![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Publicerad
CERT-SE:s veckobrev v.23
Vi firar sommar, sol, nationaldag och studenten med en samling av intressanta länkar.
Nyheter i veckan
Next steps in privacy-preserving Telemetry with Prio
https://blog.mozilla.org/security/2019/06/06/next-steps-in-privacy-preserving-telemetry-with-prio/
New attack creates ghost taps on modern Android smartphones
https://www.zdnet.com/article/new-attack-creates-ghost-taps-on-modern-android-smartphones/
BlackSquid Slithers Into Servers and Drives With 8 Notorious Exploits to Drop XMRig Miner
https://blog.trendmicro.com/trendlabs-security-intelligence/blacksquid-slithers-into-servers-and-drives-with-8-notorious-exploits-to-drop-xmrig-miner/
Feds Make New Arrest in Darkode Case
https://www.darkreading.com/threat-intelligence/feds-make-new-arrest-in-darkode-case/d/d-id/1334904
LabCorp: 7.7 Million Consumers Hit in Collections Firm Breach
https://krebsonsecurity.com/2019/06/labcorp-7-7m-consumers-hit-in-collections-firm-breach/
GandCrab ransomware operation says it's shutting down
https://www.zdnet.com/article/gandcrab-ransomware-operation-says-its-shutting-down/
Researcher Exploits Microsoft’s Notepad to ‘Pop a Shell’
https://threatpost.com/researcher-exploits-microsofts-notepad-to-pop-a-shell/145242/
Vulnerabilities in Phishing Kits
https://blogs.akamai.com/sitr/2019/06/identifying-vulnerabilities-in-phishing-kits.html
Google’s Cloud outage is resolved, but it reveals the holes in cloud computing’s atmosphere
https://techcrunch.com/2019/06/02/googles-cloud-outage-is-resolved-but-it-reveals-the-holes-in-cloud-computings-atmosphere/
Mobile SIGINT Hacking on a Civilian’s Budget
https://hackaday.com/2019/06/05/mobile-sigint-hacking-on-a-civilians-budget/
LibreOffice Will No Longer Provide 32-bit Linux Binaries
https://www.bleepingcomputer.com/news/software/libreoffice-will-no-longer-provide-32-bit-linux-binaries/
Bluekeep (CVE-2019-0708) - special part II
NSA Cybersecurity Advisory: Patch Remote Desktop Services on Legacy Versions of Windows
https://www.nsa.gov/News-Features/News-Stories/Article-View/Article/1865726/nsa-cybersecurity-advisory-patch-remote-desktop-services-on-legacy-versions-of/
MetaSploit Module Created for BlueKeep Flaw, Private for Now
https://www.bleepingcomputer.com/news/security/metasploit-module-created-for-bluekeep-flaw-private-for-now/