CERT-SE:s veckobrev v.23
Mycket malware den här veckan, samt ett antal nya cybersäkerhetsrapporter att avnjuta. Trevlig helg, glædelig grundlovsdag 🇩🇰 och trevlig nationaldag 🇸🇪 önskar CERT-SE!
Nyheter i veckan
Haveibeenpwned.com pwned our helpdesk! GLPI 9.4.5 SQL Injection (30 maj) https://fyr.io/2020/05/30/haveibeenpwned-com-pwned-our-helpdesk-glpi-9-4-5-sql-injection/
How LoveBug changed malware forever (1 jun) https://www.itproportal.com/features/how-lovebug-changed-malware-forever/
Multilingual malware attacks on industrial sector suppliers designed to thwart detection (1 jun) https://www.scmagazine.com/home/security-news/cybercrime/multilingual-malware-attacks-on-industrial-sector-suppliers-designed-to-thwart-detection/
George Floyd: Anonymous hackers re-emerge amid US unrest (1 jun) https://www.bbc.com/news/technology-52879000
Remote workers being targeted with Google-branded cyberattacks (1 jun) https://www.sesin.at/2020/06/01/remote-workers-being-targeted-with-google-branded-cyberattacks-cyberfraud-criminal-cybersecurity-informationsecurity
Hackers revive years-old malware to exploit mass remote working (2 jun) https://www.itpro.co.uk/security/malware/355868/hackers-revive-years-old-malware-to-exploit-mass-remote-working
Cisco warns: These Nexus switches have been hit by a serious security flaw (2 jun) https://www.zdnet.com/article/cisco-warns-these-nexus-switches-have-been-hit-by-a-serious-security-flaw/
Zoom says free users won’t get end-to-end encryption so FBI and police can access calls (3 jun) https://www.theverge.com/2020/6/3/21279355/zoom-end-encryption-calls-fbi-police-free-users
Nuclear missile contractor hacked in Maze ransomware attack (4 jun) https://nakedsecurity.sophos.com/2020/06/04/nuclear-missile-contractor-hacked-in-maze-ransomware-attack/
New USBCulprit Espionage Tool Steals Data From Air-Gapped Computers (4 jun) https://thehackernews.com/2020/06/air-gap-malware-usbculprit.html
Informationssäkerhet och blandat
Employees abandoning security when working remotely (29 maj) https://www.helpnetsecurity.com/2020/05/29/abandoning-security-when-working-remotely/
Myndigheter trycker på om cyberhot (3 jun) https://www.svd.se/myndigheter-trycker-pa-om-cyberhot
Gemensam kunskap ökar Sveriges motståndskraft mot cyberhot (3 jun)
https://www.msb.se/sv/aktuellt/nyheter/2020/juni/gemensam-kunskap-okar-sveriges-motstandskraft-mot-cyberhot/
..
https://www.msb.se/contentassets/fe72c449466e4017bd76787762ab9dc5/rapport-cybersakerhet-i-sverige-2020–hot-metoder-brister-och-beroenden.pdf
..
https://www.msb.se/contentassets/fe72c449466e4017bd76787762ab9dc5/rapport-cybersakerhet-i-sverige-2020—rekommenderade-sakerhetsatgarder.pdf
Cyberkriminella utnyttjar krisläge: ”Samma sak vid tsunamin” (4 jun) https://www.svt.se/nyheter/lokalt/sormland/cyberkriminella-utnyttjar-krislage-samma-sak-vid-tsunamin
Över hälften av svenska företag utsätts för cyberattacker (5 jun) https://techworld.idg.se/2.2524/1.735827/svenska-foretag-cyberattacker
CERT-SE i veckan
Allvarlig sårbarhet i Cisco NX-OS Software
Många sårbarheter i Dell EMC SRS Virtual Edition tredjepartskomponenter