CERT-SE:s veckobrev v.6

Veckobrev

I veckan har SVT rapporterat om att mejl innehållande känsliga uppgifter, avsedda för polisen, har röjts. En privatperson har registrerat ett domännamn snarlikt polisen.se. Vidare har en catch all-adress satts upp, och mejl som stavats fel har därför hamnat i orätta händer.

Nyheter i veckan

US continues to press UE members to ban Huawei and Chinese 5G technologies (31 jan) https://securityaffairs.co/wordpress/97094/security/us-pressing-ue-ban-huawei.html

How to avoid the mistakes made in the UN data breach (31 jan) https://www.techrepublic.com/article/how-to-avoid-the-mistakes-made-in-the-un-data-breach

How to change iOS 13 settings for better securitym (31 jan) https://www.techrepublic.com/article/how-to-change-ios-13-settings-for-better-security

Winnti APT Group targeted Hong Kong Universities (1 feb) https://securityaffairs.co/wordpress/97111/apt/winnti-apt-hong-kong-universities.html

Assessment Frameworks for NIS Directive Compliance (2 feb) https://www.tripwire.com/state-of-security/regulatory-compliance/assessment-frameworks-nis-directive-compliance

Hackers are hijacking smart building access systems to launch DDoS attacks (2 feb) https://www.zdnet.com/article/hackers-are-hijacking-smart-building-access-systems-to-launch-ddos-attacks/

Mysterious New Ransomware Targets Industrial Control Systems (3 feb) https://www.wired.com/story/ekans-ransomware-industrial-control-systems/ ..
EKANS Ransomware and ICS Operations (3 feb) https://dragos.com/blog/industry-news/ekans-ransomware-and-ics-operations/

Coronavirus - hackers exploit fear of infection to spread malware (3 feb) https://www.grahamcluley.com/coronavirus-malware/

Cybersäkerhet i 5G-nät: EU presenterar en verktygslåda med omfattande säkerhetsåtgärder (3 feb) https://pts.se/sv/bloggen/pts-bloggen/cybersakerhet-i-5g-nat-eu-presenterar-en-verktygslada-med-omfattande-sakerhetsatgarder/ ..
Cybersecurity of 5G networks - EU Toolbox of risk mitigating measures (29 jan) https://ec.europa.eu/digital-single-market/en/news/cybersecurity-5g-networks-eu-toolbox-risk-mitigating-measures

Microsoft Teams suffers widespread outage (4 feb) https://www.itproportal.com/news/microsoft-teams-suffers-widespread-outage/

Polisbefäl gjorde flera olagliga slagningar: “Ett sexberoende” (4 feb) https://sverigesradio.se/sida/artikel.aspx?programid=159&artikel=7400942

What makes some organizations more cyber resilient than others? (4 feb) https://www.helpnetsecurity.com/2020/02/04/cyber-resilient/ ..
Rapport: https://www.accenture.com/_acnmedia/PDF-116/Accenture-Cybersecurity-Report-2020.pdf

New Ransomware Targets Industrial Controls: Report (5 feb) https://www.govinfosecurity.com/new-ransomware-targets-industrial-controls-report-a-13687

‘Tens of millions’ of Cisco devices vulnerable to CDPwn flaws: Network segmentation blown apart by security bugs (5 feb) https://www.theregister.co.uk/2020/02/05/cisco_cdpwn_flaws/

NCSC to lauch cyber-crime hotline number (5 feb) https://www.scmagazineuk.com/ncsc-lauch-cyber-crime-hotline-number/article/1673084

20 000 hårddiskar byts ut efter stort datorhaveri på sjukhus (5 feb) https://www.dn.se/nyheter/sverige/efter-stora-datorhaveriet-pa-sjukhusen-20000-harddiskar-byts-ut/

Emotet can spread to poorly secured Wi-Fi networks and computers on them (6 feb) https://www.helpnetsecurity.com/2020/02/06/emotet-spread-wi-fi-networks/

Elevers frånvaro gick till fel föräldrar - Huddinge anmäler sig själv (6 feb) https://sverigesradio.se/sida/artikel.aspx?programid=103&artikel=7402829

Hackarna som pressar börsbolagen (7 feb) https://www.affarsvarlden.se/bors-ekonominyheter/hackarna-som-pressar-borsbolagen-6986651

Stora mängder polismejl skickades fel av misstag - känsliga uppgifter röjdes (7 feb) https://www.svt.se/nyheter/inrikes/stora-mangder-polismejl-skickades-fel-av-misstag-kansliga-uppgifter-rojdes

CERT-SE i veckan

Sårbarheter i Cisco Discovery Protocol

Pågående nätfiskekampanj - kommuner är drabbade [uppdaterad 2020-02-05]