The latest advanced threat discovery uncovers nation state (possibly NSA) malware that overwrites hard drive firmware; making it extremely difficult to find or clean. Watch the video for more details. (Episode Runtime: 2:26) Direct YouTube Link: https://www.youtube.com/watch?v=nL39RZPvLS0 EPISODE REFERENCES: Kaspersky’s blog post on the Equation Group (EG) - Kaspersky More … [Read more...]
Sony Breach & More – WSWiR Episode 131
Operation Cleaver, FIN4, Regin, and Sony Breach Now that cyber attacks have gone primetime, every week is filled with new information security (infosec) news, leaving administrators little time to catch up. If you're falling behind, let our weekly video summarize the biggest security news for you. No vacation goes unpunished. Unfortunately, skipping last week's video due to … [Read more...]
APT Blocker – WSWiR Episode 101
April Patch Day, NSA Encryption Backdoors, and APT Blocker Ready for your weekly summary of InfoSec news? Well here it is. This week's episode covers what you need to know about next week's Microsoft patch day, shares details about the latest NSA/RSA encryption scandal, and unveils WatchGuard's latest security service, which can protect you from zero day malware. Watch the … [Read more...]
IE FixIt Corrects Zero Day Drive-by Download Exploit
I can think of better ways to end the year than with a last-minute zero day Internet Explorer (IE) exploit found in the wild. Yet that is exactly what happened last week. The good news is Microsoft has a quick fix. Late last week, FireEye reported that attackers had infected the Council of Foreign Relations' (CFR) web site with malicious code that leveraged a previously … [Read more...]
Don’t Be a Target – Anticipate and Monitor for APT Activity
Our security predictions for 2012 forecasted that the class of targeted attacks known at APTs – advanced persistent threats – would trickle down, and begin to affect smaller organizations. And while it might not make the headlines like the recent story about the data breach at Coca-Cola in 2009 that is still affecting the company three years later, a successful attack can be … [Read more...]