Network Security


NEWS 
  • D-Link router riddled with 0-day flaws

    September 12, 2017

    A security researcher has shamed D‑Link by publicly disclosing 10 serious, as-yet unpatched vulnerabilities in a line of consumer-grade routers without notifying the vendor first. Security researcher Pierre Kim went public on a series of flaws in D‑Link DIR 850L wireless AC1200 dual-band gigabit cloud routers without disclosing the issue to D‑Link beforehand because of a ...

  • US Warns of ‘DeltaCharlie’ – A North Korean DDoS Botnet Malware

    June 14, 2017

    The United States government has released a rare alert about an ongoing, eight-year-long North Korean state-sponsored hacking operation. The joint report from the FBI and U.S. Department of Homeland Security (DHS) provided details on “DeltaCharlie,” a malware variant used by “Hidden Cobra” hacking group to infect hundreds of thousands of computers globally as part of its ...

  • WikiLeaks Vault 7: CIA’s “Pandemic” Tool Replaces Files with Malware

    June 2, 2017

    WikiLeaks has released a new set of documents from its Vault 7 series, this time detailing a tool that the CIA allegedly uses to spread malware on a targeted organization’s network. Appropriately called “Pandemic,” the tool can install a file system filter driver on a network, replacing legitimate files with malicious payload when they are accessed ...

  • Taiwan government to block Google’s public DNS in favor of HiNet’s

    May 11, 2017

    The Taiwanese government intends to block Google’s public DNS service, citing cybersecurity concerns. The question is whether those concerns are the government’s or its citizens’, with the government pushing its own DNS service – a setup that is typically used to spy on people’s internet communications. The announcement comes, somewhat unusually, in the form of a PDF ...

  • Russian-controlled telecom hijacks financial services’ Internet traffic

    April 28, 2017

    On Wednesday, large chunks of network traffic belonging to MasterCard, Visa, and more than two dozen other financial services companies were briefly routed through a Russian government-controlled telecom under unexplained circumstances that renew lingering questions about the trust and reliability of some of the most sensitive Internet communications. Anomalies in the border gateway protocol—which routes large-scale ...

  • Symantec API Flaws reportedly let attackers steal Private SSL Keys and Certificates

    March 27, 2017

    A security researcher has disclosed critical issues in the processes and third-party API used by Symantec certificate resellers to deliver and manage Symantec SSL certificates. The flaw, discovered by Chris Byrne, an information security consultant and instructor for Cloud Harmonics, could allow an unauthenticated attacker to retrieve other persons’ SSL certificates, including public and private keys, ...

  • New Fileless Malware Uses DNS Queries To Receive PowerShell Commands

    March 5, 2017

    It is no secret that cybercriminals are becoming dramatically more adept, innovative, and stealthy with each passing day. While new forms of cybercrime are on the rise, traditional activities seem to be shifting towards more clandestine techniques that involve the exploitation of standard system tools and protocols, which are not always monitored. The latest example of such ...

  • China makes VPNs illegal to tighten its Great Firewall

    January 23, 2017

    China is long known for its strict Internet censorship laws through the Great Firewall of China – China’s Golden Shield project that employs a variety of tricks to censor Internet and block access to various foreign websites in the country by its government. The Great Firewall has blocked some 171 out of the world’s 1,000 top ...

  • Router Vulnerabilities Disclosed in July Remain Unpatched

    January 17, 2017

    Details on serious vulnerabilities in a number of routers freely distributed by a major Thai ISP were published on Monday after private disclosures made to the vendors in July went unanswered. Researcher Pedro Ribeiro of Agile Information Security found accessible admin accounts and command injection vulnerabilities in ZyXel and Billion routers distributed by TrueOnline, Thailand’s largest ...