Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.19

I veckans nyhetsflöde syns flera fall av ransomware och dataintrång. Dessutom blir det en hel del lite mer tekniska artiklar, lite goda råd från NCSC-UK och annat gott och blandat.

Trevlig helg önskar CERT-SE!

Nyheter i veckan

Software security starts with the developer: Securing developer accounts with 2FA (4 maj)

Ransomware Payments: Just 46% of Victims Now Pay a Ransom (5 maj)

Förstärkt samverkan gällande it-incidenter (5 maj)

Russia hammered by pro-Ukrainian hackers following invasion (6 maj)

Data breach Discovered at IKEA Canada impacts 95,000 Customers (6 maj)

AGCO Announces Ransomware Attack (6 maj)

Reward Offers for Information to Bring Conti Ransomware Variant Co-Conspirators to Justice (6 maj)

Apple, Google and Microsoft Commit to Expanded Support for FIDO Standard to Accelerate Availability of Passwordless Sign-Ins (5 maj)
Your Phone May Soon Replace Many of Your Passwords (7 maj)

India's ongoing outrage over Pegasus malware tells a bigger story about privacy law problems (8 maj)

Illinois college, hit by ransomware attack, to shut down (9 maj)

Sällsynt med cyberattacker under falsk flagg (9 maj)

Costa Rica declares national emergency after Conti ransomware attacks (9 maj)
Undantagstillstånd efter hackerattack i Costa Rica (12 maj)

Ransomware has gone down because sanctions against Russia are making life harder for attackers (10 maj)

Russia behind cyber-attack with Europe-wide impact an hour before Ukraine invasion (10 maj)

Healthcare Technology Provider Omnicell Discloses Ransomware Attack (11 maj)

21 Million Records of VPN Users Leaked on Telegram (11 maj)

Protecting Against Cyber Threats to Managed Service Providers and their Customers (11 maj)

Eternity malware kit offers stealer, miner, worm, ransomware tools (12 maj)

Russia is after YOUR personal data: Experts warn internet users not to download latest online craze New Profile Pic that hoovers up your details and sends them to Moscow (12 maj)

Oklahoma City Indian Clinic Data Breach Affects 40,000 Individuals (12 maj)

Emotet rockets to the top of the malware charts in Q1 (13 maj)
HP Wolf Security Threat Insights Report Q1 2022 (12 maj)

Lite mer tekniskt

Operation CuckooBees: Cybereason Uncovers Massive Chinese Intellectual Property Theft Operation (4 maj)

Raspberry Robin gets the worm early (5 maj)

BPFDoor — an active Chinese global surveillance tool (7 maj)

Examining the Black Basta Ransomware’s Infection Routine (9 maj)

REvil Development Adds Confidence About GOLD SOUTHFIELD Reemergence (9 maj)

npm supply chain attack targets Germany-based companies with dangerous backdoor malware (10 maj)

APT34 targets Jordan Government using new Saitama backdoor (10 maj)
Please Confirm You Received Our APT (11 maj)

Info-stealer Campaign targets German Car Dealerships and Manufacturers (10 maj)

Nerbian RAT Using COVID-19 Themes Features Sophisticated Evasion Techniques (11 maj)

Massive WordPress JavaScript Injection Campaign Redirects to Ads (11 maj)

COBALT MIRAGE Conducts Ransomware Operations in U.S. (12 maj)

Network Footprints of Gamaredon Group (12 maj)

Informationssäkerhet och blandat

DN Debatt. ”Bank-id och e-legitimation behöver få statlig tillsyn” (8 maj)

Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself (9 maj)

UK joins international cyber agency partners to release supply chain guidance (11 maj)

Relaunching the NCSC's Cloud security guidance collection (12 maj)

Why are DDoS attacks so easy to launch and so hard to defend against? (13 maj)

CERT-SE i veckan

Flera sårbarheter i SAP-produkter

Kritiska sårbarheter i F5 Networks-produkter (uppdaterad 2022-05-11)

Adobes månatliga säkerhetsuppdateringar för maj

Microsofts månatliga säkerhetsuppdateringar för maj 2022

SMS-trojanen FluBot är aktiv igen (uppdaterad 2022-05-09)