This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Why do we care about encryption? Why was it a big deal, at least in theory, when Mark Zuckerberg announced earlier this year that Facebook would move to end-to-end encryption on all three of […]
In this monthly post, we try to make you aware of five different security related products. This is a repost from my personal website Ulyaoth This month we have chosen for the following: * anevicon * OpenVPN * HoneyPy * sqreen * Dshell anevicon Information from the OpenVPN website: OpenVPN provides flexible VPN solutions to […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). In recent years, several groups of cybersecurity researchers have disclosed dozens of memory side-channel vulnerabilities in modern processors and DRAMs, like Rowhammer, RAMBleed, Spectre, and Meltdown. Have you ever noticed they all had at […]
In this monthly post, we try to make you aware of five different security related products. This is a repost from my personal website Ulyaoth This month we have chosen for the following: * Attack Surface Analyzer * Bandit * Infection Monkey * NetSpot * Splunk Attack Surface Analyzer Information from the Attack Surface Analyzer […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Engineers at Netflix discovered three new vulnerabilities in Linux and FreeBSD kernels specific to its TCP networking implementation. The Vulnerabilities can be used by an adversary to perform a Denial Of Service (DOS) attack […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). A new side-channel attack that enables an attacker to read out physical memory belonging to other processes, named RAMBleed, is published. RAMBleed, based on a previous side channel called Rowhammer, violates arbitrary privilege boundaries. […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). Amazon S3 cloud bucket misconfigurations however have dropped dramatically. The last 12 months has seen the exposure of a record 2.3 billion files across cloud databases and online shares, according to an analysis released […]
This blog post is a summary of this week’s Information Security News put together by our Security Incident Response Team (SIRT). “Cyber attacks are becoming more frequent, more complex and more destructive. From low-level attempts to technologically sophisticated attacks. They come from states, and non-state actors. From close to home and from very far away. […]
In 2015, Deutsche Bahn (DB) launched an extensive project to improve the quality of passenger information, that would benefit all rail customers travelling in Germany.
In this monthly post, we try to make you aware of five different security related products. This is a repost from my personal website Ulyaoth This month we have chosen for the following: * angr * Brakeman * Moloch * OSXCollector * Zeek angr Information from the angr website: angr is a python framework for […]