Cyber security news for all

More

    NSA publishes cyber sheet for preventive measures against successful attacks

    NSA has published a cyber security ​​sheet in cooperation with the news service Australian Signals Directorate. It deals with the two authorities, increasing  dangers from webshells. Scripts or programs that place attackers on poorly secured web servers and then allow them remote access or the execution of commands on the compromised systems.

    Preventive measures against successful attacks are discussed in the information sheet ,as well as in the repository in the form of appropriate tools.

    Specific Security Vulnerabilities Are Also Included

    The sheet also lists CVE numbers for specific security vulnerabilities that attackers typically use to install webshells. Most are from last year, few were reported in previous years.

    The document is now available for download. There are administrator techniques for detecting and removing the malicious code, which is often well camouflaged and equipped with effective persistence mechanisms. It also mentions specific, mostly free scripts and tools that help identify anomalies. Many of the tools mentioned are part of a repository of the NSA, which is exclusively dedicated to the Webshell topic.

    Critics therefore call for the possibility of hostile misuse in the risk analysis when developing hacking tools. The vulnerabilities are also highly controversial in this context. As part of this process, the governments can decide whether its own secret services can use a discovered security hole for their purposes and hide the security risk, or whether the bug should be published and the software manufacturer should correct it.

    Checking The List Could Be A Good Reason

    Most of the gaps should have been eliminated by the respective manufacturers. However, their unchanged popularity among attackers suggests that far from all users have applied the patches available. So the list could be a good reason to check it out.

    Recent Articles

    The warning sent to employees about Tiktok app was a mistake says Amazon

    On Friday morning, Amazon sent out a memo to its employees, asking them to uninstall the popular social media app TikTok off their phone....

    Other Android phones sold in the US contains pre-installed malware

    There’s a discovery of Pre-installed malware on another phone by researchers from Malwarebytes; through the lifeline Assistance program for sale in the United States....

    About 15 billion stolen passwords and usernames sold on the dark web.

    A recent finding has shown that about 15 billion passwords and usernames are distributed on the dark web. This compromise will bring about credential...

    Hundreds of multinational companies aimed by Russian BEC Gang

    According to the security firm Agari, there has been a discovery of a newly uncovered Russia-based business email compromise gang; BEC gang that scams...

    The slamming of undeletable Adware on Android users

    Researchers have discovered that about 14.8% of users of android phones that were targeted with mobile adware or malware the previous year have undeletable...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox