Cybersecurity

http://resources.infosecinstitute.com/use-firefox-browser-as-a-penetration-testing-tool-with-these-add-ons/ Mozilla has a website add-on section that has thousands of useful add-ons in different categories. Some of these add-ons are useful for penetration testers and security analysts. These penetration testing add-ons helps in performing different kinds of attacks, and modify request headers direct from the browser.  This article lists a few popular and interesting Firefox add-ons →

http://thehackernews.com/2017/07/ssh-credential-hacking.html?m=1 WikiLeaks has today published the 15th batch of its ongoing Vault 7 leak, this time detailing two alleged CIA implants that allowed the agency to intercept and exfiltrate SSH (Secure Shell) credentials from targeted Windows and Linux operating systems. BothanSpy implant is for Microsoft Windows Xshell client. Gyrfalcon targets the OpenSSH client on various distributions of Linux OS: CentOS, →

https://www.open-electronics.org/linux-foundation-launches-the-open-source-edgex-foundry-for-iot-standardisation/ Security is the Achilles heel of the Internet of Things, according to Steven J. Vaughan-Nichols on ZDNet. The lack of common IoT development standards is part of this problem. This is why the Linux Foundation, along with 50 companies, has announced The EdgeX Foundry. The group will build a common open framework for IoT →

https://fossbytes.com/outlawcountry-cia-hacking-tool-linux/ Wikileaks has published fresh documents that deal with the CIA’s hacking and spying on Linux machines using a malware strain called OutlawCountry. This tool consists of a kernel module that creates invisible netfilter table for creating new rules with iptables command. Those rules can modify and redirect the network traffic. The OutlawCountry’s prerequisites for operation are →

We have recently been facing a huge outbreak of a new Petya-like malware armed with an infector similar to WannaCry. With echoes of WannaCry, infections spread fast. The research is still in progress -Some security researchers describe malware as variant of Petya; others say it’s a brand new sample. The low-level attack works in the →

http://www.iflscience.com/technology/the-internet-is-actually-controlled-by-14-people-who-hold-7-secret-keys/ This sounds like something out of a Dan Brown book, but it isn’t: The whole internet is controlled by seven actual, physical keys. ICANN maps the numbers (easier for computers to use) with words (easier for humans to use). If someone were to gain control of ICANN’s database, that person would control the internet.  The physical →

https://www.theregister.co.uk/2017/06/23/aes_256_cracked_50_seconds_200_kit/ Side-channel attacks that monitor a computer’s electromagnetic output to snaffle passwords are nothing new. They usually require direct access to the target system and a lot of expensive machinery – but no longer. Researchers at Fox‑IT have managed to wirelessly extract secret AES-256 encryption keys from a distance of one metre (3.3 feet) – →

https://blog.acolyer.org/2017/06/22/iot-goes-nuclear-creating-a-zigbee-chain-reaction/ The popular Philips Hue smart lamps use ZigBee for example. Suppose you could build a worm that jumps directly from one lamp to another using their ZigBee wireless connectivity and their physical proximity. If the install base of lamps in a city is sufficiently dense, you could take them all over in no time, →

https://www.theregister.co.uk/2017/06/23/windows_10_leak Exclusive A massive trove of Microsoft’s internal Windows operating system builds and chunks of its core source code have leaked online. →

http://thehackernews.com/2017/06/windows-10-redstone3-smb.html?m=1 The Server Message Block version 1 (SMBv1) — a 30-year-old file sharing protocol which came to light last month after the devastating WannaCry outbreak — will be removed from the upcoming Windows 10 (1709) Redstone 3 Update. The WannaCry ransomware wreaked havoc last month. You can find more information on WannaCry at http://www.epanorama.net/newepa/2017/05/12/an-nsa-derived-ransomware-worm-is-shutting-down-computers-worldwide/ →