CERT-SE:s veckobrev v.9

Veckobrev

Kom ihåg att anmäla dig till NIS-konferensen, information om programmet och anmälningsformulär hittar du här: https://www.msb.se/sv/aktuellt/kalender/2023/maj/nis-konferens-2023/

Vi vill också passa på att flagga för CTF:en och eventet Undutmaning 2023. Mer information och anmälan görs på https://undutmaning.se/

Trevlig helg önskar CERT-SE!

Nyheter i veckan

Alert - Risk of malicious cyber activity against Ukraine-aligned nations (24 feb)
https://www.cyber.gc.ca/en/alerts-advisories/risk-malicious-cyber-activity-against-ukraine-aligned-nations

Downloading an authentication app? Don’t fall for the rogue ones (27 feb)
https://www.neowin.net/news/downloading-an-authentication-app-dont-fall-for-the-rogue-ones/

Danish hospitals hit by cyberattack from ‘Anonymous Sudan’ (27 feb)
https://therecord.media/danish-hospitals-hit-by-cyberattack-from-anonymous-sudan/

U.S. Marshals Service investigating ransomware attack, data theft (27 feb)
https://www.bleepingcomputer.com/news/security/us-marshals-service-investigating-ransomware-attack-data-theft/

LastPass: hackers breached the computer of a DevOps engineer in a second attack (27 feb)
https://securityaffairs.com/142791/hacking/lastpass-discloses-second-attack.html

LastPass says employee’s home computer was hacked and corporate vault taken (28 feb)
https://arstechnica.com/information-technology/2023/02/lastpass-hackers-infected-employees-home-computer-and-stole-corporate-vault/

New Exfiltrator-22 post-exploitation kit linked to LockBit ransomware (27 feb)
https://www.bleepingcomputer.com/news/security/new-exfiltrator-22-post-exploitation-kit-linked-to-lockbit-ransomware/

Education sector confirmed target for cyber criminals (28 feb)
https://www.fenews.co.uk/education/education-sector-confirmed-target-for-cyber-criminals/

Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain (28 feb)
https://thehackernews.com/2023/02/bitdefender-releases-free-decryptor-for.html

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022 (28 feb)
https://krebsonsecurity.com/2023/02/hackers-claim-they-breached-t-mobile-more-than-100-times-in-2022/

Several Law Firms Targeted in Malware Attacks (1 mars)
https://www.securityweek.com/several-law-firms-targeted-in-malware-attacks/

It’s official: BlackLotus malware can bypass Secure Boot on Windows machines (1 mar)
https://www.theregister.com/2023/03/01/blacklotus_malware_eset/

British retail chain WH Smith says data stolen in cyberattack (2 mar)
https://www.bleepingcomputer.com/news/security/british-retail-chain-wh-smith-says-data-stolen-in-cyberattack/

Informationssäkerhet och blandat

The DDoS Attack on German Airport Websites and What IT Leaders Can Learn (27 feb)
https://www.informationweek.com/security-and-risk-strategy/the-ddos-attack-on-german-airport-websites-and-what-it-leaders-can-learn

Nya säkerhetslagen snart här – men svenska företag är inte på banan (28 feb)
https://cio.idg.se/2.1782/1.776820/nya-sakerhetslagen-narmar-sig–men-svenska-foretag-inte-pa-banan

Danish parliament urges to remove TikTok over cybersecurity (28 feb)
https://apnews.com/article/technology-politics-denmark-government-mobile-apps-europe-41d1cf56a492ea9c6e0f7885c866e131

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks (28 feb)
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a

CISA Releases Decider Tool to Help with MITRE ATT&CK Mapping (1 mar)
https://www.cisa.gov/news-events/alerts/2023/03/01/cisa-releases-decider-tool-help-mitre-attck-mapping

White House Releases National Cybersecurity Strategy (2 mar)
https://www.securityweek.com/white-house-releases-national-cybersecurity-strategy/

National cybersecurity strategy (1 mar)
https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf

CERT-SE i veckan

Kritiska sårbarheter i ArubaOS

Kritisk sårbarhet i Cisco IP Phone