Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.
!!

Jobba på CERT-SE? Sök junior systemadministratör inom IT-säkerhet. Sista ansökningsdag 3 juni.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.42

Efter en grå vecka kommer äntligen ljuset i form av CERT-SE:s veckobrev! Trevlig helg!

Nyheter i veckan

'Collapse OS' Is an Open Source Operating System for the Post-Apocalypse
https://www.vice.com/en_us/article/ywaqbg/collapse-os-is-an-open-source-operating-system-for-the-post-apocalypse

Simjacker - Frequently Asked Questions and Demos
https://www.adaptivemobile.com/blog/simjacker-frequently-asked-questions

We, Wall, we, Wall, Raku: Perl creator blesses new name for version 6 of text-wrangling lingo
https://www.theregister.co.uk/2019/10/11/perl_6_raku_larry_wall/

The top ten password-cracking techniques used by hackers
https://www.itpro.co.uk/security/34616/the-top-ten-password-cracking-techniques-used-by-hackers

Huge fan of your work; How turbine panda and Chinas top spies enabled Beijing to cut corners on the C919 passenger jet
https://www.crowdstrike.com/resources/wp-content/brochures/reports/huge-fan-of-your-work-intelligence-report.pdf

Update now! Windows users targeted by iTunes Software Updater zero-day
https://nakedsecurity.sophos.com/2019/10/15/update-now-windows-users-targeted-by-itunes-software-updater-zero-day/

M6, one of France's biggest TV channels, hit by ransomware
https://www.zdnet.com/article/m6-one-of-frances-biggest-tv-channels-hit-by-ransomware/

Subtle facial recognition technology
https://www.electronicsweekly.com/news/business/712929-2019-10/

Cyber threats to consider this Cyber Security Month
https://www.itproportal.com/features/cyber-threats-to-consider-this-cyber-security-month/

1 in 5 IT security professionals fear their connected toilets will be hacked
https://www.zdnet.com/article/1-in-5-it-professionals-fear-their-connected-toilets-will-be-hacked/

Omfattande översyn av Skolplattformen inleds
https://www.dn.se/sthlm/omfattande-oversyn-av-skolplattformen-inleds/

APT trends report Q3 2019
https://securelist.com/apt-trends-report-q3-2019/94530/

Malicious Payloads - Hiding Beneath the WAV
https://threatvector.cylance.com/en_us/home/malicious-payloads-hiding-beneath-the-wav.html

Security researcher publishes proof-of-concept code for recent Android zero-day
https://www.zdnet.com/article/security-researcher-publishes-proof-of-concept-code-for-recent-android-zero-day/

Yubico Login for Windows Now Generally Available
https://www.yubico.com/2019/10/yubico-login-for-windows-now-generally-available/

Unpatched Linux bug may open devices to serious attacks over Wi-Fi
https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw-may-let-attackers-crash-or-compromise-nearby-devices/

The Earliest Unix Code: An Anniversary Source Code Release
https://computerhistory.org/blog/the-earliest-unix-code-an-anniversary-source-code-release/

Phishing e-mail spoofing SPF-enabled domain
https://isc.sans.edu/diary/Phishing+e-mail+spoofing+SPF-enabled+domain/25426

Operation Ghost: The Dukes aren’t back – they never left
https://www.welivesecurity.com/2019/10/17/operation-ghost-dukes-never-left/

Checkrain fake iOS jailbreak leads to click fraud
https://blog.talosintelligence.com/2019/10/checkrain-click-fraud.html

Is Emotet gang targeting companies with external SOC?
https://marcoramilli.com/2019/10/14/is-emotet-gang-targeting-companies-with-external-soc/

Blackremote: Money Money Money – A Swedish Actor Peddles an Expensive New RAT
https://unit42.paloaltonetworks.com/blackremote-money-money-money-a-swedish-actor-peddles-an-expensive-new-rat/

CERT-SE i veckan

Sårbarheter i Cisco-produkter

Risk för informationsläckage via program

Säkerhetsuppdateringar för Adobe-produkter

Flertalet kritiska sårbarheter i Oracle-produkter

Sårbarhet i sudo