![[CERT-SE]](/static/img/cert-se.svg)
![[MSB]](/static/img/msb.svg)
Publicerad
CERT-SE:s veckobrev v.42
Efter en grå vecka kommer äntligen ljuset i form av CERT-SE:s veckobrev! Trevlig helg!
Nyheter i veckan
'Collapse OS' Is an Open Source Operating System for the Post-Apocalypse
https://www.vice.com/en_us/article/ywaqbg/collapse-os-is-an-open-source-operating-system-for-the-post-apocalypse
Simjacker - Frequently Asked Questions and Demos
https://www.adaptivemobile.com/blog/simjacker-frequently-asked-questions
We, Wall, we, Wall, Raku: Perl creator blesses new name for version 6 of text-wrangling lingo
https://www.theregister.co.uk/2019/10/11/perl_6_raku_larry_wall/
The top ten password-cracking techniques used by hackers
https://www.itpro.co.uk/security/34616/the-top-ten-password-cracking-techniques-used-by-hackers
Huge fan of your work; How turbine panda and Chinas top spies enabled Beijing to cut corners on the C919 passenger jet
https://www.crowdstrike.com/resources/wp-content/brochures/reports/huge-fan-of-your-work-intelligence-report.pdf
Update now! Windows users targeted by iTunes Software Updater zero-day
https://nakedsecurity.sophos.com/2019/10/15/update-now-windows-users-targeted-by-itunes-software-updater-zero-day/
M6, one of France's biggest TV channels, hit by ransomware
https://www.zdnet.com/article/m6-one-of-frances-biggest-tv-channels-hit-by-ransomware/
Subtle facial recognition technology
https://www.electronicsweekly.com/news/business/712929-2019-10/
Cyber threats to consider this Cyber Security Month
https://www.itproportal.com/features/cyber-threats-to-consider-this-cyber-security-month/
1 in 5 IT security professionals fear their connected toilets will be hacked
https://www.zdnet.com/article/1-in-5-it-professionals-fear-their-connected-toilets-will-be-hacked/
Omfattande översyn av Skolplattformen inleds
https://www.dn.se/sthlm/omfattande-oversyn-av-skolplattformen-inleds/
APT trends report Q3 2019
https://securelist.com/apt-trends-report-q3-2019/94530/
Malicious Payloads - Hiding Beneath the WAV
https://threatvector.cylance.com/en_us/home/malicious-payloads-hiding-beneath-the-wav.html
Security researcher publishes proof-of-concept code for recent Android zero-day
https://www.zdnet.com/article/security-researcher-publishes-proof-of-concept-code-for-recent-android-zero-day/
Yubico Login for Windows Now Generally Available
https://www.yubico.com/2019/10/yubico-login-for-windows-now-generally-available/
Unpatched Linux bug may open devices to serious attacks over Wi-Fi
https://arstechnica.com/information-technology/2019/10/unpatched-linux-flaw-may-let-attackers-crash-or-compromise-nearby-devices/
The Earliest Unix Code: An Anniversary Source Code Release
https://computerhistory.org/blog/the-earliest-unix-code-an-anniversary-source-code-release/
Phishing e-mail spoofing SPF-enabled domain
https://isc.sans.edu/diary/Phishing+e-mail+spoofing+SPF-enabled+domain/25426
Operation Ghost: The Dukes aren’t back – they never left
https://www.welivesecurity.com/2019/10/17/operation-ghost-dukes-never-left/
Checkrain fake iOS jailbreak leads to click fraud
https://blog.talosintelligence.com/2019/10/checkrain-click-fraud.html
Is Emotet gang targeting companies with external SOC?
https://marcoramilli.com/2019/10/14/is-emotet-gang-targeting-companies-with-external-soc/
Blackremote: Money Money Money – A Swedish Actor Peddles an Expensive New RAT
https://unit42.paloaltonetworks.com/blackremote-money-money-money-a-swedish-actor-peddles-an-expensive-new-rat/
CERT-SE i veckan
Risk för informationsläckage via program
Säkerhetsuppdateringar för Adobe-produkter