Notes
Field notes on security, AI and infrastructure
-
“GootBot: Evading Detection and Expanding Lateral Movement in Cyber Attacks”
GootBot is a new variant of the GootLoader malware that is designed to evade detection and facilitate lateral movement on compromised systems. It is an obfuscated PowerShell script that serves as a…
-
“Critical Zero-Day Vulnerabilities Impact Microsoft Exchange, Prompting Urgent Security Measures”
Microsoft Exchange, an enterprise-level application developed by Microsoft, has recently been impacted by four zero-day vulnerabilities. These flaws were disclosed by Trend Micro’s Zero Day Initiative and reported to Microsoft in September…
-
Enhancing User Privacy: Google Introduces “IP Protection” Feature for Chrome Browser
Google is introducing an “IP Protection” feature for its Chrome browser to enhance user privacy. IP addresses can be misused for tracking user activities and creating persistent profiles. The new feature will…
-
“Critical Vulnerability Discovered in Synology’s DiskStation Manager Software: Reminder of the Ongoing Challenges in the Digital World”
A medium-severity flaw has been discovered in Synology’s DiskStation Manager (DSM) software that could allow cyber attackers to gain access to administrator accounts. The vulnerability, known as CVE-2023-2729, exposes a weakness in…
-
“HTTP/2 Rapid Reset: Unprecedented DDoS Attack Shakes Cybersecurity Landscape”
A new Distributed Denial of Service (DDoS) method, named ‘HTTP/2 Rapid Reset,’ has emerged, causing a significant shift in the cybersecurity landscape. This method has been able to generate 200-398 million requests…
-
“Critical Security Flaw in WS_FTP Server Exposes Millions to Cyber Attacks: Urgent Action Required”
Progress Software has revealed a series of hotfixes to counter a dangerous security flaw detected in the WS_FTP Server Ad hoc Transfer Module and the WS_FTP Server manager interface, including a critical…
-
A Four-Step Approach to Strengthen Your Network Security
In the fast-paced digital age, it’s paramount for organizations to have a robust network security strategy. A strong foundation not only protects sensitive data but also ensures business continuity. I propose a…
-
Revolutionizing Home Lab Security: My Transition to pfSense Firewall with Snort-IPS and Tailscale VPN
Introduction In the constantly evolving world of network security, it’s essential to stay ahead of potential threats. Like many tech-savvy individuals, I’ve always sought to maintain a robust home lab firewall system…
-
Tails
Introduction Tails, the Linux distribution known for providing anonymous and secure internet browsing, has recently released its latest version, Tails 5.14. This update brings several enhancements to the persistent storage, stronger…
-
Understanding MITRE ATT&CK®: A Comprehensive Guide to Effective Cybersecurity
Introduction In today’s interconnected world, the threat landscape for cybersecurity is constantly evolving. Organizations face sophisticated adversaries who employ various tactics and techniques to breach their defenses. To combat these threats effectively,…