CERT-SE:s veckobrev v.19
Polisen berättar om andra fasen i operation Cronos, där man försöker komma åt administratören och utvecklaren bakom LockBit. USA utlovar en belöning på upp till 10 miljoner dollar för tips som leder till att mannen grips eller döms.
Trevlig helg!
Nyheter i veckan
Dating apps kiss’n’tell all sorts of sensitive personal info (4 maj) https://www.theregister.com/2024/05/04/dating_apps_privacy_mozilla/?td=rt-3a
From teenage cyber-thug to Europe’s most wanted (5 maj) https://www.bbc.com/news/articles/cyxe9g4zlgpo
Using MITM to bypass FIDO2 phishing-resistant protection (5 maj) https://securityboulevard.com/2024/05/using-mitm-to-bypass-fido2-phishing-resistant-protection/
Detaljhandeln orolig för cybersäkerhet – men prioriterar den inte (6 maj) https://computersweden.se/article/2098126/detaljhandeln-orolig-for-cybersakerhet-men-prioriterar-den-inte.html
Finsk varning för Android-app som länsar bankkonton (6 maj) https://computersweden.se/article/2098160/finsk-varning-for-android-app-som-lansar-bankkonton.html
Stealing cookies: Researchers describe how to bypass modern authentication (6 maj) https://cyberscoop.com/stealing-cookies-researchers-describe-how-to-bypass-modern-authentication/
Why Your VPN May Not Be As Secure As It Claims (6 maj) https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/
New attack leaks VPN traffic using rogue DHCP servers (7 maj) https://www.bleepingcomputer.com/news/security/new-tunnelvision-attack-leaks-vpn-traffic-using-rogue-dhcp-servers/
Trafikverket satsar på prediktiv analys och automatisering – ”potentialen är enorm” (7 maj) https://computersweden.se/article/2098131/trafikverket-satsar-pa-prediktiv-analys-och-automatisering-potentialen-ar-enorm.html
Svenska kyrkan hotas på pengar (7 maj) https://www.dn.se/direkt/2024-05-07/svenska-kyrkan-hotas-pa-pengar/
Nya åtgärder mot ransomware-tjänsten LockBits administratör (8 maj) https://polisen.se/aktuellt/nyheter/nationell/2024/maj/nya-atgarder-mot-ransomware-tjansten-lockbits-administrator/ ..
Police resurrect LockBit’s site and troll the ransomware gang (6 maj) https://techcrunch.com/2024/05/06/police-resurrect-lockbits-site-and-troll-the-ransomware-gang/?guccounter=1
APT28 campaign targeting Polish government institutions (8 maj) https://cert.pl/en/posts/2024/05/apt28-campaign/
Akira and Cisco AnyConnect: The working exploit for CVE-2020-3259 (8 maj) https://www.truesec.com/hub/blog/akira-and-cisco-anyconnect-the-working-exploit-for-cve-2020-3259
Informationssäkerhet och blandat
NCS3 – Förstudie om cybersäkerhet i dricksvattenverk (2 maj) https://www.foi.se/rapporter/rapportsammanfattning.html?reportNo=FOI-R--5578--SE
Omfattande cyberattacker väntas mot sommarens OS i Paris (7 maj) https://computersweden.se/article/2098185/omfattande-cyberattacker-vantas-mot-sommarens-os-i-paris.html
IT-säkerhet fram till frontlinjen - Utvecklingsprocesser för IT-system i Försvarsmakten (7 maj) https://www.foi.se/rapporter/rapportsammanfattning.html?reportNo=FOI-R--5598--SE
Where did my VMware Security Advisories go? (7 maj) https://blogs.vmware.com/security/2024/05/where-did-my-vmware-security-advisories-go.html
Global Cybercrime Report 2024: Which Countries Face the Highest Risk? (8 maj) https://securityboulevard.com/2024/05/global-cybercrime-report-2024-which-countries-face-the-highest-risk/amp/
Choosing Secure and Verifiable Technologies (9 maj) https://www.cyber.gov.au/resources-business-and-government/maintaining-devices-and-systems/outsourcing-and-procurement/cyber-supply-chains/choosing-secure-and-verifiable-technologies
iOS 17: Add More Security to Your iPhone Messages in 4 Easy Steps (10 maj) https://www.cnet.com/tech/services-and-software/ios-17-add-more-security-to-your-iphone-messages-in-4-easy-steps/
Boeing confirms 2023 $200m ransomware demand (10 maj) https://www.airport-technology.com/news/boeing-confirms-2023-hack-200m-ransomware/