Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.21

- .-. . ...- .-.. .. --. .... . .-.. --. --- -. ... -.- .- .-. -.-. . .-. - -...- ... .

Nyheter i veckan

PoC Exploits for CVE-2019-0708 wormable Windows flaw released online
https://securityaffairs.co/wordpress/86034/hacking/poc-exploits-cve-2019-0708.html

Hewlett Packard Enterprise to Acquire Cray for $1.3 Billion
https://www.anandtech.com/show/14358/hewlett-packard-enterprise-to-acquire-cray-for-13-billion

Faulty database script brings Salesforce to its knees
https://www.zdnet.com/article/faulty-database-script-brings-salesforce-to-its-knees/

Hacktivist attacks dropped by 95% since 2015
https://www.zdnet.com/article/hacktivist-attacks-dropped-by-95-since-2015/

Därför ska du aldrig ladda telefonen via uttagen på flygplatsen
https://www.expressen.se/allt-om-resor/flyg-1/darfor-ska-du-aldrig-ladda-telefonen-via-uttagen-pa-flygplatsen/

Security researchers discover Linux version of Winnti malware
https://www.zdnet.com/article/security-researchers-discover-linux-version-of-winnti-malware/

Millions of Instagram influencers had their private contact data scraped and exposed
https://techcrunch.com/2019/05/20/instagram-influencer-celebrity-accounts-scraped/

Nearly 20% of the 1000 Most Popular Docker Containers Have No Root Password
https://www.kennasecurity.com/20-of-the-1000-most-popular-docker-containers-have-no-root-password/

A misconfiguration in some of the most popular Docker containers could open them to attack; the issue affects containers from Microsoft, Monsanto and the British government.
https://www.zdnet.com/article/root-account-misconfigurations-found-in-20-of-top-1000-docker-containers/

Hackers abuse ASUS cloud service to install backdoor on users’ PCs
https://arstechnica.com/information-technology/2019/05/asus-cloud-service-abused-to-install-backdoor-on-pcs/

Account Hijacking Forum OGusers Hacked
https://krebsonsecurity.com/2019/05/account-hijacking-forum-ogusers-hacked/

Unistellar attackers already wiped over 12,000 MongoDB databases
https://securityaffairs.co/wordpress/85766/hacking/unistellar-wiped-12000-mongodb.html

Bluetooth's Complexity Has Become a Security Risk
https://www.wired.com/story/bluetooth-complex-security-risk/

PoC Exploit For Unpatched Windows 10 Zero-Day Flaw Published Online
https://thehackernews.com/2019/05/windows-zero-day-vulnerability.html

CERT-SE completed recirtification for Trusted Introducer
https://twitter.com/tfcsirt/status/1131517824755744770

San Francisco's facial recognition ban is just the beginning of a national battle over the technology
https://www.nbcnews.com/news/us-news/san-francisco-s-facial-recognition-ban-just-beginning-national-battle-n1007186

"NATO leaders have agreed that a cyber attack could trigger Article 5 of our founding treaty. Where an attack against one Ally is treated as an attack against all. NATO has designated cyberspace as a military domain."
https://www.nato.int/cps/en/natohq/opinions_166039.htm

Microsoft SharePoint remote code vulnerability
https://www.ncsc.gov.uk/news/alert-microsoft-sharepoint-remote-code-vulnerability

Nördhörnan

Morse Code Is 175 Years Old and Still as Useful as Ever
https://www.newsweek.com/morse-code-175-years-old-useful-1432418