Security Alerts & News
by Tymoteusz A. Góral

History
#1699 BlackNurse low-volume DoS attack targets firewalls
A type of denial of service attack relevant in the 1990s has resurfaced with surprising potency against modern-day firewalls. Dubbed a BlackNurse attack, the technique leverages a low-volume Internet Control Message Protocol (ICMP) -based attack on vulnerable firewalls made by Cisco, Palo Alto, SonicWall and others, according to researchers.

TDC Security Operations Center, a security firm that published a technical report (PDF) on BlackNurse this week, said the attack is more traditionally called a “ping flood attack.” In this type of assault, traffic volume doesn’t matter as much as the type of packets sent, researchers said.

According to TDC, BlackNurse is based on ICMP Type 3 (Destination Unreachable) Code 3 (Port Unreachable) requests. These are packet replies typically returned to ping sources indicating the destination port is “unreachable,” according to researchers.
Read more
#1705 CrySis ransomware master decryption keys released
#1704 Australian banks dismiss Android NFC past in Apple Pay negotiations
#1703 Snapchat, Skype among apps not protecting users’ privacy
#1702 AdultFriendFinder network hack exposes 412 million accounts
#1701 Smartphone WiFi signals can leak your keystrokes, passwords, and PINs
#1700 Russian banks hit by cyber-attack
#1699 BlackNurse low-volume DoS attack targets firewalls
#1698 OpenSSL patches high-severity DoS bug
#1697 Tech support scammers bite Chrome users with forgotten 2014 bug
#1696 New attack reportedly lets 1 modest laptop knock big servers offline
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12