In 2019, a new breed of fileless malware will emerge, with wormlike properties that allow it to self-propagate through vulnerable systems and avoid detection. It has been over 15 years since the Code Red computer worm spread through hundreds of thousands of vulnerable Microsoft IIS web servers in an early example of a fileless worm. Since then, both worms and fileless … [Read more...]
Our Vaporworm Prediction Arrives Early
In one of our 2019 Security Predictions, we predicted a future where self-propagating, fileless malware “vaporworms” run rampant. This week, Trend Micro announced in a blog post that this future came earlier than we anticipated. In their write up, Trend Micro analyzes a newly discovered fileless variant of the BLADABINDI remote access trojan (RAT) that added self-propagation … [Read more...]
2019 Security Predictions – A Nation-State Launches a “Fire Sales” Attack
You may remember the fictional concept of a “fire sale” attack from the fourth Die Hard movie, in which a terrorist group planned a coordinated cyber attack against U.S. transportation, financial, and public utilities and communication systems. The terrorists meant to use the fear and confusion caused by the attack to siphon off huge sums of money and disappear without a … [Read more...]
What We Are Thankful For
With Thanksgiving right around the corner (or just having just passed depending on when you listen to this), we wanted to take some time and talk about the things we are thankful for in the cyber security world. Before that though, we’ll cover the latest news in breaking biometrics where researchers out of New York University and the University of Michigan have developed a … [Read more...]
Security Researcher Track: 101
For a security researcher and analyst, references to this position include a “white hat hacker” or an “ethical hacker,” but more commonly and probably more preferred would be a “penetration tester.” I am going to go with a security researcher title. Nowadays, the term ‘hacker’ has negative connotations to it, rightfully so I might add, but, to me, I don’t think that it should … [Read more...]
