CERT-SE:s veckobrev v.15
Ett påskägg kommer laddat med nyheter från CERT-SE. Mycket Covid-19 även denna vecka, men vi har också grävt fram lite annat matnyttigt. Glad påsk!
Nyheter i veckan
Crave the Data: Statistics from 1,300 Phishing Campaigns (3 apr) https://research.nccgroup.com/2020/04/03/crave-the-data-statistics-from-1300-phishing-campaigns/
Analys: Storebror skyddar dig (5 apr) https://www.svt.se/nyheter/utrikes/analys-storebror-skyddar-dig
FRA söker underrättelseanalytiker till Cyberförsvaret med en ny utmaning (6 apr) https://challenge.fra.se/
Cyberbunker: Staatsanwaltschaft erhebt Anklage gegen Betreiber Cyber bunker (“Cyberbunker: åklagare anklagar operatörer”, artikel på tyska) (7 apr) https://www.heise.de/newsticker/meldung/Cyberbunker-Staatsanwaltschaft-erhebt-Anklage-gegen-Betreiber-4698785.html
Stolen Zoom passwords and meeting IDs are already being shared on the dark web (8 apr) https://mashable.com/article/stolen-zoom-passwords-dark-web/?europe=true
NASA facing rise in cyberattacks (8 apr)
https://www.itproportal.com/news/nasa-facing-rise-in-cyberattacks/
..
https://www.bleepingcomputer.com/news/security/nasa-under-significantly-increasing-hacking-phishing-attacks/
A Cheap 3D Printer Can Trick Smartphone Fingerprint Locks (8 apr) https://www.wired.com/story/cheap-3d-printer-trick-smartphone-fingerprint-locks/
Auditing Cloud Administrator Behavior as a Matter of Data Breach Preparedness (8 apr) https://www.tripwire.com/state-of-security/security-data-protection/cloud/auditing-cloud-administrator-behavior-data-breach-preparedness/
Hackers Have Targeted Linux Servers for Years: Report (8 apr) https://www.bankinfosecurity.com/hackers-have-targeted-linux-servers-for-years-report-a-14082
Microsoft Exchange: 355,000 Servers Lack Critical Patch (8 apr) https://www.bankinfosecurity.com/microsoft-exchange-355000-servers-lack-critical-patch-a-14079
Corona-relaterat
What COVID-19 Means for Network Security (2 apr)
https://labs.ripe.net/Members/gary_stevens_1/what-covid-19-means-for-network-security
..
https://blog.checkpoint.com/2020/03/05/update-coronavirus-themed-domains-50-more-likely-to-be-malicious-than-other-domains/
Interpol warns of more ransomware attacks against healthcare sector (6 apr) https://www.computerweekly.com/news/252481182/Interpol-warns-of-more-ransomware-attacks-against-healthcare-sector
Försvarsmakten: Säkerhetsrisker och desinformation (6 apr) https://www.forsvarsmakten.se/sv/aktuellt/2020/04/sakerhetsrisker-och-desinformation/
COVID-19: Protecting Your Small Business (6 apr)
https://www.cyber.gov.au/advice/covid-19-protecting-your-small-business
..
https://www.cyber.gov.au/publications/web-conferencing-security
After Adopting COVID-19 Lures, Sophisticated Groups Target Remote Workers (8 apr) https://www.darkreading.com/threat-intelligence/after-adopting-covid-19-lures-sophisticated-groups-target-remote-workers/d/d-id/1337523
Interpol warns hospitals about COVID-19-based ransomware threat (8 apr) https://www.scmagazine.com/home/security-news/news-archive/coronavirus/interpol-warns-hospitals-about-covid-19-based-ransomware-threat/
Limited Shifts in the Cyber Threat Landscape Driven by COVID-19 (8 apr) https://www.fireeye.com/blog/threat-research/2020/04/limited-shifts-in-cyber-threat-landscape-driven-by-covid-19.html
Informationssäkerhet och blandat
Crave the Data: Statistics from 1,300 Phishing Campaigns (3 apr) https://research.nccgroup.com/2020/04/03/crave-the-data-statistics-from-1300-phishing-campaigns/
Russian telco hijacks internet traffic for Google, AWS, Cloudflare, and others (5 apr) https://www.zdnet.com/article/russian-telco-hijacks-internet-traffic-for-google-aws-cloudflare-and-others/
Riksrevisionens rapport om risker med föråldrade it-system i statsförvaltningen (8 apr) https://www.riksdagen.se/sv/dokument-lagar/arende/betankande/riksrevisionens-rapport-om-risker-med-foraldrade_H701FiU35
Top 10 Hacks & Attacks from 2019 (8 apr) https://blog.sucuri.net/2020/04/top-10-hacks-attacks-2019.html