New Threat: B1txor20, A Linux Backdoor Using DNS Tunnel
In short, B1txor20 is a Backdoor for the Linux platform, which uses DNS Tunnel technology to build C2 communication channels. In addition to the traditional backdoor functions, B1txor20 also has functions such as opening Socket5 proxy and remotely downloading and installing Rootkit.
https://blog.netlab.360.com/b1txor20-use-of-dns-tunneling_en/
In short, B1txor20 is a Backdoor for the Linux platform, which uses DNS Tunnel technology to build C2 communication channels. In addition to the traditional backdoor functions, B1txor20 also has functions such as opening Socket5 proxy and remotely downloading and installing Rootkit.
https://blog.netlab.360.com/b1txor20-use-of-dns-tunneling_en/
360 Netlab Blog - Network Security Research Lab at 360
New Threat: B1txor20, A Linux Backdoor Using DNS Tunnel
Background
Since the Log4J vulnerability was exposed, we see more and more malware jumped on the wagon, Elknot, Gafgyt, Mirai are all too familiar, on February 9, 2022, 360Netlab's honeypot system captured an unknown ELF file propagating through the Log4J…
Since the Log4J vulnerability was exposed, we see more and more malware jumped on the wagon, Elknot, Gafgyt, Mirai are all too familiar, on February 9, 2022, 360Netlab's honeypot system captured an unknown ELF file propagating through the Log4J…
Kaspersky o non Kaspersky? Questo è il problema.
TL;DR Il dibattito sull’uso, o meno, delle soluzioni antivirus Kaspersky sui PC dei paesi NATO ha aperto un… Source
by Zerozone.it - https://www.zerozone.it/cybersecurity/kaspersky-o-non-kaspersky-questo-e-il-problema/21186
TL;DR Il dibattito sull’uso, o meno, delle soluzioni antivirus Kaspersky sui PC dei paesi NATO ha aperto un… Source
by Zerozone.it - https://www.zerozone.it/cybersecurity/kaspersky-o-non-kaspersky-questo-e-il-problema/21186
Il blog di Michele Pinassi
Il blog di Michele Pinassi • Kaspersky o non Kaspersky? Questo è il problema.
“Il senatore Gasparri citava il famosissimo antivirus Kaspersky. Signori miei, Kaspersky è nel mercato elettronico della pubblica amministrazione (MEPA) dal 2003 […] Noi non possiamo renderci conto…
Dobbiamo cancellare gli antivirus di Kaspersky?
Attenzione ai software dalla Russia. In Italia l’Agenzia per la cybersicurezza nazionale (Acn) avverte di tenere drizzate le antenne: programmi e prodotti tecnologici made in Russia potrebbero essere usati dal Cremlino come veicolo per un attacco cibernetico a enti pubblici o aziende occidentali dopo l'invasione dell'Ucraina e il muro di sanzioni contro Mosca.
https://www.wired.it/article/kaspersky-russia-ucraina-guerra-antivirus-italia-germania-cybersecurity/
Attenzione ai software dalla Russia. In Italia l’Agenzia per la cybersicurezza nazionale (Acn) avverte di tenere drizzate le antenne: programmi e prodotti tecnologici made in Russia potrebbero essere usati dal Cremlino come veicolo per un attacco cibernetico a enti pubblici o aziende occidentali dopo l'invasione dell'Ucraina e il muro di sanzioni contro Mosca.
https://www.wired.it/article/kaspersky-russia-ucraina-guerra-antivirus-italia-germania-cybersecurity/
Wired Italia
Dobbiamo cancellare gli antivirus di Kaspersky?
L'azienda russa nel mirino delle autorità europee della cybersecurity. Per la Germania è da rimuovere. L'Italia, senza menzionarlo, lo attenziona per l'alta diffusione negli uffici pubblici. Questione di situazione internazionale, a causa dell'invasione russa…
Aggiornamenti per ISC BIND
(AL01/220317/CSIRT-ITA)
Aggiornamenti di sicurezza ISC sanano alcune vulnerabilità, di cui 2 con gravità “alta”, nel prodotto BIND.
by CSIRT - https://csirt.gov.it/contenuti/aggiornamenti-per-isc-bind-al01-220317-csirt-ita
(AL01/220317/CSIRT-ITA)
Aggiornamenti di sicurezza ISC sanano alcune vulnerabilità, di cui 2 con gravità “alta”, nel prodotto BIND.
by CSIRT - https://csirt.gov.it/contenuti/aggiornamenti-per-isc-bind-al01-220317-csirt-ita
Russia Uses Deepfake of Zelensky to Spread Disinformation
“Earlier today, our teams identified and removed a deepfake video claiming to show President Zelensky issuing a statement he never did. It appeared on a reportedly compromised website and then started showing across the internet,” he explained.
“We’ve quickly reviewed and removed this video for violating our policy against misleading manipulated media, and notified our peers at other platforms.”
https://www.infosecurity-magazine.com/news/russia-uses-deepfake-zelensky/?utm_source=dlvr.it&utm_medium=linkedin
“Earlier today, our teams identified and removed a deepfake video claiming to show President Zelensky issuing a statement he never did. It appeared on a reportedly compromised website and then started showing across the internet,” he explained.
“We’ve quickly reviewed and removed this video for violating our policy against misleading manipulated media, and notified our peers at other platforms.”
https://www.infosecurity-magazine.com/news/russia-uses-deepfake-zelensky/?utm_source=dlvr.it&utm_medium=linkedin
Infosecurity Magazine
Meta Removes Deepfake of Ukrainian President
Pro-Russian hackers use novel techniques to spread disinformation
Ukraine killed a Russian general after he made an unsecured call that gave away his location, report says
Ukrainian troops were able to intercept a call by a Russian general and kill him, according to The New York Times.
The paper cited two US military officials for the information. It did not name the general or give a location.
https://www.businessinsider.com/russia-general-killed-after-ukraine-intercepted-unsecured-call-nyt-2022-3?utm_source=reddit.com&r=US&IR=T
Ukrainian troops were able to intercept a call by a Russian general and kill him, according to The New York Times.
The paper cited two US military officials for the information. It did not name the general or give a location.
https://www.businessinsider.com/russia-general-killed-after-ukraine-intercepted-unsecured-call-nyt-2022-3?utm_source=reddit.com&r=US&IR=T
Business Insider
Ukraine killed a Russian general after he made an unsecured call that gave away his location, report says
A large number of senior Russian military officers are being killed in Ukraine, embarrassing losses which appeared to have hampered the invasion.
Ucraina: aperta istruttoria su antivirus Kaspersky. Saranno verificate le modalità del trattamento dei dati degli italiani
l Garante per la protezione dei dati personali ha aperto un’istruttoria per valutare i potenziali rischi relativi al trattamento dei dati personali dei clienti italiani effettuato dalla società russa che fornisce il software antivirus Kaspersky.
L’iniziativa intrapresa d’ufficio dall’Autorità si è resa necessaria in relazione agli eventi bellici in Ucraina, allo scopo di approfondire gli allarmi lanciati da numerosi enti italiani ed europei specializzati in sicurezza informatica sul possibile utilizzo di quel prodotto per attacchi cibernetici contro utenti italiani.
https://www.gpdp.it/web/guest/home/docweb/-/docweb-display/docweb/9754469
l Garante per la protezione dei dati personali ha aperto un’istruttoria per valutare i potenziali rischi relativi al trattamento dei dati personali dei clienti italiani effettuato dalla società russa che fornisce il software antivirus Kaspersky.
L’iniziativa intrapresa d’ufficio dall’Autorità si è resa necessaria in relazione agli eventi bellici in Ucraina, allo scopo di approfondire gli allarmi lanciati da numerosi enti italiani ed europei specializzati in sicurezza informatica sul possibile utilizzo di quel prodotto per attacchi cibernetici contro utenti italiani.
https://www.gpdp.it/web/guest/home/docweb/-/docweb-display/docweb/9754469
www.gpdp.it
Ucraina: aperta istruttoria su antivirus Kaspersky. Saranno verificate le modalità del trattamento dei dati degli italiani
Sintesi riepilogativa delle campagne malevole nella settimana del 12 marzo – 18 marzo 2022
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento, un totale di 69 campagne malevole di cui 66 con obiettivi italiani e 3 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 1493 indicatori di compromissione (IOC) individuati. Riportiamo in seguito il dettaglio delle tipologie illustrate nei grafici, [...]
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-12-marzo-18-marzo-2022/
In questa settimana, il CERT-AGID ha riscontrato ed analizzato, nello scenario italiano di suo riferimento, un totale di 69 campagne malevole di cui 66 con obiettivi italiani e 3 generiche che hanno comunque interessato l’Italia, mettendo a disposizione dei suoi enti accreditati i relativi 1493 indicatori di compromissione (IOC) individuati. Riportiamo in seguito il dettaglio delle tipologie illustrate nei grafici, [...]
by CERT-AgID - https://cert-agid.gov.it/news/sintesi-riepilogativa-delle-campagne-malevole-nella-settimana-del-12-marzo-18-marzo-2022/
CERT-AGID
Sintesi riepilogativa delle campagne malevole nella settimana del 12 marzo – 18 marzo 2022
The Economics of OnlyFans
OnlyFans has become part of the zeitgeist recently.
The rise of e-girls and the prospects of making millions make it a fun thing to gawk at in a reality-tv kind of way. It has benefitted fabulously from the pandemic too. With everyone stuck at home all day, less of us have jobs and we all have less to entertain ourselves with. More existential boredom equals more “fans” and “creators” alike.
https://xsrus.com/the-economics-of-onlyfans
OnlyFans has become part of the zeitgeist recently.
The rise of e-girls and the prospects of making millions make it a fun thing to gawk at in a reality-tv kind of way. It has benefitted fabulously from the pandemic too. With everyone stuck at home all day, less of us have jobs and we all have less to entertain ourselves with. More existential boredom equals more “fans” and “creators” alike.
https://xsrus.com/the-economics-of-onlyfans
Xsrus
The Economics of OnlyFans - xsrus.com
OnlyFans has become part of the zeitgeist recently. The rise of e-girls and the prospects of making millions make it a fun thing to gawk at in a
How to build a culture of cybersecurity
“We put so many resources into ’locking up’ using technology that we forget about the back doors in the organization, and that’s usually people,” said Pearlson, who has a doctorate in business administration with a focus on management information systems. “We need a culture of cybersecurity because you can’t tell everyone everything they need to do. You need them to understand that organizational safety is part of what they need to do in today’s world.”
https://mitsloan.mit.edu/ideas-made-to-matter/how-to-build-a-culture-cybersecurity
“We put so many resources into ’locking up’ using technology that we forget about the back doors in the organization, and that’s usually people,” said Pearlson, who has a doctorate in business administration with a focus on management information systems. “We need a culture of cybersecurity because you can’t tell everyone everything they need to do. You need them to understand that organizational safety is part of what they need to do in today’s world.”
https://mitsloan.mit.edu/ideas-made-to-matter/how-to-build-a-culture-cybersecurity
MIT Management Sloan School
How to build a culture of cybersecurity
Technology and training are not enough to safeguard companies against cybersecurity attacks. Here’s how to infuse safe behavior into corporate culture.
I nodi privacy delle Linee guida Agid per i siti della PA: perché il Garante approva con riserva
Il Garante privacy ha approvato con riserva le “Linee guida di design per i siti internet e i servizi digitali della PA” di Agid, sottolineando alcuni fronti critici in particolare in ambito accessibilità, affidabilità e sicurezza: l’autorità ha invitato a integrare il documento, affinché sia compliant alla normativa sulla data protection
https://www.cybersecurity360.it/news/i-nodi-privacy-delle-linee-guida-agid-per-i-siti-della-pa-perche-il-garante-approva-con-riserva/
Il Garante privacy ha approvato con riserva le “Linee guida di design per i siti internet e i servizi digitali della PA” di Agid, sottolineando alcuni fronti critici in particolare in ambito accessibilità, affidabilità e sicurezza: l’autorità ha invitato a integrare il documento, affinché sia compliant alla normativa sulla data protection
https://www.cybersecurity360.it/news/i-nodi-privacy-delle-linee-guida-agid-per-i-siti-della-pa-perche-il-garante-approva-con-riserva/
Cyber Security 360
I nodi privacy delle Linee guida Agid per i siti della PA: perché il Garante approva con riserva
Il Garante privacy ha approvato con riserva le “Linee guida di design per i siti internet e i servizi digitali della PA” di Agid, sottolineando alcuni fronti critici in particolare in ambito accessibilità, affidabilità e sicurezza: l’autorità ha invitato…
Mapped: Global Happiness Levels in 2022
What really makes people happy? While countless academic researchers have tried to get to the bottom of this, the truth is, it’s a complicated question to answer.
Happiness levels depend on a number of factors, including one’s financial security, perceptions of social support, feelings of personal freedom, and much more.
Spoiler: in Europa, la più felice è la Finlandia
https://www.visualcapitalist.com/mapped-global-happiness-levels-in-2022/
What really makes people happy? While countless academic researchers have tried to get to the bottom of this, the truth is, it’s a complicated question to answer.
Happiness levels depend on a number of factors, including one’s financial security, perceptions of social support, feelings of personal freedom, and much more.
Spoiler: in Europa, la più felice è la Finlandia
https://www.visualcapitalist.com/mapped-global-happiness-levels-in-2022/
Visual Capitalist
Mapped: Global Happiness Levels in 2022
Global happiness levels are determined by several different factors. Here's a look at the happiest and unhappiest countries in every region.
Suspected Conti Ransomware Activity in the Auto Manufacturing Sector
At this stage, Dragos has not yet observed any confirmed initial access methods being utilized and does not have any evidence of ransomware encryption being initiated. The observed communications from the networks are consistent with those commonly associated with established footholds. Dragos observed this activity starting in December 2021, but it may have begun prior to that. It has been ongoing until March 2022.
https://www.dragos.com/blog/industry-news/suspected-conti-ransomware-activity-in-the-auto-manufacturing-sector/
At this stage, Dragos has not yet observed any confirmed initial access methods being utilized and does not have any evidence of ransomware encryption being initiated. The observed communications from the networks are consistent with those commonly associated with established footholds. Dragos observed this activity starting in December 2021, but it may have begun prior to that. It has been ongoing until March 2022.
https://www.dragos.com/blog/industry-news/suspected-conti-ransomware-activity-in-the-auto-manufacturing-sector/
Dragos
Suspected Conti Ransomware Activity in the Auto Manufacturing Sector
Dragos is observing evidence of multiple automotive manufacturers compromised by Emotet. A malware strain & a cybercrime operation.