linux


A few days ago, a variant of Mirai hit a German telco, forcing 900,000 customers off the Internet. The FortiGuard team has issued an AV signature for it, named Linux/Mirai.B!worm. Several binaries were found in the wild for different architectures. I'll examine the one for ARM here, as that's the architecture I'm the most familiar with. A look at the strings in the binary reveals the following: [Read More]
by RSS Axelle Apvrille  |  Dec 08, 2016  |  Filed in: Security Research
It happened again. This past weekend we witnessed another record-setting DDoS attack, probably primarily caused by infected IoT devices. This attack is attributed to the same piece of code - Linux/Mirai - which attacked KrebsOnSecurity.com and OVH in September. List of Attacks Attributed to Linux/Mirai Date Where Rate Comments Oct 21, 2016 Dyn DNS ? Some of the attacks were coming from hosts infected... [Read More]
by RSS Axelle Apvrille  |  Oct 24, 2016  |  Filed in: Security Research
[Read More]
by RSS Michael Perna  |  Apr 26, 2014  |  Filed in: Industry Trends & News
Recently, Proofpoint security researchers published two blog entries (part one and part two) that they have been observing a series of spam campaigns originating in more than 25 % of cases by Internet of Things (IoT) devices. The compromised devices which were reported to send spam included "multi-media centers, televisions and at least one refrigerator". The first blog entry wasn't sufficiently detailed and raised several doubts. The second entry clarifies several points, though not all, so here's my intake on IoT. Are malware on Internet of... [Read More]
by RSS Axelle Apvrille  |  Jan 27, 2014  |  Filed in: Security Research
Organizations these days have their hands full with security and management challenges brought about by the Bring Your Own Device phenomenon. But why stop at devices? Good question. In fact, the same culture of innovation and self-reliance, spurred by BYOD, has increasingly translated to applications. And as such, users are pushing the trend to its limits by introducing their own applications into the workplace to meet their needs. The burgeoning Bring Your Own Application (BYOA) trend appears to be a natural and logical extension of BYOD--and... [Read More]
by RSS Stefanie Hoffman  |  Aug 31, 2012  |  Filed in: Industry Trends & News
Vulnerabilities and more vulnerabilities plagued the security landscape the week of April 30-May 5. Adobe patched a major Flash flaw, while security experts warned of gaping holes in PHP. Meanwhile, it appears that Intel is going to do something with its McAfee purchase after all. Here's a look at this week in security. Adobe Patches Critical Flaw: Adobe released a patch last week for a critical Flash vulnerability pivotal in targeted attacks that exploit a vulnerable version of Flash on Windows running the Internet Explorer Web browser. Altogether,... [Read More]
by RSS Stefanie Hoffman  |  May 08, 2012  |  Filed in: Industry Trends & News