For when you have time, here are two articles from Microsoft looking at cyberweapons: Continuing the fight against private sector cyberweapons – Microsoft On the Issues Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits – Microsoft Security Blog The view from the US Government Pegasus spyware: Just ‘tip of …
If a software attack will not work – get out the wire cutters
This is not something that most of us will have to defend against – but it reads like a classic 1960’s spy story. The Unsolved Mystery Attack on Internet Cables in Paris | WIRED UK Do you want another cyber security story that reads like a 1960’s spy story – …
Continue reading “If a software attack will not work – get out the wire cutters”
Journalists are among the targets of state sponsored hacking and espionage
This is an interesting story from Cedric Pernet at TechRepublic looking at the types of threats and attacks faced by journalists: State-sponsored cyberespionage campaigns continue targeting journalists and media | TechRepublic It gives you an idea of the investment in time, money and technical resources state sponsored hacking groups make. …
Continue reading “Journalists are among the targets of state sponsored hacking and espionage”
The story of Pegasus spyware continues UPDATED 12 July 2022
This post was first published on 15 June 2022 Update 12 July 2022 President Bidens’ administration’s decision to blacklist the NSO Group is proving to be a problem for L3Harris, a US defence contractor that wants to buy the Pegasus spyware part of the business: L3Harris in move to buy …
Continue reading “The story of Pegasus spyware continues UPDATED 12 July 2022”
Apple announces specialised security for high risk users
In the autumn Apple will be adding “Lockdown mode” functionality to the range of it’s operating systems – iOS 16, iPadOS 16, and macOS Ventura. For a drastic reduction in functionality, users, who are at risk from sophisticated cyber attacks, such as those posed by Pegasus and Hermit spyware, will …
Continue reading “Apple announces specialised security for high risk users”
OSINT – Do you know what it is?
OSINT = Open Source Intelligence. That is that information that a threat actor can gather about you and your organisation, from open source resources – there is no need to hack you if you leave the information lying around. When I was studying, the weeks we covered OSINT, were some …
Silent Linux malware
The BPFdoor malware has been undetected in the wild for more than five years – infecting Linux and Solaris systems. The malware can give remote access to the shell and complete control to a compromised system. BPFdoor: Stealthy Linux malware bypasses firewalls for remote access (bleepingcomputer.com) The twist with this …