Discussion of public breaches of security
https://status.github.com/messages The status messages from the weekend state the problems GitHub had. We discussed a feint DDoS attack last week on blogpost: http://oversitesentry.com/ddos-not-only-for-disruption/ There are cases of DDoS that PCI compliance asks you to place the risk in a low category: Risk level: Severity is low for Denial-of-service attack, abnormal termination So the low risks are … Read more
DDoS(distributed Denial of System) means that a number of machines on the Internet are attacking one of your machines, It starts with several machines(“Masters”) being controlled by the “Attacker”, then the “slaves” attack your machine. With this definition of DDoS normally The actual attack into your machine usually just floods the victim machine with nonsensical … Read more
Have you done everything you could to manage the level of risk that you need to have? On Feb 4th I said Risk Management failed us: http://oversitesentry.com/risk-management-does-not-work/ So how can I help you understand the new level of cyber risk today? In the past it was good enough to run a firewall (which keeps out most … Read more
What if you could block all China originating traffic? As you see there was a Forbes Internet attack survey done for Q2 2014. China was the top source of attack traffic (43% of global Internet attack traffic). Image reference Link: http://www.statista.com/chart/2801/china-is-the-worlds-top-source-of-internet-attack-traffic/ . What if you could just block all this traffic? How could you do it? It … Read more
Yes another slightly new style of attack: http://www.networkworld.com/article/2889933/hackers-exploit-router-flaws-in-unusual-pharming-attack.html There are a couple of slightly new twists in this hacker style attack. Proofpoint found the attack (as a spam protection company they see all kinds of emails) https://www.proofpoint.com/us/threat-insight/post/Phish-Pharm Here is definition of pharming: “Attackers use poisoned DNS servers to redirect address requests, usually for online banking … Read more
