Well hello! This is Destruct_Icon as Otakun is on vacation so you get to deal with two posts from me this week. I know, I know, I feel your pain. We’ve had some interesting events to report this week between an enormous DDoS to some potential presents left in your web logs. Alright, on to the news posts!
- As there are many companies moving towards cloud technology, we have to remember that we are placing the hopes of availability into their hands. Microsoft had some issues with Office 365 in December which caused dropped packets and delay for many customers. The root cause was identified as a code issues with a network interface driver.
- Read More @ http://windowsitpro.com/blog/how-small-glitches-can-cause-big-problems-complex-cloud-infrastructures
- BBC and Donald Trump’s website were targeted by a group known as New World Hacking. During the attack against all of BBC’s websites, the DDoS clocked in at over 600Gbps. This was possible due to DDoS tool created by the name of BangStresser.
- Read More @ http://thehackernews.com/2016/01/biggest-ddos-attack.html
- It appears that there are many website owners who may have a hidden message in their web logs waiting to be found. A poem was sent out in the form of a “DELETE” command across the web around the end of December. Masspoem4u, the one who performed the attack, credited the program Masscan as well as the Chaos Computer Congress’s NOC which allowed the attack to be possible. Although identified as mostly harmless, there is a lot of mixed feelings as to how serious this attack should be taken. As for us, Be right back, checking our logs.
- Read More @ https://nakedsecurity.sophos.com/2016/01/07/millions-of-servers-infected-with-poem-inviting-them-to-jump-in-the-river/
- You know that nagging little window telling you to upgrade to Windows 10? Well, get ready to get double the dose as a future Windows update will tell users who are on the older versions of Internet Explorer to upgrade the application. Users will now be required to have Internet Explorer 11 or upgrade to Windows 10 and use Edge. There are some registry hacks to avoid seeing the upgrade messages but this begs the question, why are you using Internet Explorer?
- Read More @ http://thenextweb.com/microsoft/2016/01/05/web-developers-rejoice-internet-explorer-8-9-and-10-die-on-tuesday/
- Some Malware known as KillDisk has had the finger pointed at it as to what has assisted in a power outage in Ukraine. The malware is nasty and can reinitialize volumes as well as overwrite physical sectors on up to 10 hard disks. The infection vector you may ask? The likely candidate is Phishing.
- Read More @ https://nakedsecurity.sophos.com/2016/01/06/ukraine-power-outages-blamed-on-hackers-and-malware/
- Come check out the Forensics Lunch series with David Cowen of Hacking Exposed. They explore a DFIR management project by Sarah Holmes called Foreman as well as have a chat about the FSevents tool which looks extremely handy for some Apple forensics. Michael Robinson also swings by to talk about https://cyberforensicschallenge.com/ which is great practice to keep your skills up!
- Watch @ https://www.youtube.com/watch?v=o7uSp8XVGLQ