Tageszusammenfassung - 06.02.2018

End-of-Day report

Timeframe: Montag 05-02-2018 18:00 − Dienstag 06-02-2018 18:00 Handler: Robert Waldner Co-Handler: Alexander Riepl

News

∗∗∗ Research papers and Youtube videos from BlueHat Israel 2018 ∗∗∗

http://www.bluehatil.com/abstracts.html ∗∗∗ European Cyber Security Month ECSM 2017 deployment report ∗∗∗ ENISA is today pleased to publish the ‘European Cyber Security Month deployment report’, a summary of the activities carried out throughout ECSM 2017 by the Agency and participating Member States.

https://www.enisa.europa.eu/news/enisa-news/european-cyber-security-month-ecsm-2017-deployment-report ∗∗∗ Strong cybersecurity culture as efficient firewall for organisations ∗∗∗ ENISA’s Cybersecurity Culture in Organisations report is based on a multi-disciplinary research, conducted to better understand the dynamics of how cybersecurity culture can be developed and shaped within organisations.

https://www.enisa.europa.eu/news/enisa-news/strong-cybersecurity-culture-as-efficient-firewall-for-organisations ∗∗∗ Krypto-Miner schlich über Download-Verzeichnis MacUpdate auf Macs ∗∗∗ Mac-Nutzer, die beliebte Software wie etwa den Browser Firefox über MacUpdate heruntergeladen haben, handelten sich dadurch unter Umständen Malware ein.

https://www.heise.de/meldung/Krypto-Miner-schlich-ueber-Download-Verzeichnis-MacUpdate-auf-Macs-3961578.html

Vulnerabilities

∗∗∗ Security updates available for Adobe Flash Player (APSB18-03) ∗∗∗

https://blogs.adobe.com/psirt/?p=1522 ∗∗∗ IBM Security Bulletin: IBM Content Navigator is affected by a common separated value (CSV) vulnerability ∗∗∗

http://www-01.ibm.com/support/docview.wss?uid=swg22012674 ∗∗∗ IBM Security Bulletin: Multiple vulnerabilities in IBM JRE affect IBM Tivoli Composite Application Manager for Transactions (Multiple CVEs) ∗∗∗

http://www.ibm.com/support/docview.wss?uid=swg22013271 ∗∗∗ February 2018 ∗∗∗

https://source.android.com/security/bulletin/2018-02-01.html