DNS Reaper is yet another sub-domain takeover tool, but with an emphasis on accuracy, speed and the number of signatures in our arsenal! We can scan around 50 subdomains per second, testing each one with over 50 takeover signatures. This means most organisations can scan their entire DNS estate in less than 10 seconds. https://github.com/punk-security/dnsReaper?utm_source=tldrnewsletter
Continue reading...Security
DDoS attacks in high bandwidth bursts
https://www.darkreading.com/threat-intelligence/ddos-attacks-hitting-victims-in-high-bandwidth-bursts Security firm Imperva culled the intelligence from nearly 5,600 network-level attacks encountered by its clients to find that attackers continued to increase the intensity of attacks as they also shortened attack duration. More than half of the attacks lasted eight minutes or less, with attackers repeatedly inundating the same companies with floods of data — including one attack that topped 1 Tbps, according to Imperva.
Continue reading...From the Big Brother Files: Chicago Heat
The Chicago Police Department is using an algorithm to predict whether citizens will be involved with a shooting incident. While the system identifies people who might be involved with an incident, it doesn’t say on which side the citizen might be involved. This resulted in a citizen with no record of violence being continually contacted by the police, which caused the person to be targeted twice by violent crime. The system uses data from police stops and arrests to make educated guesses about...
Continue reading...Denial of Service and the xISP Part 1
Most service providers have been the victim of a Denial of Service (DoS) attack at one point or another. Sometimes you may not realize you are under an attack. A few months ago, I posted a simple screenshot at https://blog.j2sw.com/networking/anatomy-of-a-ddos/ of what an active DDoS looks like. Types of AttacksIn order to know what to look for you have to understand the four basic types of attacks. I will outline this and talk about how modern attacks are affecting Internet Service Providers (ISPs). In my...
Continue reading...WPS: Cyber Security & Online Privacy
John Lovell interviews professional hacker on cyber security, privacy on the internet, cyber terrorism, penetration testing, information / data security, confidentiality, phishing, the dark / deep web, and hacking in Hollywood movies such as James Bond Skyfall, Hackers, Swordfish, the Net, Mr. Robot, and other movies.
Continue reading...Garmin gets hit with Ransomware
https://www.forbes.com/sites/barrycollins/2020/07/25/will-garmin-pay-10m-ransom-to-end-two-day-outage/#2e6983423164 Garmin is reportedly being asked to pay a $10 million ransom to free its systems from a cyberattack that has taken down many of its services for two days. The navigation company was hit by a ransomware attack on Thursday, leaving customers unable to log fitness sessions in Garmin apps and pilots unable to download flight plans for aircraft navigation systems, among other problems. The company’s communication systems have also been taken offline, leaving it unable to respond to disgruntled customers. Garmin employees...
Continue reading...Is your password secure?
One of the reasons to use password managers such as LastPass with 2Factor authentication
Continue reading...Updated Mikrotik firewall script from Rick Frey
Our friend Rick Frey has updated his Mikrotik Firewall script for securing RouterOS
Continue reading...Interesting product: Firewalla
Interesting product. https://firewalla.com/
Continue reading...Working with some Netgate/Pfsense Firewalls
Just a little firewall switch today. Netgate firewall appliance switched out to replace some old Cisco ASAs. #packetsdownrange
Continue reading...
