![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Uppdaterad | Publicerad
CERT-SE:s veckobrev v.34
Trevlig helg önskar CERT-SE
Nyheter i veckan
New multi platform malware/adware spreading via Facebook Messenger
https://securelist.com/new-multi-platform-malwareadware-spreading-via-facebook-messenger/81590/
Is Malware Hiding in Your Resume? Vulnerability in LinkedIn Messenger Would Have Allowed Malicious File Transfer
http://blog.checkpoint.com/2017/08/18/malware-hiding-resume-vulnerability-linkedin-messenger-allowed-malicious-file-transfer/
Reverse Engineering My Home Security System: Decompiling Firmware Updates
https://markclayton.github.io/reverse-engineering-my-home-security-system-decompiling-firmware-updates.html
Raspberry pi with kali linux as intercepting router
https://github.com/koenbuyens/kalirouter
Bypassing VirtualBox Process Hardening on Windows
https://googleprojectzero.blogspot.se/2017/08/bypassing-virtualbox-process-hardening.html?m=1
How to buy MacBook for $1, or hacking SAP POS
https://erpscan.com/research/hacking-sap-pos/
Vault 7: CIA used fake software update to spy on NSA, DHS, FBI
https://hotforsecurity.bitdefender.com/blog/vault-7-cia-used-fake-software-update-to-spy-on-nsa-dhs-fbi-18825.html
Touchscreens ‘at risk from chip in the middle attack’, warn researchers
https://nakedsecurity.sophos.com/2017/08/25/touchscreens-at-risk-from-chip-in-the-middle-attack-warn-researchers/
Deprecated, Insecure Apple Authorization API Can Be Abused To Run Code At Root
https://threatpost.com/deprecated-insecure-apple-authorization-api-can-be-abused-to-run-code-at-root/127618/
Android Spyware Linked to Chinese SDK Forces Google to Boot 500 Apps
https://threatpost.com/android-spyware-linked-to-chinese-sdk-forces-google-to-boot-500-apps/127585/