CERT-SE:s veckobrev v.32

Veckobrev

Under veckan har den finska riksdagen drabbats av en överbelastningsattack. Det har också uppmärksammats hur Cisco drabbats av ett intrång.

Trevlig helg önskar CERT-SE!

Nyheter i veckan

No SOCKS, No Shoes, No Malware Proxy Services! (2 aug)
https://krebsonsecurity.com/2022/08/no-socks-no-shoes-no-malware-proxy-services/

Brittiska underrättelsetjänsten varnar för e-röstning om ny partiledare (4 aug)
https://www.nyteknik.se/sakerhet/brittiska-underrattelsetjansten-varnar-for-e-rostning-om-ny-partiledare-7036047

More Privacy and Transparency for DuckDuckGo Web Tracking Protections (5 aug)
https://spreadprivacy.com/more-privacy-and-transparency/

Crypto Bridge Nomad Offers 10% Bounty After $190 Million Hack (5 aug)
https://www.bloomberg.com/news/articles/2022-08-05/crypto-bridge-nomad-offers-10-bounty-after-190-million-hack

Stort mörkertal för gisslanattacker - offer vill undvika uppmärksamhet (6 aug)
https://computersweden.idg.se/2.2683/1.768976/stort-morkertal-for-gisslanattacker—offer-vill-undvika-uppmarksamhet

Twitter hacker steals 5 million celebrity, company, and anonymous accounts’ personal information (9 aug)
https://www.independent.co.uk/tech/twitter-hacker-accounts-celebrity-company-anonymous-b2140501.html

An incident impacting some accounts and private information on Twitter (5 aug)
https://privacy.twitter.com/en/blog/2022/an-issue-affecting-some-anonymous-accounts

7-Eleven stores in Denmark closed due to a cyberattack (8 aug)
https://www.bleepingcomputer.com/news/security/7-eleven-stores-in-denmark-closed-due-to-a-cyberattack/

Riksdagens webbplats utsattes för rysk hackerattack – en av de mest kända hackergrupperna under kriget i Ukraina, säger expert (9 aug)
https://svenska.yle.fi/a/7-10019443

Cisco Event Response: Corporate Network Security Incident (10 aug)
https://tools.cisco.com/security/center/resources/corp_network_security_incident

Cisco Talos shares insights related to recent cyber attack on Cisco (10 aug)
https://blog.talosintelligence.com/2022/08/recent-cyber-attack.html

The Hacking of Starlink Terminals Has Begun (10 aug)
https://www.wired.com/story/starlink-internet-dish-hack/

Starlink Successfully Hacked Using $25 Modchip (11 aug)
https://threatpost.com/starlink-hack/180389/

NHS may take a month to recover from supply chain attack (11 aug)
https://www.computerweekly.com/news/252523700/NHS-may-take-a-month-to-recover-from-supply-chain-attack

Informationssäkerhet och blandat

Hi, I’ll be your ransomware negotiator today – but don’t tell the crooks that (6 aug)
https://www.theregister.com/2022/08/06/interview_ransomware_negotiator/

Aviation is facing a rising wave of cyber-attacks in the wake of COVID (8 aug)
https://www.lexology.com/library/detail.aspx?g=4c9f8862-73c4-4255-9f71-d99c19e12e4c

Number of Ransomware Attacks on Industrial Orgs Drops Following Conti Shutdown (10 aug)
https://www.securityweek.com/number-ransomware-attacks-industrial-orgs-drops-following-conti-shutdown

CISA Releases Cybersecurity Toolkit to Protect U.S. Elections (10 aug)
https://www.cisa.gov/uscert/ncas/current-activity/2022/08/10/cisa-releases-cybersecurity-toolkit-protect-us-elections

Which malware delivery techniques are currently favored by attackers? (11 aug)
https://www.helpnetsecurity.com/2022/08/11/email-malware-delivery-techniques/

#StopRansomware: Zeppelin Ransomware (11 aug)
https://www.cisa.gov/uscert/ncas/alerts/aa22-223a

Security gap: Wireless door locks from Abus can be hacked (11 aug)
https://basic-tutorials.com/news/security-gap-wireless-door-locks-from-abus-can-be-hacked/

CERT-SE i veckan

Allvarlig sårbarhet i Palo Altos PAN-OS

Kritiska sårbarheter påverkar SAP-produkter

Kritisk sårbarhet i Cisco-programvaror

Kritiska sårbarheter påverkar VMware-produkter

Microsofts månatliga säkerhetsuppdateringar för augusti 2022