![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Publicerad
CERT-SE:s veckobrev v.34
Trevlig helg önskar CERT-SE!
Veckans axplock
Attackers could use this coding bug to turn BIG-IP load balancers against organizations
https://blog.f-secure.com/command-injection-in-f5-irules/
Microsoft Warns of Phishing Attacks Using Custom 404 Pages
https://www.bleepingcomputer.com/news/security/microsoft-warns-of-phishing-attacks-using-custom-404-pages/
Suspected North Korean Cyber Espionage Campaign Targets Multiple Foreign Ministries and Think Tanks
https://www.anomali.com/blog/suspected-north-korean-cyber-espionage-campaign-targets-multiple-foreign-ministries-and-think-tanks#When:14:00:00Z
Steam cleaned of zero-day security holes after Valve turned off by bug bounty snub outrage
https://www.theregister.co.uk/2019/08/22/valve_bug_bounty_steam_u_turn/
Annual report from National Cybersecurity Agency of France (ANSSI)
https://www.ssi.gouv.fr/uploads/2015/05/anssi_annual_report_2018_en.pdf
The Gamaredon Group: A TTP Profile Analysis
https://www.fortinet.com/blog/threat-research/gamaredon-group-ttp-profile-analysis.html
Microsoft Offers Up to $30,000 for Flaws in Chromium-Based Edge
https://www.securityweek.com/microsoft-offers-30000-flaws-chromium-based-edge
Backdoor code found in 11 Ruby libraries
https://www.zdnet.com/article/backdoor-code-found-in-11-ruby-libraries/
The Rise of “Bulletproof” Residential Networks
https://krebsonsecurity.com/2019/08/the-rise-of-bulletproof-residential-networks/
New 4CAN tool helps identify vulnerabilities in on-board car computers
https://blog.talosintelligence.com/2019/08/new-4can-tool-helps-identify.html#more
European Central Bank Shuts Down 'BIRD Portal' After Getting Hacked
https://thehackernews.com/2019/08/european-central-bank-hack.html
Emotet Botnet Is Back, Servers Active Across the World
https://www.bleepingcomputer.com/news/security/emotet-botnet-is-back-servers-active-across-the-world/