Blog - Cyber Security Informer

North Korea-linked campaign targets security experts via social media

Security Affairs

JANUARY 26, 2021

Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is warning that North Korea-linked hackers targeting security researchers through social media. ” reads the TAG’s report. ” reads the TAG’s report.

Media

Media Social Engineering Engineering Accountability

Flipper Zero Experiments – Sub-GHz

LRQA Nettitude Labs

JUNE 5, 2023

This is the tagline associated with Kali Linux, a Linux distribution used by security researchers, penetration testers, and hackers alike. In this blog post, I am going to be exploring one potential physical security attack chain, relaying a captured signal to open a gate using a device called the Flipper Zero.

Penetration Testing

Penetration Testing Firmware

China-linked threat actors target Indian Power Grid organizations

Security Affairs

APRIL 9, 2022

The security firm is tracking this cluster of malicious activities under the moniker Threat Activity Group 38 aka TAG-38. The attackers employed a modular backdoor dubbed ShadowPad , an implant used by several groups linked to the People’s Liberation Army (PLA) and the Ministry of State Security (MSS). Pierluigi Paganini.

Hacking

Hacking Technology Cybersecurity Information Security

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Microsoft Patch Tuesday, August 2022 Edition

Krebs on Security

AUGUST 9, 2022

Microsoft today released updates to fix a record 141 security vulnerabilities in its Windows operating systems and related software. Microsoft this month also issued a different patch for another MSDT flaw, tagged as CVE-2022-35743. See Microsoft’s blog post on the Exchange Server updates for more details.

Authentication

Authentication Internet Internet Cyber threats

Super FabriXss: an RCE vulnerability in Azure Service Fabric Explorer

Malwarebytes

APRIL 3, 2023

Researchers at Orca Security disclosed how they found a remote code execution vulnerability in Azure Service Fabric Explorer. The vulnerability was reported to the Microsoft Security Response Center (MSRC) with responsible disclosure and was included by Microsoft in their March 2023 Patch Tuesday round.

Authentication

Authentication Risk Cybersecurity

Humans are Bad at URLs and Fonts Don’t Matter

Troy Hunt

OCTOBER 28, 2020

The victim, through no fault of their own, has been the target of numerous angry tweets designed to ridicule their role in internet security and suggest they are incapable of performing their duty. Obviously, the image is resized to the width of paragraphs on this blog, give it a click if you want to check it out at 1:1 size.

Phishing

Phishing Password Management Passwords Internet

Machine Identities are Essential for Securing Smart Manufacturing

Security Boulevard

FEBRUARY 28, 2022

Machine Identities are Essential for Securing Smart Manufacturing. Every item in the inventory gets an RFID tag, and each tag has a unique identification number (UID) with encoded digital information about the item. After RFID readers scan the tags, the data extracted gets transmitted to the cloud for processing.

Manufacturing

Manufacturing IoT Authentication Artificial Intelligence

Google warns some users that FancyBear’s been prowling around

Malwarebytes

OCTOBER 11, 2021

He goes into more details in this thread: TAG sent a above average batch of government-backed security warnings yesterday. What we see over and over again is that much of the initial targeting of government backed threats is blockable with good security basics like security keys, patching and awareness, so that's why we warn.

Government

Government Phishing Accountability Passwords

Another NFT explainer, with a bonus look at the data security implications

Webroot

MAY 12, 2021

In terms of valuable digital art, NFT theft amounts to the regrettable loss of investment pieces or perhaps just the “bragging rights” akin to owning an original piece of physical art. NFTs’ massive price tags and novel technological backing make them attractive target for cybercriminals.

Cryptocurrency

Cryptocurrency Marketing Phishing Authentication

Writing Your First Bootloader for Better Analyses

Security Affairs

SEPTEMBER 3, 2019

But this is only an already known scenario while humongous possibilities are still available for the attacker who holds physical rights to open your disk and to write in it whatever he desires. The original post is available on Marco Ramilli’s blog. I am a computer security scientist with an intensive hacking background.

Computers and Electronics

Computers and Electronics Penetration Testing Malware Advertising

The Art of Ruthless Prioritization and Why it Matters for SecOps

McAfee

SEPTEMBER 29, 2021

The security operations center ( SecOps ) team sits on the front lines of a cybersecurity battlefield. The SecOps team works around the clock with precious and limited resources to monitor enterprise systems, identify and investigate cybersecurity threats, and defend against security breaches.

DNS

DNS Manufacturing Data breaches Risk

CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

SecureList

JULY 25, 2022

One of our industry partners, Qihoo360, published a blog post about an early variant of this malware family in 2017. This could be achieved through a precursor malware implant already deployed on the computer or physical access (i.e., CosmicStrand and MyKings use identical tags when they allocate memory in kernel mode (Proc and GetM).

Firmware

Firmware DNS Malware Technology

3D Printing with Kids on Lenovo Yoga 7i

Troy Hunt

AUGUST 5, 2021

Plus, the fingerprint reader means she can start getting into good security habits by regularly locking and unlocking the machine without risk of disclosing her password to others around her. Then, just as in the earlier video where she made my name tag, we sliced the file and defined a colour change point.

Education

Education Technology Software Retail

Writing Your First Bootloader for Better Analyses

Security Affairs

SEPTEMBER 3, 2019

But this is only an already known scenario while humongous possibilities are still available for the attacker who holds physical rights to open your disk and to write in it whatever he desires. The original post is available on Marco Ramilli’s blog. I am a computer security scientist with an intensive hacking background.

Computers and Electronics

Computers and Electronics Penetration Testing Malware Advertising

CIS 20 Controls: Utilizing CIS 20 Critical Controls for Vulnerability Prioritization

NopSec

JULY 18, 2017

CIS 20 Security Controls represent one of the reference frameworks of the most critical controls an organization can implement to establish a well balanced security program to safeguard confidentiality, integrity and availability of information. With that in mind, in this blog post we’re covering 13 out of the 20 controls.

Wireless

Wireless Penetration Testing Software Authentication

Black Hat USA 2022: Creating Hacker Summer Camp

Cisco Security

AUGUST 29, 2022

In part one of this issue of our Black Hat USA NOC (Network Operations Center) blog, you will find: Adapt and Overcome. Port Security, by Ryan MacLennan, Ian Redden and Paul Fiddler. I am proud of the Cisco Meraki and Secure team members and our NOC partners. Building the Hacker Summer Camp network, by Evan Basta. Full stop.

Engineering

Engineering Wireless Malware DNS

Topic-specific policy 8/11: cryptography and key management

Notice Bored

OCTOBER 20, 2021

Organisations with specific legal or contractual obligations in this area ( such as governmental and defense companies bound to employ particular algorithms, key lengths and technologies such as physically secure hardware crypto modules, or companies bound by PCI-DSS) would need to adapt it accordingly.

Information Security

Information Security Risk Encryption Passwords

How have people proven their identity since the dawn of time?

CyberSecurity Insiders

JUNE 24, 2021

Before we proved our identities with plastic cards or on our mobile devices, people proved their identity in several ways, such as language, physical identifiers or objects. Today, biometric authentication is a constant feature in our lives, with many smartphones utilising facial or fingerprint recognition as a security measure.

Computers and Electronics

Computers and Electronics Passwords Technology Government

Black Hat Asia 2022: Building the Network

Cisco Security

MAY 26, 2022

In part one of this issue of our Black Hat Asia NOC blog, you will find: . To accomplish this undertaking in a few weeks’ time, after the conference had a green light with the new COVID protocols, Cisco Meraki and Cisco Secure leadership gave their full support to send the necessary hardware, software licenses and staff to Singapore.

Wireless

Wireless Mobile Engineering Firewall

Data Driven Security Hardening in Android

Google Security

JANUARY 29, 2021

Posted by Kevin Deus, Joel Galenson, Billy Lau and Ivan Lozano, Android Security & Privacy Team The Android platform team is committed to securing Android for every user across every device. What mitigations are available, how can they be improved, and where should they be enabled? Stagefright ). Stagefright ).

Architecture

Architecture Media Engineering Risk

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

Vamosi: But as someone who wrote a book questioning the security of our mass produced IoT devices, I wonder why no one bothered to test and certify these devices before they were installed? And on the other hand, we're saying security, that's a secondary concern. But we all know how security by obscurity works in the end.

Engineering

Engineering Energy and Utilities Computers and Electronics Firmware

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

Last June, Google’s TAG team released a blog post documenting attacks on Italian and Kazakh users that they attribute to RCS Lab, an Italian offensive software vendor. Verdict: prediction fulfilled ✅ Explosion of attacks against cloud security and outsourced services. No other country followed suit.

Firmware

Firmware Surveillance Mobile Telecommunications

Cyber Security Informer

North Korea-linked campaign targets security experts via social media

Flipper Zero Experiments – Sub-GHz

Webinars

Trending Sources

China-linked threat actors target Indian Power Grid organizations

Webinars

Microsoft Patch Tuesday, August 2022 Edition

Super FabriXss: an RCE vulnerability in Azure Service Fabric Explorer

Humans are Bad at URLs and Fonts Don’t Matter

Machine Identities are Essential for Securing Smart Manufacturing

Google warns some users that FancyBear’s been prowling around

Another NFT explainer, with a bonus look at the data security implications

Writing Your First Bootloader for Better Analyses

The Art of Ruthless Prioritization and Why it Matters for SecOps

CosmicStrand: the discovery of a sophisticated UEFI firmware rootkit

3D Printing with Kids on Lenovo Yoga 7i

Writing Your First Bootloader for Better Analyses

CIS 20 Controls: Utilizing CIS 20 Critical Controls for Vulnerability Prioritization

Black Hat USA 2022: Creating Hacker Summer Camp

Topic-specific policy 8/11: cryptography and key management

How have people proven their identity since the dawn of time?

Black Hat Asia 2022: Building the Network

Data Driven Security Hardening in Android

The Hacker Mind Podcast: Reverse Engineering Smart Meters

Advanced threat predictions for 2023

Stay Connected