CERT-SE:s veckobrev v.15

Veckobrev

Ett påskägg kommer laddat med nyheter från CERT-SE. Mycket Covid-19 även denna vecka, men vi har också grävt fram lite annat matnyttigt. Glad påsk!

Nyheter i veckan

Crave the Data: Statistics from 1,300 Phishing Campaigns (3 apr) https://research.nccgroup.com/2020/04/03/crave-the-data-statistics-from-1300-phishing-campaigns/

Analys: Storebror skyddar dig (5 apr) https://www.svt.se/nyheter/utrikes/analys-storebror-skyddar-dig

FRA söker underrättelseanalytiker till Cyberförsvaret med en ny utmaning (6 apr) https://challenge.fra.se/

Cyberbunker: Staatsanwaltschaft erhebt Anklage gegen Betreiber Cyber ​​bunker (“Cyberbunker: åklagare anklagar operatörer”, artikel på tyska) (7 apr) https://www.heise.de/newsticker/meldung/Cyberbunker-Staatsanwaltschaft-erhebt-Anklage-gegen-Betreiber-4698785.html

Stolen Zoom passwords and meeting IDs are already being shared on the dark web (8 apr) https://mashable.com/article/stolen-zoom-passwords-dark-web/?europe=true

NASA facing rise in cyberattacks (8 apr) https://www.itproportal.com/news/nasa-facing-rise-in-cyberattacks/ ..
https://www.bleepingcomputer.com/news/security/nasa-under-significantly-increasing-hacking-phishing-attacks/

A Cheap 3D Printer Can Trick Smartphone Fingerprint Locks (8 apr) https://www.wired.com/story/cheap-3d-printer-trick-smartphone-fingerprint-locks/

Auditing Cloud Administrator Behavior as a Matter of Data Breach Preparedness (8 apr) https://www.tripwire.com/state-of-security/security-data-protection/cloud/auditing-cloud-administrator-behavior-data-breach-preparedness/

Hackers Have Targeted Linux Servers for Years: Report (8 apr) https://www.bankinfosecurity.com/hackers-have-targeted-linux-servers-for-years-report-a-14082

Microsoft Exchange: 355,000 Servers Lack Critical Patch (8 apr) https://www.bankinfosecurity.com/microsoft-exchange-355000-servers-lack-critical-patch-a-14079

Corona-relaterat

What COVID-19 Means for Network Security (2 apr) https://labs.ripe.net/Members/gary_stevens_1/what-covid-19-means-for-network-security ..
https://blog.checkpoint.com/2020/03/05/update-coronavirus-themed-domains-50-more-likely-to-be-malicious-than-other-domains/

Interpol warns of more ransomware attacks against healthcare sector (6 apr) https://www.computerweekly.com/news/252481182/Interpol-warns-of-more-ransomware-attacks-against-healthcare-sector

Försvarsmakten: Säkerhetsrisker och desinformation (6 apr) https://www.forsvarsmakten.se/sv/aktuellt/2020/04/sakerhetsrisker-och-desinformation/

COVID-19: Protecting Your Small Business (6 apr) https://www.cyber.gov.au/advice/covid-19-protecting-your-small-business ..
https://www.cyber.gov.au/publications/web-conferencing-security

After Adopting COVID-19 Lures, Sophisticated Groups Target Remote Workers (8 apr) https://www.darkreading.com/threat-intelligence/after-adopting-covid-19-lures-sophisticated-groups-target-remote-workers/d/d-id/1337523

Interpol warns hospitals about COVID-19-based ransomware threat (8 apr) https://www.scmagazine.com/home/security-news/news-archive/coronavirus/interpol-warns-hospitals-about-covid-19-based-ransomware-threat/

Limited Shifts in the Cyber Threat Landscape Driven by COVID-19 (8 apr) https://www.fireeye.com/blog/threat-research/2020/04/limited-shifts-in-cyber-threat-landscape-driven-by-covid-19.html

Informationssäkerhet och blandat

Crave the Data: Statistics from 1,300 Phishing Campaigns (3 apr) https://research.nccgroup.com/2020/04/03/crave-the-data-statistics-from-1300-phishing-campaigns/

Russian telco hijacks internet traffic for Google, AWS, Cloudflare, and others (5 apr) https://www.zdnet.com/article/russian-telco-hijacks-internet-traffic-for-google-aws-cloudflare-and-others/

Riksrevisionens rapport om risker med föråldrade it-system i statsförvaltningen (8 apr) https://www.riksdagen.se/sv/dokument-lagar/arende/betankande/riksrevisionens-rapport-om-risker-med-foraldrade_H701FiU35

Top 10 Hacks & Attacks from 2019 (8 apr) https://blog.sucuri.net/2020/04/top-10-hacks-attacks-2019.html

CERT-SE i veckan

Aktiva skanningar efter sårbara Microsoft Exchange-servrar