Uncategorized

Do I need to do anything? – NO, Log4j is a vulnerability for IT service, which is a security vulnerability for those who are in charge of websites, servers and services. How do I know my data was affected by this? – Maybe, your service provider have to make a statement if they had a […]

1. Why a netfilter instead of virtual interface Typically, VPN architecture on GNU/Linux are using three different solutions.   The most common and developer friendly one is TUN/TAP interface from Linux kernel. The TUN/TAP interface can be read/wrote by VPN client, and manage its life span through the whole VPN session. The native Linux network

Home network needs one or more wired/wireless routers Typical flat topology of default ISP providing network. Cons of default flat networking: 1 Flat networking is not secure, if one of the devices get infected that can transmit to all. 2 Average wireless signal strengthen, and it’s not strong enough for up 2000 square feet home.

Here is the best secure networking for small business. All the devices are consumer devices and can be setup at home. Please contact us if you need support.

NSO Group’s spyware has been used to facilitate human rights violations around the world on a massive scale, according to a major investigation into the leak of 50,000 phone numbers of potential surveillance targets. These include heads of state, activists and journalists, including Jamal Khashoggi’s family. More information

Read the full story – Top cybersecurity firm FireEye hit by cyber attack

A major hospital chain has been hit by what appears to be one of the largest medical cyberattacks in United States history. Computer systems for Universal Health Services, which has more than 400 locations, primarily in the U.S., began to fail over the weekend, and some hospitals have had to resort to filing patient information with

Native Windows Ransomware protection works better than any 3rd party endpoint protection  How Windows Defender Ransomware protection works Step 0 Turn on Windows Defender Ransomware protection(Start   > Settings  > Update & Security > Windows Security > Virus & threat protection> Manage ransomware protection> Controlled folder access. ) Step 1 Windows Defender will identify malicious software/process/access Step 2

Microsoft Put Off Fixing Zero Day for 2 Years https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1464 https://krebsonsecurity.com/2020/08/microsoft-put-off-fixing-zero-day-for-2-years/ https://blog.virustotal.com/2019/01/distribution-of-malicious-jar-appended.html https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd This is fucking bonkers https://t.co/XXiwW2b062 — SwiftOnSecurity (@SwiftOnSecurity) June 13, 2020 What does this matter? 1) Attackers can bypass security features(Any antivirus/security endpoint) and load improperly signed files 2)Windows cannot validate file signatures correctly 3)This was first spotted in attacks used in

Initial spreading Drive-by Compromise https://attack.mitre.org/techniques/T1189/ Fake Google Chrome updates that are delivered to victims via drive-by download attacks when victims browse compromised websites. The initial malware is delivered to victims in the form of a ZIP archive that contains a malicious JavaScript file. Theoretical mitigations: Application Isolation and Sandboxing, Exploit Protection, Restrict Web-Based Content, Update