computersecuritynews

Torte Botnet Infected 83k WordPress Hosting Servers

by

  It is an interesting document from the stateoftheinternet.com https://www.stateoftheinternet.com/downloads/pdfs/SpamBot-Investigation-whitepaper-R3.pdf This botnet had 83,000 unique infections (which include webservers running all operating systems) And on page 6 where the researchers revealed the botnet: Using these logged responses, we found that the size of this botnet is fairly large. Over 1,400,000 (including duplicates from the c2) probe requests … Read more

NTP Attack Can Cause Encryption and DNS Problems

by

Aanchal Malhotra, Isaac E. Cohen, Erik Brakke, and Sharon Goldberg wrote a paper (out of Boston University) http://www.cs.bu.edu/~goldbe/papers/NTPattack.pdf “Attacking the Networking Time Protocol”   Apparently if your servers and clients (which all have NTP) have their time changed can affect various processes. To Attack …     Change time by … TLS Certs     … Read more

DDOS Attack Allows Million$ Transferred To Mule

by

After seeing a good ISACA presentation today at the Renaissance in Saint Louis (near airport) http://www.isaca.org/chapters5/Saint-Louis/Pages/default.aspx  by Josh Vander Veen with SpearTip Here are my notes: Sophistication of criminal attack is on the rise. Many small businesses have a false sense of security and say the following: I’m just a small company why would they … Read more

Expirian Board of Directors: Growth Through Acquisition – But Without Security Testing

by

David Krebs story: http://krebsonsecurity.com/2015/10/at-experian-security-attrition-amid-acquisitions/   I want to focus on Board of Directors decisions to grow through acquisition, wanting to do growth securely, but in practice has lots of problems. The term I like the most is Black Box Magic.  (as if security is gotten with a black box magic)    image from Martin’s Magic collection: http://www.martinsmagic.com/product-tag/wagoncollector/  … Read more

Hackers Wiped Out Casino Computers 10min

by

http://arstechnica.com/security/2014/12/iranian-hackers-used-visual-basic-malware-to-wipe-vegas-casinos-network/ A very interesting story of Iranian hackers (whether government sponsored or sanctioned does not matter) attacked and deleted a lot of files using Visual Basic.  (I know from 2014 attack – but that is when we get the most amount of data sometimes…) Apparently the billionaire owner pissed off some hacktivists in Iran after … Read more