CERT-SE:s veckobrev v.24

Veckobrev

Mycket ransomware i veckans nyhetsflöde. Bland annat har vi på CERT-SE, tillsammans med ett antal andra myndigheter, tagit fram rekommendationer för hälso- och sjukvårdssektorn, där fokus ligger på förebyggande åtgärder mot ransomware. Trevlig helg!

Nyheter i veckan

Fake ransomware decryptor double-encrypts desperate victims’ files (6 jun) https://www.bleepingcomputer.com/news/security/fake-ransomware-decryptor-double-encrypts-desperate-victims-files/

Honda Seems To Be The Victim Of A Ransomware Attack (8 jun) https://jalopnik.com/honda-seems-to-be-the-victim-of-a-ransomware-attack-1843953940 ..
https://www.reuters.com/article/us-honda-cyber/honda-hit-by-cyber-attack-some-production-disrupted-idUSKBN23G1CI

DNS Norway – Svindel og tull! (9 jun) https://www.internetsweden.se/dns-norway-svindel-og-tull/

Valak malware gets new plugin to steal Outlook login credentials (9 jun) https://www.bleepingcomputer.com/news/security/valak-malware-gets-new-plugin-to-steal-outlook-login-credentials/

Skatteverket får kritik från internrevisorer (10 jun) https://www.publikt.se/nyhet/skatteverket-far-kritik-fran-internrevisorer-22421

Fake Black Lives Matter voting campaign spreads Trickbot malware (10 jun) https://www.bleepingcomputer.com/news/security/fake-black-lives-matter-voting-campaign-spreads-trickbot-malware/

What is a botnet? (10 jun) https://www.itpro.co.uk/botnets/1644/what-is-a-botnet

How Does A Brute Force Attack Work and How to Keep Your Organization Safe (10 jun) https://heimdalsecurity.com/blog/brute-force-attack/

Intel CPUs Vulnerable to New ‘SGAxe’ and ‘CrossTalk’ Side-Channel Attacks (10 jun) https://thehackernews.com/2020/06/intel-sgaxe-crosstalk-attacks.html

Öka motståndskraften mot ransomware-attacker (11 jun) https://www.msb.se/sv/aktuellt/nyheter/2020/juni/oka-motstandskraften-mot-ransomware-attacker2/

Business E-mail Compromise Survey Report (11 jun) https://www.jpcert.or.jp/english/pub/sr/BEC-survey.html

Behind the Data: Analyzing the SOC Findings from RSA Conference 2020 (11 jun) https://www.rsa.com/en-us/blog/2020-06/behind-the-data–analyzing-the-soc-findings-from-rsa-conference-

Microsoft discovers cryptomining campaign targeting Kubeflow tool for Kubernetes clusters (11 jun) https://securityaffairs.co/wordpress/104618/cyber-crime/cryptomining-campaign-targets-kubernetes-kubeflow.html

What is the true extent of the modern corporate digital attack surface? (12 jun) https://www.helpnetsecurity.com/2020/06/12/modern-corporate-digital-attack-surface/

Informationssäkerhet och blandat

Phishing Attack Targeted German COVID-19 Task Force Firm (9 jun) https://www.bankinfosecurity.com/phishing-attack-targeted-german-covid-19-task-force-firm-a-14408

WhatsApp exposed users’ phone numbers in Google search results (10 jun) https://www.itpro.co.uk/security/privacy/356000/whatsapp-exposed-users-phone-numbers-in-google-search-results

‘Hack-for-hire’ group Dark Basin targets thousands of high profile individuals over seven years (10 jun) https://www.scmagazineuk.com/hack-for-hire-group-dark-basin-targets-thousands-high-profile-individuals-seven-years/article/1685852

Honeypot study: Unsecured database simulation attacked 18x per day on average (10 jun) https://www.scmagazine.com/home/security-news/honeypot-study-unsecured-database-simulation-attacked-18x-per-day-on-average/

Datainspektionen granskar incident hos Tullverket (11 jun) https://www.datainspektionen.se/nyheter/datainspektionen-granskar-incident-hos-tullverket/

FBI warns about cybercriminals exploiting mobile banking apps (11 jun) https://www.techrepublic.com/article/fbi-warns-about-cybercriminals-exploiting-mobile-banking-apps/

Cybersecurity pros are working harder than ever during the pandemic (11 jun) https://www.techrepublic.com/article/cybersecurity-pros-are-working-harder-than-ever-during-the-pandemic/

Protocol Vulnerability Threatens Mobile Networks (11 jun) https://www.darkreading.com/vulnerabilities—threats/protocol-vulnerability-threatens-mobile-networks/d/d-id/1338068

How Google is combatting coronavirus-related cyberthreats (11 jun) https://www.techrepublic.com/article/how-google-is-combatting-coronavirus-related-cyberthreats/

Bankerna cybersäkras (11 jun) https://www.voister.se/artikel/2020/06/bankerna-cybersakras/ ..
https://www.pwc.se/sv/cyber-security/cyberhot-trender.html

CERT-SE i veckan

Sårbarhet i FasterXML Jackson-databind

Öka motståndskraften mot ransomware

Månatliga säkerhetsuppdateringar från Microsoft och Adobe

Allvarlig sårbarhet i UPnP-enheter