Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

Jobba på CERT-SE? Sök junior systemadministratör inom IT-säkerhet. Sista ansökningsdag 3 juni.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.23

Vi firar sommar, sol, nationaldag och studenten med en samling av intressanta länkar.

Nyheter i veckan

Next steps in privacy-preserving Telemetry with Prio
https://blog.mozilla.org/security/2019/06/06/next-steps-in-privacy-preserving-telemetry-with-prio/

New attack creates ghost taps on modern Android smartphones
https://www.zdnet.com/article/new-attack-creates-ghost-taps-on-modern-android-smartphones/

BlackSquid Slithers Into Servers and Drives With 8 Notorious Exploits to Drop XMRig Miner
https://blog.trendmicro.com/trendlabs-security-intelligence/blacksquid-slithers-into-servers-and-drives-with-8-notorious-exploits-to-drop-xmrig-miner/

Feds Make New Arrest in Darkode Case
https://www.darkreading.com/threat-intelligence/feds-make-new-arrest-in-darkode-case/d/d-id/1334904

LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach
https://krebsonsecurity.com/2019/06/labcorp-7-7m-consumers-hit-in-collections-firm-breach/

GandCrab ransomware operation says it's shutting down
https://www.zdnet.com/article/gandcrab-ransomware-operation-says-its-shutting-down/

Researcher Exploits Microsoft’s Notepad to ‘Pop a Shell’
https://threatpost.com/researcher-exploits-microsofts-notepad-to-pop-a-shell/145242/

Vulnerabilities in Phishing Kits
https://blogs.akamai.com/sitr/2019/06/identifying-vulnerabilities-in-phishing-kits.html

Google’s Cloud outage is resolved, but it reveals the holes in cloud computing’s atmosphere
https://techcrunch.com/2019/06/02/googles-cloud-outage-is-resolved-but-it-reveals-the-holes-in-cloud-computings-atmosphere/

Mobile SIGINT Hacking on a Civilian’s Budget
https://hackaday.com/2019/06/05/mobile-sigint-hacking-on-a-civilians-budget/

LibreOffice Will No Longer Provide 32-bit Linux Binaries
https://www.bleepingcomputer.com/news/software/libreoffice-will-no-longer-provide-32-bit-linux-binaries/

Bluekeep (CVE-2019-0708) - special part II

NSA Cybersecurity Advisory: Patch Remote Desktop Services on Legacy Versions of Windows
https://www.nsa.gov/News-Features/News-Stories/Article-View/Article/1865726/nsa-cybersecurity-advisory-patch-remote-desktop-services-on-legacy-versions-of/

MetaSploit Module Created for BlueKeep Flaw, Private for Now
https://www.bleepingcomputer.com/news/security/metasploit-module-created-for-bluekeep-flaw-private-for-now/