Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.29

Grattis Apollo 11! 👨‍🚀 🌑
Fly me to the moon and let me läsa veckans nyhetsbrev.

Nyheter i veckan

CVSS 3.1: Refined and updated for easier adoption by the security community
https://www.helpnetsecurity.com/2019/07/15/cvss-3-1/

Amadeus! Amadeus! Pwn me Amadeus! Airline check-in bug may have exposed all y'all boarding passes to spies
https://www.theregister.co.uk/2019/07/16/amadeus_bug_light_pass/

Phishing alert: 80% of companies lack DMARC policies to protect against spoofing
https://www.techrepublic.com/article/phishing-alert-80-of-companies-lack-dmarc-policies-to-protect-against-spoofing/

Meet the World’s Biggest ‘Bulletproof’ Hoster
https://krebsonsecurity.com/2019/07/meet-the-worlds-biggest-bulletproof-hoster/

Office 365 declared illegal in German schools due to privacy risks
https://arstechnica.com/information-technology/2019/07/germany-threatens-to-break-up-with-microsoft-office-again/

NCSC calls out Microsoft over Dmarc reports
https://www.computerweekly.com/news/252466778/NCSC-calls-out-Microsoft-over-Dmarc-reports

Bad McAfee Exploit Prevention Update Blocked Windows Logins
https://www.bleepingcomputer.com/news/security/bad-mcafee-exploit-prevention-update-blocked-windows-logins/

Chrome on, baby, don't fear The Reaper: Plugin sends CPU-hogging browser processes to hell where they belong
https://www.theregister.co.uk/2019/07/17/dont_fear_the_chrome_reaper/

Hacked Hair Straighteners Can Threaten Homes
https://threatpost.com/firestarter-hacked-hair-straighteners/146434/

Apple quietly removes Zoom’s hidden web server from Macs
https://nakedsecurity.sophos.com/2019/07/15/apple-quietly-removes-zooms-hidden-web-server-from-macs/

Thousands of Legacy Lenovo Storage Devices Exposed Millions of Files
https://www.securityweek.com/thousands-legacy-lenovo-storage-devices-exposed-millions-files

EvilGnome: Rare Malware Spying on Linux Desktop Users
https://www.intezer.com/blog-evilgnome-rare-malware-spying-on-linux-desktop-users/

Kazakhstan government is now intercepting all HTTPS traffic
https://www.zdnet.com/article/kazakhstan-government-is-now-intercepting-all-https-traffic/

HTTP Security Headers - A Complete Guide
https://nullsweep.com/http-security-headers-a-complete-guide/

Ongoing DNS hijacking and mitigation advice
https://www.ncsc.gov.uk/news/ongoing-dns-hijacking-and-mitigation-advice

Galileo constellation outage
https://destevez.net/2019/07/galileo-constellation-outage/

Månspecial

Apollo 11 Real-Time Mission Experience
https://apolloinrealtime.org/11/

Månlandningen i realtid
https://www.svt.se/datajournalistik/manlandningen-i-realtid/

Build Your Own NASA Apollo Landing Computer (no kidding)
https://galaxiki.org/web/main/_blog/all/build-your-own-nasa-apollo-landing-computer-no-kidding.shtml

The Real Story Behind the Apollo 11 Computer Error
https://www.youtube.com/watch?v=z4cn93H6sM0

Apollo 11 50th Anniversary: Meet The Woman Who Put Men On The Moon
https://www.youtube.com/watch?v=UOUNjytHhNI

Nördhörnan

Chip Hall of Fame: MOS Technology 6581
https://spectrum.ieee.org/tech-history/silicon-revolution/chip-hall-of-fame-mos-technology-6581

CERT-SE i veckan

Sårbarheter i Cisco-produkter

Upplåsning av GandCrab

Flertalet kritiska sårbarheter i Oracle-produkter