Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

CERT-SE växer. Vi har två jobbannonser ute just nu: Sök till Systemadministratör eller Övningsansvarig senast 18 augusti.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.28

En favorit i repris; "Sommartider hej hej!"
Eller som GandCrab säger; "Ge mej allt du vill och allt du kan"

Trevlig helg önskar CERT-SE

Nyheter i veckan

Who’s Behind the GandCrab Ransomware?
https://krebsonsecurity.com/2019/07/whos-behind-the-gandcrab-ransomware/

An Analysis of Godlua Backdoor
https://blog.netlab.360.com/an-analysis-of-godlua-backdoor-en/

IDS Bypass contest at PHDays: writeup and solutions
https://blog.ptsecurity.com/2019/07/ids-bypass-contest-at-phdays-writeup.html

Hackers Hijacked VR Chatrooms to Manipulate Users' Reality
https://www.vice.com/en_us/article/8xz33p/hackers-hijacked-vr-chatrooms-to-manipulate-users-real

Amazon Admits Alexa Voice Recordings Saved Indefinitely
https://threatpost.com/amazon-admits-alexa-voice-recordings-saved-indefinitely/146225/

amass — Automated Attack Surface Mapping
https://danielmiessler.com/study/amass/

Hack The Box - Netmon
https://0xrick.github.io/hack-the-box/netmon/

Ubuntu-Maker Canonical’s GitHub Account Gets Hacked
https://thehackernews.com/2019/07/canonical-ubuntu-github-hacked.html

Flaw in Zoom Video Conferencing Software Lets Websites Hijack Mac Webcams
https://thehackernews.com/2019/07/webcam-hacking-video-conferencing.html

Magic IP Address Shortcuts
https://stuff-things.net/2014/09/25/magic-ip-address-shortcuts/

Intention to fine British Airways £183.39m under GDPR for data breach
https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2019/07/ico-announces-intention-to-fine-british-airways/

Intention to fine Marriott International, Inc more than £99 million under GDPR for data breach
https://ico.org.uk/about-the-ico/news-and-events/news-and-blogs/2019/07/intention-to-fine-marriott-international-inc-more-than-99-million-under-gdpr-for-data-breach/

Top VPNs secretly owned by Chinese firms
https://www.computerweekly.com/news/252466203/Top-VPNs-secretly-owned-by-Chinese-firms

Minute Hack: Get SSH login notification on Telegram
https://8192.one/post/ssh_login_notification_withtelegram/

Samba Project tells us "What's New" - SMBv1 Disabled by Default (finally)
https://isc.sans.edu/forums/diary/Samba+Project+tells+us+Whats+New+SMBv1+Disabled+by+Default+finally/25116/

"Mozilla aren’t villains after all” – ISPs back down after public outcry
https://nakedsecurity.sophos.com/2019/07/11/mozilla-arent-villains-after-all/

Nuclear Meltdown with Critical ICS Vulnerabilities
https://medium.com/tenable-techblog/nuclear-meltdown-with-critical-ics-vulnerabilities-8af3a1a13e6a

Presenting QCSuper: a tool for capturing your 2G/3G/4G air traffic on Qualcomm-based phones
https://labs.p1sec.com/2019/07/09/presenting-qcsuper-a-tool-for-capturing-your-2g-3g-4g-air-traffic-on-qualcomm-based-phones/

Detecting Phishing with SPF Macros
https://duo.com/labs/tech-notes/detecting-phishing-with-spf-macros

The eCh0raix Ransomware
https://www.anomali.com/blog/the-ech0raix-ransomware

Vulnerabilities found in GE anesthesia machines
https://www.zdnet.com/article/vulnerabilities-found-in-ge-anesthesia-machines/

Malicious apps infect 25 million Android devices with 'Agent Smith' malware
https://phys.org/news/2019-07-malicious-apps-infect-million-android.html

OSINT Curious
https://osintcurio.us/

CERT-SE i veckan

Säkerhetsrisker med trådlösa enheter från Logitech

DNS hijacking

Säkerhetsuppdateringar för Adobe-produkter

Microsofts månatliga säkerhetsuppdateringar för juli 2019