Garmin gets hit with Ransomware

https://www.forbes.com/sites/barrycollins/2020/07/25/will-garmin-pay-10m-ransom-to-end-two-day-outage/#2e6983423164

Garmin is reportedly being asked to pay a $10 million ransom to free its systems from a cyberattack that has taken down many of its services for two days.

The navigation company was hit by a ransomware attack on Thursday, leaving customers unable to log fitness sessions in Garmin apps and pilots unable to download flight plans for aircraft navigation systems, among other problems. The company’s communication systems have also been taken offline, leaving it unable to respond to disgruntled customers.

Garmin employees have told BleepingComputer that the company was struck down by the WastedLocker ransomware.

Mikrotik BGP firewall rules for security

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon
Already a qualifying Patreon member? Refresh to access this content.

Updated Mikrotik firewall script from Rick Frey

Our friend Rick Frey has updated his Mikrotik Firewall script.  You can find it here
http://rickfreyconsulting.com/rfc-mikrotik-firewall-6-0-for-ipv4-free-version/

You will need a fairly beefy router to run all of this.  If you are an enterprise this will be very handy for protecting your corporate network.  If you are an ISP I would pick and choose some of the parts which apply to you.  Your infrastructure should already be on non accessible IP space so the need for this big of a firewall should not be necessary

Equinix Customers – New Access requirements coming in October

For anyone with equipment inside Equinix facilities you need to complete a security profile. This goes into place in October. The below is from their e-mail.

Starting in October, we will provide more efficient access to Equinix IBX locations in a globally consistent process, from the front door of the IBX to your cage. To benefit from this new process as soon as it is available, take action now!

Please complete your Security Profile in the Equinix Customer Portal (ECP) by providing the following information:

  • Add a Headshot Photo
  • Create a Global 6-digit PIN
  • Sign the Global IBX Access Form
  • Provide an Electronic Signature

Once your Security Profile is complete you will receive a unique QR code, which can be accessed via the ECP or the ECP mobile application. Beginning October 21st, you will be able to use your unique QR code at the IBX Access Kiosk for an expedited security entrance process.

Corporate vs ISP networks for the ISP

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon
Already a qualifying Patreon member? Refresh to access this content.

Circle City Con 7.0

https://www.eventbrite.com/e/circlecitycon-70-tickets-62810947234

Continuing our year after year record breaking attendance, CircleCityCon 7.0 promises to test our limits and deliver to you a conference unique from all the others.

Since Circle 1 we have delivered trainings for free with the option to reserve a seat for a modest fee. Since Circle 2 we brought the arcades in. Since Circle 3 we have put on fun themes and stories attendees will enjoy participating in, or feel free to ignore, since Circle 4 we have put on game shows, since Circle 5 we have started adding to the villages with a hardware hacking village, we continued that in Circle 6 adding the biohacking and blue team village. We also started a job fair which we hope to continue.

What will CircleCityCon 7.0 be like? What will we do? What wonders and amazing features do we have to release? ……. Not even we know.

But in August, we will give you a peek…….

Defcon News: Vulnerable Windows Drivers

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.
To view this content, you must be a member of Justin Wilson's Patreon
Already a qualifying Patreon member? Refresh to access this content.

Dot1x in Routeros 6.45.1

Some of you may have noticed a new menu item pop up in winbox labeled dot1x

Dot1x is implementation of IEEE 802.1X standard in RouterOS. Main purpose is to provide port-based network access control using EAP over LAN also known as EAPOL. 802.1X consists of a supplicant, an authenticator and an authentication server (RADIUS server). Currently both authenticator and supplicant sides are supported in RouterOS. Supported EAP methods for supplicant are EAP-TLS, EAP-TTLS, EAP-MSCHAPv2 and PEAPv0/EAP-MSCHAPv2.

Looking at how to use this?
https://wiki.mikrotik.com/wiki/Manual:Interface/Dot1x#Application_Example