Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.39

Här kommer ännu en laddning omvärldsbevakningslänkar till fredagsmyset.
Trevlig helg önskar CERT-SE!

Nyheter i veckan

Patch-gapping
https://kryptera.se/patch-gapping/

Regeringens arbete för ökad cybersäkerhet
https://www.regeringen.se/regeringens-politik/regeringens-arbete-for-okad-cybersakerhet---regeringen-starker-arbetet-med-cybersakerhet/

Political targets at risk as Fancy Bear returns with refreshed backdoor malware
https://www.zdnet.com/article/political-targets-at-risk-as-fancy-bear-returns-with-refreshed-backdoor-malware/

No summer vacations for Zebrocy
https://www.welivesecurity.com/2019/09/24/no-summer-vacations-zebrocy/

Google Chrome Keystone is modifying /var symlink on non SIP Macs causing Boot Issues
https://mrmacintosh.com/google-chrome-keystone-is-modifying-var-symlink-on-non-sip-macs-causing-boot-issues/

Emotet Tries to Infect You By Claiming It's Snowden's Book
https://www.bleepingcomputer.com/news/security/emotet-tries-to-infect-you-by-claiming-its-snowdens-book/

Hackers looking into injecting card stealing code on routers, rather than websites
https://www.zdnet.com/article/hackers-looking-into-injecting-card-stealing-code-on-routers-rather-than-websites/

Kaspersky releases decryptors for FortuneCrypt and Yalon ransomware.
https://www.scmagazine.com/home/security-news/ransomware/kaspersky-releases-decryptors-for-fortunecrypt-and-yalon-ransomware/

Here’s how to fight back against Bitcoin-ransoming malware
https://thenextweb.com/hardfork/2019/09/26/heres-how-to-fight-back-against-bitcoin-ransoming-malware-ransomware/

New critical zero-day pre-auth RCE exploit code published on Full Disclosure mailing list for 5.x versions of vBulletin (CVE-2019-16759).
https://www.tenable.com/blog/critical-zero-day-pre-authentication-remote-code-execution-exploit-published-for-5-x-versions

Windows‌ ‌Exploitation‌ ‌Tricks:‌ ‌Spoofing‌ ‌Named‌ ‌Pipe‌ ‌Client‌ ‌PID‌
https://googleprojectzero.blogspot.com/2019/09/windows-exploitation-tricks-spoofing.html

Tibetan Groups Targeted with 1-Click Mobile Exploits
https://citizenlab.ca/2019/09/poison-carp-tibetan-groups-targeted-with-1-click-mobile-exploits/

SEC-T 2019 - Quantum computing and its impact on the field of cryptology
https://www.youtube.com/watch?v=ZqgKzUshA5k&feature=youtu.be&t=20448

Is your browser safe against tracking?
https://panopticlick.eff.org/

Mining MAC Address and OUI Information
https://isc.sans.edu/diary/Mining+MAC+Address+and+OUI+Information/25360

How Cybercriminals Are Monetizing IoT Attack Tools Now
https://www.secureworldexpo.com/industry-news/how-hackers-are-using-iot-exploits-vulnerabilities

CERT-SE i veckan

Sårbarheter i Cisco-produkter

Allvarlig sårbarhet i vBulletin 5 exploateras aktivt

0-dagarssårbarhet i VMware-produkt

Guide från NCSC-FI: Skydd mot Microsoft Office 365-phishing och dataintrång

Microsoft släpper separat säkerhetsuppdatering för Internet Explorer