CERT-SE:s veckobrev v.11

Veckobrev

Pi-dagen, Matematikens dag eller den Internationella matematikdagen, som Unesco utnämnde den 14 mars till förra året, firades för första gången redan år 1988 på museet Exploratorium i San Francisco …“kärt barn har många namn”.

What is Pi? https://www.piday.org/learn-about-pi/

Tillsammans med en gedigen samling av läsning vill CERT-SE önskar er en fin helg och Pi-dag!

Nyheter i veckan

Energy Industry Cybersecurity: A Playbook for Incident Response https://new.siemens.com/us/en/company/press/siemens-stories/energy/simulating-a-cyberattack-on-the-energy-industry-a-playbook-for-incident-response.html

Hacking an Audi: performing a man-in-the-middle attack on FlexRay (3 mar) https://medium.com/@comma_ai/hacking-an-audi-performing-a-man-in-the-middle-attack-on-flexray-2710b1d29f3f

European Cyber Security Perspectives 2020 (4 mar) https://overons.kpn/en/news/2020/kpn-publiceert-7e-editie-van-de-european-cyber-security-perspectives

Rapport: https://overons.kpn/content/downloads/news/European-Cyber-Security-Perspectives-KPN-2020.pdf

Ryuk ransomware hits Fortune 500 company EMCOR (5 mar) https://www.zdnet.com/article/ryuk-ransomware-hits-fortune-500-company-emcor/

Microsoft Exchange Control Panel (ECP) Vulnerability CVE-2020-0688 Exploited (6 mar) https://www.volexity.com/blog/2020/03/06/microsoft-exchange-control-panel-ecp-vulnerability-cve-2020-0688-exploited/

The unexpected Google wide domain check bypass (8 mar) https://bugs.xdavidhu.me/google/2020/03/08/the-unexpected-google-wide-domain-check-bypass/

Brandväggen fortsatt stekhet när världen rustar för cyberhoten (8 mar) https://computersweden.idg.se/2.2683/1.731614/brandvagg-stekhet-cyberhot

Cyberattackers are delivering malware by using links from whitelisted sites (9 mar) https://www.techrepublic.com/article/cyberattackers-are-delivering-malware-by-using-links-from-whitelisted-sites/

European power grid organization says its IT network was hacked (9 mar) https://www.cyberscoop.com/european-entso-breach-fingrid/

New Variant of TrickBot Being Spread by Word Document (9 mar) https://www.fortinet.com/blog/threat-research/new-variant-of-trickbot-being-spread-by-word-document.html

New Kr00k WiFi Security Flaw Potentially Impacts 1 Billion Devices (9 mar) https://www.cpomagazine.com/cyber-security/new-kr00k-wifi-security-flaw-potentially-impacts-1-billion-devices/

Leveranskedjan av IT-produkter hotar systemens säkerhet (9 mar) https://www.foi.se/nyheter-och-press/nyheter/2020-03-09-leveranskedjan-av-it-produkter-hotar-systemens-sakerhet.html

Hackers are targeting other hackers by infecting their tools with malware (10 mar) https://techcrunch.com/2020/03/09/hacking-the-hackers/

Years-long campaign targets hackers through trojanized hacking tools (10 mar) https://www.zdnet.com/article/years-long-campaign-targets-hackers-through-trojanized-hacking-tools/

Zero day found in Zoho One Desktop Central (10 mar) https://www.scmagazine.com/home/security-news/vulnerabilities/zero-day-found-in-zoho-one-desktop-central/

New action to disrupt world’s largest online criminal network (10 mar) https://blogs.microsoft.com/on-the-issues/2020/03/10/necurs-botnet-cyber-crime-disrupt/

Rapport: https://www.bitsight.com/blog/joint-effort-with-microsoft-to-takedown-massive-criminal-botnet-necurs

Trend Micro Cloud App Security Report 2019 (10 mar) https://www.trendmicro.com/vinfo/nl/security/research-and-analysis/threat-reports/roundup/trend-micro-cloud-app-security-report-2019

Critical Vulnerabilities in SAP Solution Manager Expose Companies to Attacks (11 mar) https://www.securityweek.com/critical-vulnerabilities-sap-solution-manager-expose-companies-attacks

To Beat Ransomware, Consider the Human Side of Cybersecurity (11 mar) https://www.fortinet.com/blog/industry-trends/to-beat-ransomware-consider-the-human-side-of-cybersecurity.html

Malicious coronavirus map hides AZORult info-stealing malware (11 mar) https://www.scmagazine.com/home/security-news/malicious-coronavirus-map-hides-azorult-info-stealing-malware/

Wormable, Unpatched Microsoft Bug Threatens Corporate LANs (11 mar) https://threatpost.com/wormable-unpatched-microsoft-bug/153632/

Phishing Attack Skirts Detection With YouTube (11 mar) https://threatpost.com/phishing-skirts-detection-youtube/153639/?web_view=true

Intel Patches High Severity Flaws in Windows Graphics Drivers (11 mar) https://www.bleepingcomputer.com/news/security/intel-patches-high-severity-flaws-in-windows-graphics-drivers/?&web_view=true

njRAT Trojanizes Hacking Tools in Widespread Campaign to Conduct DDoS Attacks and Steal Sensitive Data (11 mar) https://cyware.com/news/njrat-trojanizes-hacking-tools-in-widespread-campaign-to-conduct-ddos-attacks-and-steal-sensitive-data-8584f353

Whisper, an anonymous secret-sharing app, failed to keep messages or profiles private (11 mar) https://www.zdnet.com/article/whisper-an-anonymous-secret-sharing-app-failed-to-keep-messages-profiles-private/

Polisen backar: Omstridd ansiktsigenkänning har använts (11 mar) https://www.dn.se/nyheter/sverige/polisen-backar-omstridd-ansiktsigenkanning-har-anvants/

Intel chips at risk from major new security flaw (12 mar) https://www.techradar.com/news/intel-chips-faces-damaging-new-lvi-flaw

Advanced Russian Hackers Use New Malware in Watering Hole Operation (12 mar) https://www.bleepingcomputer.com/news/security/advanced-russian-hackers-use-new-malware-in-watering-hole-operation/

Informationssäkerhet och blandat

WHEN SPEAKERS ARE ALL EARS | Understanding when smart speakers mistakenly record conversations (14 feb) https://moniotrlab.ccis.neu.edu/smart-speakers-study/

Debatt: Lärlingar kan avhjälpa IT-branschens brist på specialister i Sverige (9 mar) https://www.gp.se/debatt/lärlingar-kan-avhjälpa-it-branschens-brist-på-specialister-i-sverige-1.24840008

Svenska kraftnät utreder europeiskt dataintrång (9 mar) https://www.dn.se/nyheter/sverige/svenska-kraftnat-utreder-europeiskt-dataintrang/

Bolagsverket till O365 (9 mar) https://www.voister.se/artikel/2020/03/bolagsverket-till-o365/

MSB erbjuder kostnadsfri kurs i informationssäkerhet för ICS (9 mar) https://www.energimyndigheten.se/nyhetsarkiv/2020/msb-erbjuder-kurs-i-informationssakerhet-for-ics/

Dubbelt så många anmälda incidenter under 2019 (9 mar) https://www.datainspektionen.se/nyheter/dubbelt-sa-manga-anmalda-incidenter-under-2019/

Whisper, an App for Sharing Secrets, Left Its User Data Exposed On The Open Web (10 mar) https://gizmodo.com/whisper-an-app-for-sharing-secrets-left-its-user-data-1842240367

Dutch government loses hard drives with data of 6.9 million registered donors (11 mar) https://www.zdnet.com/article/dutch-government-loses-hard-drives-with-data-of-6-9-million-registered-donors/

Datainspektionen utfärdar sanktionsavgift mot Google (11 mar) https://www.datainspektionen.se/nyheter/datainspektionen-utfardar-sanktionsavgift-mot-google/

Datainspektionen lanserar e-tjänst för personuppgiftsincidenter (12 mar) https://www.datainspektionen.se/nyheter/e-tjanst/

Researchers accidentally solve decades-old puzzle that could help create quantum computers (12 mar) https://www.independent.co.uk/life-style/gadgets-and-tech/news/quantum-computers-puzzle-sensors-nucleus-atom-a9394901.html

CERT-SE i veckan

Flera kritiska sårbarheter i SAP-produkter

Kritiska sårbarheter i flera VMware-produkter

Kritisk sårbarhet i SMBv3 (uppdaterad 2020-03-12)

Microsofts säkerhetsuppdateringar för mars

Allvarliga sårbarheter i Cisco Webex-produkter