![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Publicerad
CERT-SE:s veckobrev v.28
Här kommer ett somrigt veckobrev!
Soliga hälsningar från CERT-SE.
Nyheter i veckan
Hackers Using Stolen D-Link Certificates for Malware Signing
https://www.securityweek.com/hackers-using-stolen-d-link-certificates-malware-signing
Ham-designed Gear Used in Thailand Cave Rescue
https://hackaday.com/2018/07/11/ham-designed-gear-used-in-thailand-cave-rescue/
Internet Transit Providers Disconnect Infamous "BGP Hijack Factory"
https://www.bleepingcomputer.com/news/security/internet-transit-providers-disconnect-infamous-bgp-hijack-factory/
The Hacker-powered Security Report 2018
https://www.hackerone.com/sites/default/files/2018-07/The%20Hacker-Powered%20Security%20Report%202018.pdf
Advanced Mobile Malware Campaign in India uses Malicious MDM
https://blog.talosintelligence.com/2018/07/Mobile-Malware-Campaign-uses-Malicious-MDM.html
After Strava, Polar is Revealing the Homes of Soldiers and Spies
https://www.bellingcat.com/resources/articles/2018/07/08/strava-polar-revealing-homes-soldiers-spies/
How to search for Open Amazon s3 Buckets and their contents
https://medium.com/@grayhatwarfare/how-to-search-for-open-amazon-s3-buckets-and-their-contents-https-buckets-grayhatwarfare-com-577b7b437e01
NCSC-UK Guidance, Minimum Cyber Security Standard
https://www.gov.uk/government/publications/the-minimum-cyber-security-standard
Teardown Of USB Fan Reveals Journalists’ Lack Of Opsec
https://hackaday.com/2018/07/11/teardown-of-usb-fan-reveals-journalists-lack-of-opsec/
Your Google phone will soon screen nuisance calls
https://nakedsecurity.sophos.com/2018/07/12/your-google-phone-will-soon-screen-nuisance-calls/
Sextortion Scam Uses Recipient’s Hacked Passwords
https://krebsonsecurity.com/2018/07/sextortion-scam-uses-recipients-hacked-passwords/
Experts warn DeepFakes could influence 2020 US election
https://thenextweb.com/artificial-intelligence/2018/07/13/experts-warn-deepfakes-could-influence-2020-us-election/
'Data is a fingerprint': why you aren't as anonymous as you think online
https://www.theguardian.com/world/2018/jul/13/anonymous-browsing-data-medical-records-identity-privacy
Malicious Software Packages Found On Arch Linux User Repository
https://thehackernews.com/2018/07/arch-linux-aur-malware.html
Compromised JavaScript Package Caught Stealing npm Credentials
https://www.bleepingcomputer.com/news/security/compromised-javascript-package-caught-stealing-npm-credentials/
CERT-SE i veckan
Kritiska sårbaheter i Juniper-produkter
Kritiska sårbarheter i Adobe-produkter