Som du ser är vår webbplats inte anpassad för äldre webbläsare. Vi rekommenderar att du uppgraderar till en nyare webbläsare.

Publicerad - Veckobrev

CERT-SE:s veckobrev v.25

Den här veckan kommer nyhetsbrevet en dag tidigt så alla hinner förkovra sig innan helgens festligheter!

Trevlig midsommarhelg önskar CERT-SE.

Nyheter i veckan

Linux worm spreading via Exim servers hit Azure customers
https://securityaffairs.co/wordpress/87168/hacking/linux-worm-exim-servers.html

Houdini malware targets victims with keylogger, online bank account theft tools
https://www.zdnet.com/article/new-houdini-malware-targets-banks-with-keylogger-browser-credential-theft/

Cellebrite: Vi kan hacka alla Iphone och Ipad med IOS 12.3
https://macworld.idg.se/2.1038/1.720346/cellebrite-vi-kan-hacka-alla-iphone-och-ipad-med-ios-123

Digital Forensics and Incident Response
https://jpminty.github.io/cheatsheet/DFIR/

Behöver du hjälp att låsa upp ditt digitala liv utan att betala dina angripare?
https://www.nomoreransom.org/sv/index.html

Just released: fourth decryption tool neutralises latest version of GandCrab ransomware.
https://www.europol.europa.eu/newsroom/news/just-released-fourth-decryption-tool-neutralises-latest-version-of-gandcrab-ransomware

Samsung urges TV owners to check for viruses
https://www.which.co.uk/news/2019/06/samsung-urges-tv-owners-to-check-for-viruses/

New Plurox malware is a backdoor, cryptominer, and worm, all packed into one
https://www.zdnet.com/article/new-plurox-malware-is-a-backdoor-cryptominer-and-worm-all-packed-into-one/

Ryuk Ransomware Adds IP and Computer Name Blacklisting
https://www.bleepingcomputer.com/news/security/ryuk-ransomware-adds-ip-and-computer-name-blacklisting/

Google to reimplement curl in libcrurl
https://daniel.haxx.se/blog/2019/06/19/google-to-reimplement-curl-in-libcrurl/

Florida City to Pay $600,000 to Hackers After Ransomware Attack
https://www.pcmag.com/news/369122/florida-city-to-pay-600-000-to-hackers-after-ransomware-att

Consumers Urged to Junk Insecure IoT Devices
https://threatpost.com/consumers-urged-to-junk-insecure-iot-devices/145800/

Using URLhaus as a Response Policy Zone (RPZ)
https://abuse.ch/blog/using-urlhaus-as-response-policy-zone-rpz/

A rogue Raspberry Pi helped hackers access NASA JPL systems
https://www.engadget.com/2019/06/20/nasa-jpl-cybersecurity-weaknesses/

Nytt avsnitt av FRA:s cyberförsvarspodd - Den röda drottningen
https://cyberforsvarspodden.podbean.com/e/den-roda-drottningen/

IoT special - Hur man fabriksåterställer "smarta" lampor...

How to: Reset C by GE Light Bulbs
How to reset a TRÅDFRI light bulb
How To Factory Reset MagicLight Bulb
How to Reset Your SYLVANIA SMART+ Bulb or Accessory
Xiaomi Yeelight Class #01 How To Reset Your Smart Color Bulb!

Orelaterad kuriosa

Two potentially life-friendly planets found orbiting a nearby star
https://www.nationalgeographic.com/science/2019/06/two-potentially-life-friendly-planets-found-12-light-years-away-teegardens-star/

Restoring the computer that put man on the Moon (youtube)
https://www.youtube.com/watch?v=2KSahAoOLdU

Minivac 601 Replica (Version 0.9)
https://www.instructables.com/id/Minivac-601-Replica-Version-09/

Vintage Apple TV and Alexa
https://boingboing.net/2019/06/13/vintage-apple-tv-and-alexa.html

CERT-SE i veckan

Information om it-incidentrapportering på nya msb.se

Kritisk sårbarhet i Oracle WebLogic Server

Sårbarheter i Cisco-produkter

Kritisk sårbarhet i Firefox

Sårbarhet i Exim (uppdaterad)

Sårbarheter i Linux och FreeBSD