Blog

Your company is changing software providers. Now, you just have to break it to staff.

It’s on technology leaders to reduce friction and frustration, engage stakeholders and foster communication to ensure a migration goes smoothly.
http://news.poseidon-us.com/SkpNJ4

Vocus’ Melbourne data centre hit by power outage

Caused cloud, internet and network services to become inaccessible.
http://news.poseidon-us.com/SknTM8

NBN Co eyes “transient international airlines” as customers

For its satellite services.
http://news.poseidon-us.com/SknMj8

Patch Tuesday could break Cisco endpoint management

Vendor working on a hotfix.
http://news.poseidon-us.com/Skn1G5

AsynRAT Trojan – Bill Payment (Pago de la factura), (Sun, Mar 12th)

This week the mail server quarantined this file FautraPago392023.gz. I did find it a bit strange after I extracted (gunzip) the file, there was no .exe extension associated with this file. The source and destination addresses are both blank without an actual email address.
http://news.poseidon-us.com/SkmyT1

Week in review: Public MS Word RCE PoC, API exploitation, Patch Tuesday forecast

Microsoft to boost protection against malicious OneNote documents Microsoft has announced that, starting in April 2023, they will be adding enhanced protection when users open or download a file embedded in a OneNote document – a known high-risk phishing file type. Massive GitHub analysis reveals 10 million secrets hidden in 1 billion commits GitGuardian scanned 1.027 billion new GitHub commits in 2022 (+20% compared to 2021) and found 10,000,000 secrets occurrences (+67% compared to 2022). … More → The post Week in review: Public MS Word RCE PoC, API exploitation, Patch Tuesday forecast appeared first on Help Net Security.
http://news.poseidon-us.com/Skm2Vv

In the world’s smallest ball game, scientists throw and catch single atoms using light

Researchers show that individual atoms can be caught and thrown using light. This is the first time an atom has been released from a trap — or thrown — and then caught by another trap. This technology could be used in quantum computing applications.
http://news.poseidon-us.com/SklNG1

ThreatBlockr and Engaged Security Partners help users prioritize breach prevention

ThreatBlockr and Engaged Security Partners announced a partnership focusing on “left of boom” protection to bring enhanced breach prevention to customers. Engaged Security Partners uses ThreatBlockr’s platform for threat intelligence management and integration into the network. Together, Engaged Security Partners’ customers will benefit from blocking malicious traffic and reducing human error, turning employees into threat hunters and creating a strong first and last line of defense. “We have been seeking a partner who prioritizes breach … More → The post ThreatBlockr and Engaged Security Partners help users prioritize breach prevention appeared first on Help Net Security.
http://news.poseidon-us.com/SklKg8

Fun stuff: dancing around the maple

Federal News Network’s Jory Heckman speaks with Recreation News editor Katherine Peach about interesting things to do in and near the nation’s capital.
http://news.poseidon-us.com/SkkNPg

Overview of a Mirai Payload Generator, (Sat, Mar 11th)

The Mirai[1] botnet is active for years. It was the first botnet targeting devices running Linux like camera recorders. Our first diary about it was in 2016![2]. Still today, my honeypot is hit by hundreds of Mirai requests every day! I found a Python script that generates a Mirai payload (SHA256:f56391e9645df1058847e28af6918c64ddc344d9f328b3dde9015213d5efdc7e[3]) and deploys networking services to serve it via FTP, HTTP, and TFTP. Nothing very fancy but it will give you a good idea about how Linux hosts are abused to deliver malicious payloads.
http://news.poseidon-us.com/Skjj0j