CERT-SE:s veckobrev v.42

Mycket information i veckobrevet denna gång. Genomförandeakten för NIS 2 har publicerats. CERT-SE har återigen observerat fall av nätfiske mot kommuner, läs gärna vår artikel på ämnet. Slutligen vill vi också påminna om vår CTF, den ligger ute till månadsskiftet så se till att ta chansen att testa era cyberfärdigheter. Trevlig helg önskar CERT-SE!

Nyheter i veckan

6 biggest healthcare security threats (11 okt) https://www.csoonline.com/article/564832/biggest-healthcare-security-threats.html

Microsoft deprecates PPTP and L2TP VPN protocols in Windows Server (12 okt) https://www.bleepingcomputer.com/news/microsoft/microsoft-deprecates-pptp-and-l2tp-vpn-protocols-in-windows-server

New Gmail Security Alert For 2.5 Billion Users As AI Hack Confirmed (13 okt) https://www.forbes.com/sites/daveywinder/2024/10/13/new-gmail-security-alert-for-billions-as-7-day-ai-hack-confirmed

Phishing tactics: The top attacks trends in 2024 (14 okt) https://www.itpro.com/security/cyber-attacks/phishing-tactics-the-top-attacks-trends-in-year

Så ser allmänhetens IT-beteende ut 2024 (14 okt) https://www.msb.se/sv/aktuellt/nyheter/2024/oktober/sa-ser-allmanhetens-it-beteende-ut-2024

Punjab Police will use an AI chatbot to solve cybercrime cases, say hello to Cyber Mittar (15 okt) https://www.businessinsider.in/india/news/punjab-police-will-use-an-ai-chatbot-to-solve-cybercrime-cases-say-hello-to-cyber-mittar/articleshow/114238170.cms

Pokémon-utvecklare utsatt för hackerattack (15 okt) https://www.svt.se/kultur/pokemon-utvecklare-utsatt-for-hackerattack

Nya nätfiskemetoder via QR-kod kringgår vanliga säkerhetslösningar (15 okt) https://www.aktuellsakerhet.se/nya-natfiskemetoder-via-qr-kod-kringgar-vanliga-sakerhetslosningar

Experten: Därför har it-attacker blivit vanligare (15 okt) https://sverigesradio.se/artikel/experten-darfor-har-it-attacker-blivit-vanligare

EDRSilencer red team tool used in attacks to bypass security (15 okt) https://www.bleepingcomputer.com/news/security/edrsilencer-red-team-tool-used-in-attacks-to-bypass-security

Tusentals bankkonton läckta i hackerattack: ”Jätteorolig” (16 okt) https://sverigesradio.se/artikel/tusentals-bankkonton-lackta-i-hackerattack-jatteorolig

UK Government Launches AI Safety Scheme to Tackle Deepfakes (16 okt) https://www.infosecurity-magazine.com/news/uk-government-launches-ai-safety

Nordea utsatt för cyberattacker – i en månad (16 okt) https://sverigesradio.se/artikel/nordea-utsatt-for-cyberattacker-i-en-manad

Firm hacked after accidentally hiring North Korean cyber criminal (16 okt) https://www.bbc.com/news/articles/ce8vedz4yk7o

‘Nationally significant’ cyberattacks are surging, warns the UK’s new cyber chief (16 okt) https://therecord.media/uk-nationally-significant-cyberattacks-ncsc-horne-warning

Är it-chefer noga med säkerheten? Nja. (17 okt) https://computersweden.se/article/3567378/ar-it-chefer-noga-med-sakerheten-nja.html ..
Arctic Wolf 2024 Human Risk Behavior Snapshot Reveals Nearly Two-Thirds of Security and IT Leaders Have Fallen for Phishing Attacks (16 okt) https://arcticwolf.com/resources/press-releases/arctic-wolf-2024-human-risk-behavior-snapshot-reveals-nearly-two-thirds-of-security-and-it-leaders-have-fallen-for-phishing-attacks

Casio says ‘no prospect of recovery yet’ after ransomware attack (17 okt) https://techcrunch.com/2024/10/17/casio-says-no-prospect-of-recovery-yet-after-ransomware-attack

European companies anxious over non-implementation of EU cyber rules (17 okt) https://www.euronews.com/next/2024/10/17/european-companies-anxious-over-non-implementation-of-eu-cyber-rules

Hackerattackerna ökar kraftigt – så skyddar sig Luleåborna (17 okt) https://www.svt.se/nyheter/lokalt/norrbotten/hackerattackerna-okar-kraftigt-sa-skyddar-sig-luleaborna

Nya regler för att öka cybersäkerheten i EU:s kritiska entiteter och nätverk (17 okt) https://ec.europa.eu/commission/presscorner/detail/sv/ip_24_5342

Anonymous Sudan har stoppats – svensk polis deltog i insatsen (17 okt) https://computersweden.se/article/3567737/anonymous-sudan-har-stoppats-svensk-polis-deltog.html ..
Hackergruppen Anonymous Sudan reducerad med hjälp av svensk polis (17 okt) https://polisen.se/aktuellt/nyheter/nationell/2024/oktober/hackergruppen-anonymous-sudan--reducerad-med-hjalp-av-svensk-polis

Rapporter och analyser

Cyber Signals Issue 8 | Education under siege: How cybercriminals target our schools​​ (10 okt) https://www.microsoft.com/en-us/security/blog/2024/10/10/cyber-signals-issue-8-education-under-siege-how-cybercriminals-target-our-schools

Mängden skadlig kod i öppen källkod-arkiv ökar kraftigt (14 okt) https://computersweden.se/article/3560202/mangden-skadlig-kod-i-oppen-kallkod-arkiv-okar-kraftigt.html ..
State of the Software Supply Chain report https://www.sonatype.com/state-of-the-software-supply-chain/Introduction

Cyberattackers Unleash Flood of Potentially Disruptive Election-Related Activity (15 okt) https://www.darkreading.com/cyberattacks-data-breaches/attackers-unleash-flood-potentially-disruptive-election-related-activity ..
A Deep Dive into Cyber Threats surrounding U.S. Election 2024 (PDF) https://www.fortinet.com/content/dam/fortinet/assets/intelligence-reports/FortiGuard-Labs-2024-US-Election-Security-Report.pdf

Microsoft Digital Defense Report 2024 (15 okt) https://www.microsoft.com/en-us/security/security-insider/intelligence-reports/microsoft-digital-defense-report-2024

Ransomware: Threat Level Remains High in Third Quarter (17 okt) https://www.security.com/threat-intelligence/ransomware-threat-level-remains-high

Informationssäkerhet och blandat

Strategi för cybersäkerheten i Finland 2024–2035 (10 okt) https://julkaisut.valtioneuvosto.fi/handle/10024/165861

CERT-SE i veckan

Pågående nätfiskekampanj riktad mot kommuner och skolor (uppdaterad 17 okt) https://www.cert.se/2024/06/pagaende-natfiskekampanj-riktad-mot-kommuner-och-skolor.html

Oracles kvartalsvisa säkerhetsuppdatering för oktober 2024 (16 okt) https://www.cert.se/2024/10/oracles-kvartalsvisa-sakerhetsuppdateringar-for-oktober-2024.html