Home » Malware

“Next-Gen AV” Gets Owned by Security Researcher.

It seems the so called “Next-Gen AV” companies can be a little sensitive. A security researcher and red teamer, Curtis Brazzell, was practicing his skills against one of these so called next-gen Anti-Virus products, trying to bypass their built in protections to either shut down the AV service or stop it from being useful. After popping a shell on the box he wanted to use what tools he had available to him locally to bypass the protections. Running as Admin he was unsuccessful in stopping the service, so elevated his privileges to... 
 

Global Hack Attack Only Makes $16k, It Makes You WannaCry!

Yesterday’s global WannaCry Ransomware attack made it’s authors a grand total of $16800, a total of 46 victims paying up the required $300 for unencrypting their data. Transactions can be monitored via the Bitcoin accounts that hackers wanted payments sent to. There were three bitcoin accounts associated with the hack: https://blockchain.info/address/12t9YDPgwueZ9NyMgw519p7AA8isjr6SMw https://blockchain.info/address/13AM4VW2dhxYgXeQepoHkHSQuy6NgaEb94 https://blockchain.info/address/115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn The attack was accidentally... 
 

Why Anti-Virus is so Useless

Times are a changing. Once a upon a time your security was all about a decent Firewall and some Anti-Virus and you were good to go. Yeah, not so much any more. Signature based Anti-Virus, as a tool to protect you from infection, is pretty much useless in this day and age. Why, because hackers and the techniques they use to infect you have evolved. Back in the day if you spotted a new bit Malware you could create a signature, essentially a SHA1, that would allow you to detect the Malware and allow you to block the infection. The challenge now-a-days... 
 

The Best Anti-Virus to Protect You When Online!

I use to work for an Anti-Virus company, I still work for a large american security vendor, so I know the troubles you can get in to when online. The bad guys want to get a Trojan or Malware on to your PC, so they can steal your bank details, steal your PayPal details or use your machine to commit fraud around the globe. There is some good news and bad news, the good news is there are a couple of things you can do to protect yourself, as described below, the bad news is they are pretty determined. The current going rate for you PayPal details on... 
 

The Truth About Mobile Malware!

A Toxic Hell Stew of Vulnerabilities The above quote was made by Tim Cook at last years Apple developers conference in regards to the Android operating system. He went on to say that 99% of all Mobile Malware was produced for, and operated on Android. Having come from a threat research background I can tell you he is not to far wrong. But…. There are lies, damn lies and then, there are statistics. If you just limit your view to a portion of the statistics you could easily conclude the Android is indeed “a toxic hell stew of vulnerabilities”,... 
 

Owned! Your Computers Belong to Us.

Legbacore Presenation The boys Xeno Kovah and Corey Kallenberg, regulars at the major security conferences, gave a presentation at the CanSecWest security conference in Vancouver this past week, on how to hack BIOSes. Xeno and Corey, previously of MITRE (you know the non-profit organization that manages Federally Funded Research and Development Centers (FFRDCs) supporting the DOD, the FAA, the IRS, the DHS, and NIST) fame, have gone out on their own at LegbaCore. Their first major bit of research is a working proof of concept of owning BIOS Chips... 
 

Next Gen SOC to Protect Our Boys in the Field

Dr Kevin Jones & Ben Parish It has been announced today that Airbus Group Innovations has been awarded a major contract by the Defence Science and Technology Laboratory (DSTL), as part of their Cyber Situational Awareness research project. The project goal is to develop and mature a Virtual Cyber Centre of Operations (VCCO), that will allow military decision makers to call on experts anywhere around the world to help deal with cyber situations. The research will assist in the development and design of a next generation Security Operations... 
 

Stuxnet – Cyber War

One of the first Cyber Weapons that has been talked about from any nation was Stuxnet. The Israelis and Americans came out of the closet to admit that they had an active cyber offensive program and that “Yes” they had created Stuxnet to put the Iranian nuclear program behind schedule. What I find interesting about this admission, is not that they admit to having an active cyber offensive program, I expected that, but to admit that you created a cyber weapon, that used several zero day critical vulnerabilities that could be used against... 
 

Kaspersky Says “No!”

Kaspersky Anti-Virus users today were waking up to no internet! An update from the Anti-Virus vendor cut off internet access for users. Presumably with no Internet access your risk profile was significantly improved, however users were none too happy to find they could not check in to Facebook to see what the Ex-Boyfriend/Girlfriend was up to. The update seemed to impact the web anti-virus component of the Kaspersky suite. In an update from Kaspersky they stated that the issue was caused by a database update at 8:52pm on Feb 4th, Moscow time. They... 
 

Are You a Target for an APT (Advanced Persistent Threat)

In a previous article I explained what an APT looked like. Most organisations I talk to believe they are not likely to be a target of an APT, the logic being that they have nothing of interest that a foreign government would need. It is true certain organisations are more likely to be targeted by a foreign government, other government organisations for example, organisations that make up part of the critical national infrastructure, that would include most banks, oil and energy companies, broadcasters or power generating organisations, however... 
 
© 2006-2018 Security magazine.