If it was not so serious, with a title like this I would have saved this for “Because It’s Friday” post. China exploited cow-counting app to spy on US, says Mandiant • The Register A report by cyber security firm Mandiant outlines how the Chinese state sponsored hacking group Double …
Here’s why you need more than anti-virus, you need training as well
Here is a cyber security threat, that could get into your business and not be detected by your anti-virus. It is not a zero day vulnerability, it just does not get detected! CinaRAT Delivered Through HTML ID Attributes – SANS Internet Storm Centre This is where training comes in to …
Continue reading “Here’s why you need more than anti-virus, you need training as well”
Making a business from bug bounty – controversial?
Zerodium has announced it will buy bugs from researchers in popular email clients – for white-hat purposes although their actions are controversial. Zerodium looks to buy zero-days in Outlook and Thunderbird email clients – The Record by Recorded Future
Minecraft vulnerable to a Zero-Day vulnerability and others are sure to follow – Log4j
A vulnerability has been discovered in a component of Minecraft, Log4j, an open-source logging tool that’s used in many online applications. Zeroday in ubiquitous Log4j tool poses a grave threat to the Internet | Ars Technica
Bypass your cybersecurity scanners
We all depend heavily on anti-virus scanners, they are a primary tool on our local machines and servers to combat the simplest of cyber attacks – sending us malware via email. Consequently any techniques developed by bad actors to get malicious packages through those scanner is a major concern. There …