![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Publicerad
CERT-SE:s veckobrev v.30
Inget att göra i helgen? Här kommer lite lästips från CERT-SE
Nyheter i veckan
How i Hacked into a PayPal's Server - Unrestricted File Upload to Remote Code Execution
http://blog.pentestbegins.com/2017/07/21/hacking-into-paypal-server-remote-code-execution-2017/
macOS Fruitfly Backdoor Analysis Renders New Spying Capabilities
https://threatpost.com/macos-fruitfly-backdoor-analysis-renders-new-spying-capabilities/126943/
FLARE VM: The Windows Malware Analysis Distribution You’ve Always Needed!
https://www.fireeye.com/blog/threat-research/2017/07/flare-vm-the-windows-malware.html
Announcing the Windows Bounty Program
https://blogs.technet.microsoft.com/msrc/2017/07/26/announcing-the-windows-bounty-program/
Broadpwn: Remotely Compromising Android and iOS via a Bug in Broadcom’s Wi-Fi Chipsets
https://blog.exodusintel.com/2017/07/26/broadpwn/
Explained: the Dark Web
https://blog.malwarebytes.com/security-world/2017/07/explained-dark-web/
Suricata 4.0 released!
https://suricata-ids.org/2017/07/27/suricata-4-0-released/
Joomla! 3.7.4 Release
https://www.joomla.org/announcements/release-news/5710-joomla-3-7-4-release.html
BinaryAlert: Real-time Serverless Malware Detection
https://medium.com/airbnb-engineering/binaryalert-real-time-serverless-malware-detection-ca44370c1b90
MS Paint is here to stay
https://blogs.windows.com/windowsexperience/2017/07/24/ms-paint-stay/#q6kG4meRrl3DPKh2.97
Attack Uses Docker Containers To Hide, Persist, Plant Malware
https://threatpost.com/attack-uses-docker-containers-to-hide-persist-plant-malware/126992/
3 New CIA-developed Hacking Tools For MacOS & Linux Exposed
http://thehackernews.com/2017/07/linux-macos-hacking-tools.html
Don’t want your SMSs stolen? Don’t download these Android apps
https://nakedsecurity.sophos.com/2017/07/27/dont-want-your-smss-stolen-dont-download-these-android-apps/
ZFS for Linux 0.7.0 released
https://github.com/zfsonlinux/zfs/releases/tag/zfs-0.7.0
Are all BSDs created equally? A survey of BSD kernel vulnerabilities.
https://media.defcon.org/DEF%20CON%2025/DEF%20CON%2025%20presentations/DEFCON-25-Ilja-van-Sprundel-BSD-Kern-Vulns.pdf