CERT-SE startsida
Sök inom CERT-SE
Publicerad: 2025-06-19 15:15

CERT-SE:s veckobrev v.25

Veckobrev

Här hittar du blandade nyheter och inlägg från veckan som gått.

Glad midsommar önskar CERT-SE!

Nyheter i veckan

CISA warns of SimpleHelp ransomware compromises after string of retail attacks (13 jun) https://therecord.media/cisa-warns-of-simplehelp-ransomware-compromises

Hundreds of WordPress Websites Hacked By VexTrio Viper Group to Run Massive TDS Services (14 jun) https://cybersecuritynews.com/hundreds-of-wordpress-websites-hacked-by-vextrio-viper-group/

Dems demand audit of CVE program as Federal funding remains uncertain (15 jun) https://www.theregister.com/2025/06/15/cybersecurity_news_in_brief/

Washington Post investigating cyberattack on journalists’ email accounts, source says (16 jun) https://www.reuters.com/world/us/washington-post-investigating-cyberattack-journalists-wsj-reports-2025-06-15/

Europe-wide takedown hits longest-standing dark web drug market (16 jun) https://www.europol.europa.eu/media-press/newsroom/news/europe-wide-takedown-hits-longest-standing-dark-web-drug-market

..

Police dismantle Archetyp dark web drug market, arrest administrator (16 jun) https://therecord.media/archetyp-market-dark-web-takedown-europol

Gmail users urged to make an important change to combat scammers as attacks rise (16 jun) https://www.dailyrecord.co.uk/news/science-technology/gmail-users-urged-make-important-35398271

Ransomware mot flygindustrin slår alla rekord – upp 600 procent på ett år (16 jun) https://www.industrinyheter.se/20250616/44079/ransomware-mot-flygindustrin-slar-alla-rekord-upp-600-procent-pa-ett-ar

Cyberbedragare utnyttjar populära AI-tjänster (16 jun) https://itbranschen.com/cyberbedragare-utnyttjar-populara-ai-tjanster/

Afa Försäkring varnar för bluffsamtal (16 jun) https://sakerhetskollen.se/aktuella-brott/afa-forsakring-varnar-for-bluffsamtal

Canadian Airline WestJet Hit by Cyberattack (16 jun) https://www.securityweek.com/canadian-airline-westjet-hit-by-cyberattack/

Hackers Can Hide Images in Text Data and Embeds Directly into DNS TXT Records (16 jun) https://cybersecuritynews.com/hiding-images-in-dns-txt-records/

European Commission calls for cyber security proposals (16 jun) https://www.itpro.com/security/european-commission-calls-for-cyber-security-proposals

Security Is Only as Strong as the Weakest Third-Party Link (16 jun) https://www.darkreading.com/vulnerabilities-threats/security-strong-weakest-third-party-link

Hackers switch to targeting U.S. insurance companies (16 jun) https://www.bleepingcomputer.com/news/security/google-warns-scattered-spider-hackers-now-target-us-insurance-companies/

Zoomcar discloses security breach impacting 8.4 million users (16 jun) https://www.bleepingcomputer.com/news/security/zoomcar-discloses-security-breach-impacting-84-million-users/

Spain says April blackout was caused by grid failures and poor planning, not a cyberattack (17 jun) https://www.dailymail.co.uk/wires/ap/article-14820851/Spain-says-Aprils-Iberian-blackout-caused-multiple-technical-factors-not-cyberattack.html

Iran crypto exchange hit by hackers, $90 million destroyed (18 jun) https://www.reuters.com/world/middle-east/iran-crypto-exchange-hit-by-hackers-90-million-destroyed-2025-06-18/

Suspected Russian hackers used new tactic against UK researcher (18 jun) https://www.reuters.com/technology/suspected-russian-hackers-used-new-tactic-against-uk-researcher-2025-06-18/

1,500+ Minecraft Players Infected by Java Malware Masquerading as Game Mods on GitHub (18 jun) https://thehackernews.com/2025/06/1500-minecraft-players-infected-by-java.html

Scania utsatt för cyberattack – känsliga dokument stulna (18 jun) https://computersweden.se/article/4008831/scania-utsatt-for-cyberattack-kansliga-dokument-stulna.html

Chrome Vulnerabilities Let Attackers Execute Arbitrary Code – Update Now! (18 jun) https://cybersecuritynews.com/chrome-vulnerabilities-update-now/

Regeringen vill använda statens data för AI-träning (18 jun) https://www.dn.se/direkt/2025-06-18/regeringen-vill-anvanda-statens-data-for-ai-traning/

Rapporter och analyser

Barracuda Email Threat Radar – June 2025 (10 jun) https://blog.barracuda.com/2025/06/10/email-threat-radar-june-2025

Clone, Compile, Compromise: Water Curse’s Open-Source Malware Trap on GitHub (16 jun) https://www.trendmicro.com/en_us/research/25/f/water-curse.html

NSFOCUS APT Monthly Briefing – April 2025 (16 jun) https://securityboulevard.com/2025/06/nsfocus-apt-monthly-briefing-april-2025/

Informationssäkerhet och blandat

It-attackerna ökar – så kan dina smarta prylar utnyttjas (17 jun) https://www.sverigesradio.se/avsnitt/it-attackerna-okar-sa-kan-dina-smarta-prylar-utnyttjas

What is Cyberespionage? A Detailed Overview (17 jun) https://securityboulevard.com/2025/06/what-is-cyberespionage-a-detailed-overview/

CERT-SE i veckan

Sårbarheter i Veeam Backup (19 jun) https://www.cert.se/2025/06/sarbarheter-i-veeam-backup.html