What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-03-16 17:07:16 | The Importance of Physical Access Endpoint Detection (lien direct) | >In our latest blog, Nozomi Networks Labs share insights into host-based threats, highlight the importance of endpoint detection sensors like Arc, and explain how these sensors can be used to protect OT/IoT assets. | Industrial | ★★ | |
|
2023-03-14 19:05:17 | ChatGPT: AI\'s Evolving Capabilities and Consequences for Cybersecurity (lien direct) | >ChatGPT has taken the tech world by storm. This super interesting technology responds to queries and exchanges information back-and-forth in a manner that is almost human. The impressive responses, with the content and flow of a human-to-human conversation, feel like we’ve had such a technological breakthrough, very much like the early internet in the early […] | ChatGPT | ★★★ | |
|
2023-03-08 19:23:33 | Addressing TSA\'s Aviation Security Emergency Mandates for Airlines and Airports (lien direct) | >The Department of Homeland Security (DHS) and its Transportation Security Administration (TSA) have issued a handful of sector-specific cybersecurity directives over the last eighteen months. The effort began as a response to the 2021 ransomware attack on the Colonial Pipeline, which became a catalyst for the first major security directive for pipeline owners and operators. […] | Ransomware | ★★ | |
|
2023-03-06 19:26:29 | EPA Memorandum Directs Public Water Systems to Survey OT/ICS Cybersecurity (lien direct) | >Water is one of the most abundant and precious resources on Earth, yet the increasingly digital and networked operations that supply clean and safe drinking water have experienced some neglect when it comes to modern day cybersecurity best practices. According to the American Water Works Association, the U.S. has approximately 52,000 dispersed drinking water systems, […] | ★★★ | ||
|
2023-03-02 17:50:46 | White House Announces New National Cybersecurity Strategy: What Does This Mean for Critical Infrastructure? (lien direct) | >On March 2, 2023, the Biden-Harris Administration announced its new National Cybersecurity Strategy, a comprehensive approach to safeguarding the United States' critical digital infrastructure. The strategy has been shaped by major cyber incidents that threatened public services in recent years and comes at a time when conflict is intensifying in Eastern Europe. The document focuses […] | ★★ | ||
|
2023-02-28 17:15:50 | (Déjà vu) Flaws in Hitachi Relion 650/670 Series IEDs Update Mechanism (lien direct) | >Since disclosing vulnerabilities to Real Time Locating Systems (RTLS) at Black Hat USA in 2022, Nozomi Networks labs continues to find critical vulnerabilities in these systems. Read how these vulnerabilities affect critical infrastructure and how to protect potentially affected devices in our blog. | Vulnerability | ★★★ | |
|
2023-02-07 19:35:04 | The Importance of Reverse Engineering in Network Analysis (lien direct) | >Comprehensive research is required to create the best detection rule for a new vulnerability or threat. But what does 'best' mean? Well, the interpretation of 'best' depends on what we know about the vulnerability, but sometimes key information may not be available. Therefore, to develop accurate detection rules that can track malicious activity, you must […] | Vulnerability | ★★★ | |
|
2023-01-31 10:30:07 | Nozomi Networks Discovers Nine Vulnerabilities Affecting Sewio RTLS Studio (lien direct) | >Since disclosing vulnerabilities to Real Time Locating Systems (RTLS) at Black Hat USA in 2022, Nozomi Networks labs continues to find critical vulnerabilities in these systems. Read how these vulnerabilities affect critical infrastructure and how to protect potentially affected devices in our blog. | ★★★★ | ||
|
2023-01-24 13:01:23 | Get More Insight into Endpoint Activity and Threats with Nozomi Arc (lien direct) | >We are very excited to be launching the newest member of our product portfolio, Nozomi Arc. Arc is our first endpoint security sensor that now complements your Guardian and Vantage deployments with more visibility into a host's attack surfaces and anomalies, to give a more detailed view of your complete OT/ICS environment. It improves operational […] | ★★ | ||
|
2023-01-18 22:08:31 | A Comprehensive Guide to IoT Security (lien direct) | >As digital transformation fuels the proliferation of IoT devices across industrial environments, having a strong IoT security program in place has become vital to protect critical infrastructure from cyberattacks. Table of Contents: What Is IoT Security? The Internet of Things, also known as IoT, is a system of interconnected computing devices, mechanical machines, or objects […] | Industrial | ★★★★ | |
|
2023-01-18 12:56:49 | (Déjà vu) Nozomi Networks Researchers Take a Deep Look into the ICS Threat Landscape (lien direct) | >Cyber criminals, hacktivists and nation-state actors continue to evolve their craft for greater success. Based on activity monitored by Nozomi Networks researchers over the last six months, here is a summary of attacks trends security professionals should prepare to encounter in 2023. | Threat | ★★ | |
|
2023-01-11 16:40:57 | Be On the Lookout for These New Cybersecurity Threats in 2023 (lien direct) | >Cyber criminals, hacktivists and nation-state actors continue to evolve their craft for greater success. Based on activity monitored by Nozomi Networks researchers over the last six months, here is a summary of attacks trends security professionals should prepare to encounter in 2023. | ★★ | ||
|
2022-12-29 08:03:40 | Log4j Exploit Attempts Continue 1 Year Later (lien direct) | >Malicious actors are still attempting to exploit Apache Log4j one year later. This blog recaps Log4Shell, provides technical insights from our Labs, and reemphasize best practices for keeping networks protected. | ★★★ | ||
|
2022-12-20 06:48:23 | European Network and Information Security Directive Update (NIS2): High Level Strategy and Risk Management Priorities (lien direct) | >Updates to the latest iteration of the NIS version 2 guidance to coordinate cybersecurity across the European Union specify new terms and mandates for Member States. The guidance tasks leaders with applying cybersecurity considerations and requirements to entities that serve a large part of the populations and are considered vital to the economy based on […] | Guideline | ★★ | |
|
2022-12-15 06:44:06 | Tracking Malicious Glupteba Activity Through the Blockchain (lien direct) | >Glupteba is a trojan horse typically deployed via malicious installers and software cracks. It is a modular malware operators can use to perform a wide range of tasks. Surprisingly, Glupteba leverages the Bitcoin blockchain to distribute its C&C domains. | Malware | ★★ | |
|
2022-12-13 07:40:10 | OT Cybersecurity in 2023: Time to Show the Receipts (lien direct) | >There has been public broad realization that operations which tolerate little to no physical downtime-including critical infrastructure, industrial sectors and hyperconnected facilities-are lucrative targets for cyberattacks. A decade ago, intrusion and anomaly detection tools for operational technology (OT) and industrial control systems (ICS) were in their infancy. Today, the market is expanding and maturing in […] | Industrial | ★★★ | |
|
2022-12-06 09:26:19 | Technical Analysis of the Winbox Payload in WindiGo (lien direct) | >WindiGo is a malware that exploits CVE-2018-14847 to gain access to MikroTik routers, which has been used in several campaigns by multiple actors. This blog provides a technical analysis of WindiGo as well as Indicators of Compromise (IoCs) you can use to detect WindiGo in your network. | Malware | ★★★ | |
|
2022-12-01 14:00:00 | Flaws in GX Works3 Threaten Mitsubishi Electric Safety PLC Security (lien direct) | >In this blog, we uncover three vulnerabilities that affect Mitsubishi Electric GX Works3, tracked under CVE-2022-29831, CVE-2022-29832, and CVE-2022-29833 (Mitsubishi Electric advisory 2022-015, CISA advisory TODO), and that, in the worst-case scenario, may lead to the compromise of safety PLCs with the only requirement being the possession of associated GX Works3 project files. | Guideline | ★★★ | |
|
2022-11-29 14:00:00 | How IoT Botnets Evade Detection and Analysis – Part 2 (lien direct) | >Nozomi Networks Labs analyzed 728 malware samples, collected from our Internet of Things (IoT) honeypots over the course of 15 days, to discover new modification techniques malware authors are using to evade detection. | Malware | ★★★ | |
|
2022-11-22 08:35:11 | Vulnerabilities in BMC Firmware Affect OT/IoT Device Security – Part 1 (lien direct) | >Over the past year, Nozomi Networks Labs has conducted research on the security of Baseboard Management Controllers (BMCs), with a special focus on OT and IoT devices. In part one of this blog series, we reveal thirteen vulnerabilities that affect BMCs of Lanner devices based on the American Megatrends (AMI) MegaRAC SP-X. By abusing these […] | ★★★ | ||
|
2022-11-15 08:29:05 | Exploring Modifications in New Mirai Botnet Clones (lien direct) | >Nozomi Networks researchers discover modified Mirai malware, making it difficult to detect the original source of their attacks. In this blog, we explore some of the ways that Mirai variants have been modified and what this means for network defenders fighting against them. | ★★★ | ||
|
2022-11-08 13:02:11 | Nozomi OnePass: Flexible, Industry-first Subscription Pricing for Hardware and More (lien direct) | >Today, Nozomi Networks is launching a revolutionary approach to licensing and pricing for the OT/IoT security industry: a new subscription model called Nozomi OnePass™. OnePass is a single subscription to all Nozomi Networks solutions, both hardware and software. It allows customers to build more flexible solutions to always meet their ever-changing needs, that they will […] | |||
|
2022-11-02 09:00:23 | Could Threat Actors Be Downgrading Their Malware to Evade Detection? (lien direct) | >Threat actors are known to modify their malware to evade detection and make additional profits. They do this by changing the file name and IP address, along with other features. This gives them an advantage, as it makes detection more difficult and helps them stay under the radar. The modifications are so common that we […] | Malware Threat | ||
|
2022-10-27 17:04:26 | Sharpening \'Shields Up\': CISA Delivers Critical Infrastructure Cyber Performance Goals to Prioritize Decisions, Spending, and Action (lien direct) | This month in honor of National Cybersecurity Awareness Month, President Biden announced new and lasting efforts to strengthen U.S. cybersecurity across the federal government and nation as a whole. Recognizing the need to build resilience within connected technologies and across technology-dependent critical infrastructure sectors, President Biden warned that “by destroying, corrupting, or stealing information from […] | |||
|
2022-10-24 08:38:38 | Smart Cities Continue to Prioritize Cybersecurity to Ensure Privacy and Resiliency (lien direct) | >Cities all over the world are embracing digital transformation to become more efficient, resilient and environmentally sustainable. In smart cities, IoT, OT and IT technologies converge to improve the effectiveness of systems ranging from transportation, energy, public safety and utilities. But as smart cities grow more complex and interconnected, they become more vulnerable to cyberattacks. […] | |||
|
2022-10-20 17:17:08 | Nozomi Networks Labs: Discovering and Reporting Vulnerabilities to Increase Security (lien direct) | >As cybersecurity practitioners struggle to keep pace with continuous changes to the cyber threat landscape, threat actors continue to refine their Tactics, Techniques, and Procedures (TTPs) when carrying out cyberattacks. This is why the role of vulnerability research is fundamental in staying ahead of the curve by notifying vendors and asset owners of security vulnerabilities […] | Vulnerability Threat | ||
|
2022-10-19 20:36:06 | Nozomi Networks Publishes Vulnerabilities in Siemens Desigo Devices (lien direct) | >Last month, the U.S. National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) released the joint Cybersecurity Advisory “Control System Defense: Know the Opponent,” describing Tactics, Techniques, and Procedures (TTPs) malicious actors use to compromise OT/ICS assets. One of the techniques mentioned in the advisory is the MITRE ATT&CK T0832 “Manipulation of […] | |||
|
2022-10-17 06:26:57 | Nozomi Networks Report: Building Cyber Resilience in the Water Sector (lien direct) | >Water has not typically been an industry closely associated with cybersecurity threats. But this has changed in recent years as the sector has become increasingly automated, with the rapid adoption and use of digital environments. As information technology (IT), operational technology (OT) and Internet of Things (IoT) become digitized and connected, hackers have become more […] | |||
|
2022-10-11 16:07:04 | CISA Gets Serious About Visibility on Federal Networks – How U.S. Agencies Can Meet BOD 23-01 (lien direct) | >The Cybersecurity and Infrastructure Security Agency (CISA) has issued a Binding Operational Directive (BOD 23-01) that is designed to improve U.S. federal agencies' ability to find vulnerabilities in their network for better prevention and response to cybersecurity incidents. According to CISA, BOD 23-01 aims “to make measurable progress toward enhancing visibility into agency assets and […] | |||
|
2022-09-15 23:32:00 | An Introduction to Nozomi Networks Content Packs (lien direct) | >If you've been following our Release Notes or some of our recent blogs, you may have noticed mention of a new feature that we added to our product earlier this year, Content Packs. For example, the blog released by Bruce Snell highlights the usage of Content Packs to conduct threat hunting activities for Industroyer2, and our Log4j Content […] | Threat | ||
|
2022-08-30 20:41:00 | Automatic Restoration of Corrupted UPX-packed Samples (lien direct) | >Nozomi Networks Labs scans the web on a daily basis and monitors new techniques that Internet of Things (IoT) malware developers introduce to deceive automated code analysis systems. In most cases, these threats are relatively simple and can be easily bypassed when the sample is manually analyzed in the debugger. However, it can be a […] | Malware | ||
|
2022-08-26 23:17:00 | TSA Requirements: A Snapshot of Growing Attention to Pipeline Cybersecurity (lien direct) | >Pipeline operators are taking necessary steps to strengthen their digital infrastructure and build cyber resilience at a time of increased uncertainty. Depending on who you ask, nearly every digital component they rely on is potentially at risk in some way. While owners and operators realize the potential cascading effects of a cyber incident affecting their operations, […] |
1
We have: 32 articles.
We have: 32 articles.
To see everything:
Our RSS (filtrered)
