CERT-SE:s veckobrev v.14
Under veckan har det skrivits om två större läckor från sociala medier. Förra veckan angreps även flera EU-institutioner och det rapporterades om problem med alkolås. Den här helgen är det dags för Midnight Sun CTF, Sveriges största internationella cybersäkerhetstävling. För den som vill ha en utmaning är det fortfarande möjligt att anmäla sig, länken hittar ni under Informationssäkerhet och blandat.
Trevlig helg önskar CERT-SE!
Nyheter i veckan
Vd:n efter alkolåshaveriet: ”Misstänkt cyberattack bakom” (1 apr) https://sverigesradio.se/artikel/mangder-av-fordon-star-stilla-efter-omfattande-alkolashaveri
Facebookanvändare varnas för bedrägeriförsök: ”Var extra vaksam” (5 apr) https://www.tv4.se/artikel/4kO86t7sBhdHvr9I3x3dx7/facebookanvaendare-varnas-foer-bedraegerifoersoek-var-extra-vaksam
Så förvandlades Trump till en svensk kvinna – deepfakes rubbar vår tro på rörliga bilder (5 apr) https://www.dn.se/kultur/sa-forvandlades-trump-till-en-svensk-kvinna-deepfakes-rubbar-var-tro-pa-rorliga-bilder/
European Institutions Were Targeted in a Cyber-Attack Last Week (6 apr) https://www.bloomberg.com/news/articles/2021-04-06/european-institutions-were-targeted-in-a-cyber-attack-last-week
Imagine your data center backup generator kicks in during power outage … and catches fire. Well, it happened (6 apr) https://www.theregister.com/2021/04/06/webnx_data_fire/
Bug allows attackers to hijack Windows time sync software used to track security incidents (6 apr) https://www.scmagazine.com/home/security-news/bug-allows-attackers-to-hijack-windows-time-sync-software-used-to-track-security-incidents/
Facebook says a breach that hit 533m is old news. Experts disagree (6 apr) https://www.theguardian.com/technology/2021/apr/06/facebook-breach-data-leak .. Facebook does not plan to notify half-billion users affected by data leak (7 apr) https://www.reuters.com/article/us-facebook-data-leak-idUSKBN2BU2ZY
Fake Netflix App Luring Android Users to Malware (7 apr) https://www.securityweek.com/fake-netflix-app-luring-android-users-malware
Vulnerability in Fortigate VPN servers is exploited in Cring ransomware attacks (7 apr) https://ics-cert.kaspersky.com/reports/2021/04/07/vulnerability-in-fortigate-vpn-servers-is-exploited-in-cring-ransomware-attacks/
A new supply chain attack made the headlines, threat actors compromised at least one update server of smartphone maker Gigaset to deliver malware. (7 apr) https://securityaffairs.co/wordpress/116450/cyber-crime/gigaset-malware-supply-chain-attack.html
Hackers are abusing Discord, Slack file-sharing to distribute malware (7 apr) https://www.cyberscoop.com/hackers-discord-slack-file-sharing-malware/
Ziggy Ransomware Gang Offers Victims Ransom Refunds (7 apr) https://www.bankinfosecurity.com/ziggy-ransomware-gang-offers-victims-ransom-refunds-a-16354
Cybercriminals are using Telegram bots, Google Forms to gather stolen user data (8 apr) https://www.helpnetsecurity.com/2021/04/08/gather-stolen-user-data/
What goes around comes around: hackers leak other hackers’ data online (8 apr) https://www.group-ib.com/media/swarmshop-breach/
Post-Ransomware Response: Victim Says ‘Do the Right Thing’ (8 apr) https://www.bankinfosecurity.com/blogs/post-ransomware-response-victim-says-do-right-thing-p-3013
500 million LinkedIn users’ data is for sale on a hacker site (8 apr) https://edition.cnn.com/2021/04/08/tech/linkedin-data-scraped-hacker-site/
Pets’ names used as passwords by millions, study finds (9 apr) https://www.bbc.com/news/technology-56680790
Informationssäkerhet och blandat
Midnight Sun CTF 2021 https://www.midnightsunctf.se/
Get the 2021 Security Awareness ReportT: Managing Human Cyber Risk https://www.sans.org/security-awareness-training/resources/reports/sareport-2021/
2021 Brings new security challenges and regulations for European CISOs (7 apr) https://www.techrepublic.com/blog/forrester/2021-brings-new-security-challenges-and-regulations-for-european-cisos/
Malicious Payloads: Defending Your Organization Beyond “Known Bad” Lists (7 apr) https://www.greathorn.com/blog-malicious-payloads-defending-your-organization-beyond-known-bad-lists/
Fear of Forgetfulness Drives Bad Password Behaviors (8 apr) https://blog.lastpass.com/2021/04/fear-of-forgetfulness-drives-bad-password-behaviors/
Integrating fuzzing into DevSecOps (8 apr) https://securityboulevard.com/2021/04/integrating-fuzzing-into-devsecops/
Don’t open that PDF email attachment - it could well be malware (8 apr) https://www.techradar.com/news/dont-open-that-pdf-email-attachment-it-could-well-be-malware