Discussion of public breaches of security
If you click on the wrong link this is what can happen: But besides losing all your data if you have other peoples information on your computers now that data can be stolen and deleted or unable to be retrieved if it is encrypted. Ransomware is a scourge that is difficult to fix, if not … Read more
A couple of questions come mind: How can the Criminal Hacker tell if my system is weak and thus “Low hanging fruit” What will the criminal hacker do with my systems? How much do you REALLY trust your situation? Criminals have ways of finding your weaknesses – if you have one they will find it. … Read more
Reading the Oversitesentry 30 Security Analysis posts I was struck by the recurring theme of detection avoidance and obfuscation is the name of the criminal game. Specifically: Rapid7’s Blog post¹ on how attackers evade SIEM (Security Information event Manager) and the interesting post by Drops² about obfuscation by Windows programs that run in the 64bit … Read more
Although on December 7th is another year gone by for remembering Pearl Harbor attack in 1941 (74 years ago) I want to focus on the suprise attack angle. Tora Tora Tora トラ・トラ・トラ means “We have achieved complete surprise” in Japanese codeword. A translation is Tiger. Tora (Tορα) is translated to “now” from Greek. Torah … Read more
Checking your Logs for anomalies is getting more difficult as time goes on. There is a new report out by FOX IT¹ and the report dissects a long running botnet (botnet is a program that connects to itself across the Internet). This botnet may be considered the largest and longest running as it started around … Read more
