backdoor
Patch Management in the Post-SolarWinds Era
The SolarWinds breach, in which hackers inserted malware into software updates sent to thousands of customers and created a backdoor to their IT systems, suggests organizations need to seriously rethink patch management ...
Security Boulevard
Targeting Process for the SolarWinds Backdoor
Erik Hjelmvik | | avsvmcloud.com, backdoor, C2, CNAME, dns, fireeye, Microsoft, SolarWinds, Solorigate, Stage 2, STAGE2, SUNBURST, targeted
The SolarWinds Orion backdoor, known as SUNBURST or Solorigate, has been analyzed by numerous experts from Microsoft, FireEye and several anti-virus vendors. However, we have noticed that many of the published reports ...
Zyxel’s Ridiculous Backdoor: Happy New Year, Now Patch Your Gear
Zyxel, maker of networking gear, “accidentally” introduced a backdoor into its latest firmware, giving hackers access to the networks of businesses and government agencies ...
Security Boulevard
Best of 2020: Was This Huawei’s Failed Attempt at a Linux Backdoor?
A Huawei employee submitted a large, buggy patch to the Linux kernel—apparently it contained a “trivially exploitable” security hole ...
Security Boulevard
SolarWinds/SUNBURST Backdoor, Third-Party and Supply Chain Security
Tom Eston | | backdoor, Cybersecurity, Digital Privacy, Episodes, fireeye, hacked, Hacking, Malware, Orion, Podcast, Privacy, Russia, SolarWinds, SUNBURST, supply chain, Supply Chain Attacks, Weekly Edition
In episode 152 for December 21st 2020: A discussion about the SolarWinds Orion backdoor, third-party security, and the threat of supply chain attacks with co-host Kevin Johnson. ** Links mentioned on the ...
Reassembling Victim Domain Fragments from SUNBURST DNS
Erik Hjelmvik | | .net, 02af7cec58b9a5da1c542b5a32151ba1, avsvmcloud, b91ce2fa41029f6955bff20079468448, backdoor, dns, pDNS, SolarWinds, SolarWinds-Core-v2019.4.5220-Hotfix5.msp, SolarWinds.Orion.Core.BusinessLayer.dll, Solorigate, SUNBURST, SunburstDomainDecoder, trojan
We are releasing a free tool called SunburstDomainDecoder today, which is created in order to help CERT organizations identify victims of the trojanized SolarWinds software update, known as SUNBURST or Solorigate. SunburstDomainDecoder ...
The Dangers of Government-Mandated Encryption Backdoors
In late June, two pieces of legislation were introduced to the U.S. Congress, each offering its own requirements for mandating encryption backdoors—which would effectively put an end to end-to-end encryption. The LAED ...
Security Boulevard
Recent Cases Question Backdoor Encryption
Mark Rasch | | backdoor, child porn, Congress, EARN IT Act, facebook, FBI, Juniper Networks, nsa, Privacy
Recent events are calling into question the necessity of computer backdoors and the future of our personal privacy U.S. law enforcement for decades has decried the “going dark” problem with computers and ...
Security Boulevard
Apple’s Law Enforcement Backdoor Dispute, Signal PINs, EasyJet Data Breach
Tom Eston | | Apple, backdoor, Cybersecurity, Data breach, Data Privacy, easyJet, FBI, Podcast, Podcast Episodes, Privacy, signal, US government, Weekly Blaze Podcast
In episode 122 for May 25th 2020: Apple and the US Government dispute over law enforcement backdoors in Apple products, secure messaging app Signal starts to move away from using phone numbers ...
COVID-19 Mass Surveillance, New Coronavirus Cyber-Attacks, Encryption Backdoors
Tom Eston | | android, backdoor, coronavirus, COVID-19, cyber attacks, Cybersecurity, Data Privacy, EARN IT, EFF, government, israel, Malware, Mobile, Phishing, Podcast, Podcast Episodes, Privacy, Ransomware, signal, surveillance, virus, Weekly Blaze Podcast, WhatsApp
In episode 113 for March 23rd 2020: Israel passes an emergency law to use mobile data to track people infected with COVID-19, the latest coronavirus cyber-attacks to be aware of, and how ...