Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.30

Ännu en vecka har passerat, här kommer en laddning med "heta" nyheter i sommarvärmen.

Nyheter i veckan

Bluetooth Vulnerability Allows Traffic Monitoring, Manipulation
https://www.securityweek.com/bluetooth-vulnerability-allows-traffic-monitoring-manipulation

Google: Security Keys Neutralized Employee Phishing
https://krebsonsecurity.com/2018/07/google-security-keys-neutralized-employee-phishing/

Microsoft Releases PowerShell Core for Linux as a Snap Package
https://thehackernews.com/2018/07/powershell-core-linux-snap.html

Cybersecurity is Everyone’s Job
https://www.nist.gov/sites/default/files/documents/2018/06/28/nist_nice_guidebook_cybersecurity_is_everyones_job_public_comment_version_6.27.2018.pdf

Google Chrome 68 - Chrome now marks all unencrypted websites as "not secure"
https://chromereleases.googleblog.com/2018/07/stable-channel-update-for-desktop.html

Hackers Hiding Web Shell Logins in Fake HTTP Error Pages
https://www.bleepingcomputer.com/news/security/hackers-hiding-web-shell-logins-in-fake-http-error-pages/

Short Circuit: How a Robotics Vendor Exposed Confidential Data for Major Manufacturing Companies
https://www.upguard.com/breaches/short-circuit-how-a-robotics-vendor-exposed-confidential-data-for-major-manufacturing-companies

Between You, Me, and Google: Problems With Gmail's “Confidential Mode”
https://www.eff.org/deeplinks/2018/07/between-you-me-and-google-problems-gmails-confidential-mode

ProtonMail Introduces Address Verification and Full PGP Support
https://protonmail.com/blog/address-verification-pgp-support/

US makes an example of Indian call center scam artists with stiff sentences
https://www.zdnet.com/article/us-charges-makes-an-example-of-indian-call-center-scam-artists/

Red Alert 2.0: Android Trojan targets security-seekers
https://news.sophos.com/en-us/2018/07/23/red-alert-2-0-android-trojan-targets-security-seekers/

Source Code for Exobot Android Banking Trojan Leaked Online
https://www.bleepingcomputer.com/news/security/source-code-for-exobot-android-banking-trojan-leaked-online/

Adobe will kill Flash by 2020: No more updates, support, tears, pain...
https://www.theregister.co.uk/2017/07/25/flash_nahuh_internets_screen_door_gone_for_good_by_2020/

NetSpectre: Read Arbitrary Memory over Network
http://misc0110.net/web/files/netspectre.pdf

CERT-SE i veckan

Sårbarheter i Apache Tomcat