Comments on: Cyber security trends for 2020

By: QA Automation testing

QA Automation testing — Fri, 11 Aug 2023 14:25:53 +0000

QA Automation Companies provide software testing and quality assurance services to businesses and organizations. In recent years, automation has been widely adopted as more IT businesses look to streamline their development cycle. In addition to testing your applications for bugs, we help you with proactive security testing for data security breaches. The issue of offering consulting services for automation as well as services associated with automation has been met by a large number of American enterprises.

By: DevOps Consulting Services

DevOps Consulting Services — Mon, 03 Jul 2023 07:31:08 +0000

Great post, please keep on sharing amazing article like this! It makes me happy reading your post. Interesting and interesting information can be found on this topic here profile worth to see it. You are so intriguing! You can visit my site. We provide theterraform consulting.

By: Tomi Engdahl

Tomi Engdahl — Fri, 11 Jun 2021 07:23:25 +0000

What is your Linux server hardware decommissioning process?
The equipment decommissioning process is often an arguable point in companies. What’s your process?
https://www.redhat.com/sysadmin/decommissioning-process

By: Tomi Engdahl

Tomi Engdahl — Tue, 16 Feb 2021 14:45:34 +0000

The Drovorub Mystery: Malware NSA Warned About Can’t Be Found
https://www.securityweek.com/drovorub-mystery-malware-nsa-warned-about-cant-be-found

A piece of malware linked by U.S. intelligence agencies to hackers believed to be backed by the Russian government remains a mystery to the private sector, which apparently hasn’t found a single sample of the malware, and one researcher went as far as suggesting that it may be a false flag set up by the United States itself.

In August 2020, the NSA and the FBI released a joint cybersecurity advisory detailing a piece of malware they named Drovorub. According to the agencies, Drovorub was designed to target Linux systems as part of cyber espionage operations conducted by Russia’s General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS) military unit 26165, which has been linked to attacks conducted by the threat actor tracked as APT 28, Fancy Bear, Sednit and Strontium.

The 45-page report released by the NSA and FBI describes Drovorub as a “Linux malware toolset” that consists of an implant with a kernel module rootkit, a file transfer and port forwarding tool, and a command and control (C&C) server.

“When deployed on a victim machine, the Drovorub implant (client) provides the capability for direct communications with actor-controlled C2 infrastructure; file download and upload capabilities; execution of arbitrary commands as ‘root’; and port forwarding of network traffic to other hosts on the network,” the agencies wrote in their advisory.

The advisory shares information on how Drovorub works, how it can be detected, and how organizations can protect their systems against attacks involving the malware.

By: Tomi Engdahl

Tomi Engdahl — Thu, 28 Jan 2021 16:51:04 +0000

https://learnlinuxandlibreoffice.org/news/the-fight-for-a-secure-linux-bios

By: Tomi Engdahl

Tomi Engdahl — Thu, 21 Jan 2021 16:36:26 +0000

https://makeameme.org/meme/humans-2020-cant

By: Tomi Engdahl

Tomi Engdahl — Tue, 05 Jan 2021 19:50:50 +0000

Healthcare Industry Sees 45% Surge in Cyber Attacks Since November 20
https://www.theaegisalliance.com/2021/01/05/healthcare-industry-45-surge-cyber-attacks-november/

By: Tomi Engdahl

Tomi Engdahl — Tue, 05 Jan 2021 15:12:24 +0000

SolarWinds: The more we learn, the worse it looks
https://www.zdnet.com/article/solarwinds-the-more-we-learn-the-worse-it-looks/

While you’ve been distracted by the holidays, coronavirus, and politics, the more we learn about the SolarWinds security fiasco, the worse it looks.

By: Tomi Engdahl

Tomi Engdahl — Tue, 05 Jan 2021 13:28:43 +0000

Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor
https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html

By: Tomi Engdahl

Tomi Engdahl — Tue, 05 Jan 2021 13:28:08 +0000

SolarWinds cybersecurity expert warned management in 2017 about risk of ‘catastrophic’ breach – as it’s revealed cost-saving move to Eastern Europe could have exposed firm to major Russian hack
https://www.dailymail.co.uk/news/article-9108511/SolarWinds-warned-potential-cyber-attack-cost-saving-Europe-exposed-firm.html

SolarWinds cybersecurity expert Ian Thornton-Trump warned the company to improve its internal security to prevent a ‘catastrophic’ episode in 2017
When his recommendations were ignored, he left the firm a month later
US officials say Russian hackers were behind the massive attack that affected more than 250 federal agencies and businesses
The hack is believed to have started as early as October 2019
Employees say SolarWinds CEO Kevin Thompson cut common security practices to save costs and his approach almost tripled SolarWinds’ annual profit margins
Some engineering offices were moved to Eastern Europe, where the Orion software, which was compromised by the hackers, was partially developed