CERT-SE:s veckobrev v.14

Veckobrev

Under veckan har det skrivits om två större läckor från sociala medier. Förra veckan angreps även flera EU-institutioner och det rapporterades om problem med alkolås. Den här helgen är det dags för Midnight Sun CTF, Sveriges största internationella cybersäkerhetstävling. För den som vill ha en utmaning är det fortfarande möjligt att anmäla sig, länken hittar ni under Informationssäkerhet och blandat.

Trevlig helg önskar CERT-SE!

Nyheter i veckan

Vd:n efter alkolåshaveriet: ”Misstänkt cyberattack bakom” (1 apr) https://sverigesradio.se/artikel/mangder-av-fordon-star-stilla-efter-omfattande-alkolashaveri

Facebookanvändare varnas för bedrägeriförsök: ”Var extra vaksam” (5 apr) https://www.tv4.se/artikel/4kO86t7sBhdHvr9I3x3dx7/facebookanvaendare-varnas-foer-bedraegerifoersoek-var-extra-vaksam

Så förvandlades Trump till en svensk kvinna – deepfakes rubbar vår tro på rörliga bilder (5 apr) https://www.dn.se/kultur/sa-forvandlades-trump-till-en-svensk-kvinna-deepfakes-rubbar-var-tro-pa-rorliga-bilder/

European Institutions Were Targeted in a Cyber-Attack Last Week (6 apr) https://www.bloomberg.com/news/articles/2021-04-06/european-institutions-were-targeted-in-a-cyber-attack-last-week

Imagine your data center backup generator kicks in during power outage … and catches fire. Well, it happened (6 apr) https://www.theregister.com/2021/04/06/webnx_data_fire/

Bug allows attackers to hijack Windows time sync software used to track security incidents (6 apr) https://www.scmagazine.com/home/security-news/bug-allows-attackers-to-hijack-windows-time-sync-software-used-to-track-security-incidents/

Facebook says a breach that hit 533m is old news. Experts disagree (6 apr) https://www.theguardian.com/technology/2021/apr/06/facebook-breach-data-leak .. Facebook does not plan to notify half-billion users affected by data leak (7 apr) https://www.reuters.com/article/us-facebook-data-leak-idUSKBN2BU2ZY

Fake Netflix App Luring Android Users to Malware (7 apr) https://www.securityweek.com/fake-netflix-app-luring-android-users-malware

Vulnerability in Fortigate VPN servers is exploited in Cring ransomware attacks (7 apr) https://ics-cert.kaspersky.com/reports/2021/04/07/vulnerability-in-fortigate-vpn-servers-is-exploited-in-cring-ransomware-attacks/

A new supply chain attack made the headlines, threat actors compromised at least one update server of smartphone maker Gigaset to deliver malware. (7 apr) https://securityaffairs.co/wordpress/116450/cyber-crime/gigaset-malware-supply-chain-attack.html

Hackers are abusing Discord, Slack file-sharing to distribute malware (7 apr) https://www.cyberscoop.com/hackers-discord-slack-file-sharing-malware/

Ziggy Ransomware Gang Offers Victims Ransom Refunds (7 apr) https://www.bankinfosecurity.com/ziggy-ransomware-gang-offers-victims-ransom-refunds-a-16354

Cybercriminals are using Telegram bots, Google Forms to gather stolen user data (8 apr) https://www.helpnetsecurity.com/2021/04/08/gather-stolen-user-data/

What goes around comes around: hackers leak other hackers’ data online (8 apr) https://www.group-ib.com/media/swarmshop-breach/

Post-Ransomware Response: Victim Says ‘Do the Right Thing’ (8 apr) https://www.bankinfosecurity.com/blogs/post-ransomware-response-victim-says-do-right-thing-p-3013

500 million LinkedIn users’ data is for sale on a hacker site (8 apr) https://edition.cnn.com/2021/04/08/tech/linkedin-data-scraped-hacker-site/

Pets’ names used as passwords by millions, study finds (9 apr) https://www.bbc.com/news/technology-56680790

Informationssäkerhet och blandat

Midnight Sun CTF 2021 https://www.midnightsunctf.se/

Get the 2021 Security Awareness ReportT: Managing Human Cyber Risk https://www.sans.org/security-awareness-training/resources/reports/sareport-2021/

2021 Brings new security challenges and regulations for European CISOs (7 apr) https://www.techrepublic.com/blog/forrester/2021-brings-new-security-challenges-and-regulations-for-european-cisos/

Malicious Payloads: Defending Your Organization Beyond “Known Bad” Lists (7 apr) https://www.greathorn.com/blog-malicious-payloads-defending-your-organization-beyond-known-bad-lists/

Fear of Forgetfulness Drives Bad Password Behaviors (8 apr) https://blog.lastpass.com/2021/04/fear-of-forgetfulness-drives-bad-password-behaviors/

Integrating fuzzing into DevSecOps (8 apr) https://securityboulevard.com/2021/04/integrating-fuzzing-into-devsecops/

Don’t open that PDF email attachment - it could well be malware (8 apr) https://www.techradar.com/news/dont-open-that-pdf-email-attachment-it-could-well-be-malware

CERT-SE i veckan

Kritiska sårbarheter i flera Cisco-produkter