Email Clients Found Vulnerable to Signature Spoofing Attacks
https://thehackernews.com/2019/04/email-signature-spoofing.html

So You Want To Be a Pentester?
https://jhalon.github.io/becoming-a-pentester/

Zero to Hero, Practical Network Pentesting course
https://www.thecybermentor.com/zero-to-hero-pentesting

The only PowerShell Command you will ever need to find out who did what in Active Directory
https://evotec.xyz/the-only-powershell-command-you-will-ever-need-to-find-out-who-did-what-in-active-directory/

Peter Mayhew, who played Chewbacca in Star Wars, dies at 74
https://www.cnet.com/news/peter-mayhew-who-played-chewbacca-in-star-wars-dies-at-74/

[1] https://sv.wikipedia.org/wiki/Star_Wars-dagen

CERT-SE i veckan

En kritisk och flera allvarliga sårbarheter i Cisco-produkter

Sårbarheter i Dell SupportAssist-klient

Patch för kritisk sårbarhet i Oracle WebLogic Server