Security Alerts & News
by Tymoteusz A. Góral

History
#1831 Is Mirai really as black as it’s being painted?
The Mirai botnet, which is made up of IoT devices and which was involved in DDoS attacks whose scale broke all possible records, causing denial of service across an entire region, has been extensively covered by the mass media. Given that the botnet’s source code has been made publicly available and that the Internet of Things trend is on the rise, no decline in IoT botnet activity should be expected in the near future.

To put this in perspective, recall the year 2012, when the source code of the Zeus banker Trojan was made publicly available. A huge number of modifications of the Trojan appeared as a result of this, many of which are still active and rank among the most widespread financial malware. Similarly, the recent leak is likely to result in the emergence of Mirai modifications, created by cybercriminals and based on the source code that was made public.

The botnet remains active. We carried out an analysis of its activity to find out how Mirai operates, what objectives its owners are pursuing and, most importantly, what needs to be done to avoid becoming part of the botnet in the future.
Read more
#1840 The 10 biggest security incidents of 2016
#1839 Updated Sundown exploit kit uses steganography
#1838 Android ransomware infects LG SmartTV
#1837 Ransomworm: the next level of cybersecurity nastiness
#1836 Chrome will soon mark some HTTP pages as 'non-secure'
#1835 Switcher: Android joins the ‘attack-the-router’ club
#1834 This low-cost device may be the world’s best hope against account takeovers
#1833 YubiKey for Windows Hello brings hardware-based 2FA to Windows 10
#1832 Security Keys: practical cryptographic second factors for the modern web (PDF)
#1831 Is Mirai really as black as it’s being painted?
#1830 The most dangerous people on the internet in 2016
#1829 Encrypted messaging app Signal uses Google to bypass censorship
#1828 Disclosing the primary email address for each Facebook user
#1827 Danger close: Fancy Bear tracking of Ukrainian field artillery units
#1826 New French law bars work email after hours
#1825 Changing other people's flight bookings is too easy
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12