Cyber Security and Information Systems Information Analysis Center
On Monday, the Wi-Fi Alliance, the organization that manages Wi-Fi technologies, announced the official release of WPA3. WPA3 is the latest version of Wi-Fi Protected Access (WPA), a user authentication technology for Wi-Fi connections.
https://www.bleepingcomputer.com/news/security/new-wpa3-wi-fi-standard-released/
The VPNFilter malware that infected over 500,000 routers and NAS devices across 54 countries during the past few months is much worse than previously thought.
A malicious campaign has compromised more than 40,000 machines globally, carrying out traffic-hijacking and cryptomining.
https://threatpost.com/operation-prowli-profits-on-weak-iot-devices-servers/132621/
A joint alert issued by the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom's National Cyber Security Centre (NCSC) warns that Russian state-sponsored cyber actors are actively targeting home and enterprise routers.
The Internet Engineering Task Force (IETF) - the organization that approves proposed Internet standards and protocols - has formally approved TLS 1.3 as the next major version of the Transport Layer Security (TLS) protocol.
https://www.bleepingcomputer.com/news/security/ietf-approves-tls-13-as-internet-standard/
Researchers have discovered malware so stealthy it remained hidden for six years despite infecting at least 100 computers worldwide.
DDoS attacks taking advantage of ill-advised use of memcached have begun to decline, either because sysadmins are securing the process, or because people are using a potentially-troublesome "kill switch."
http://www.theregister.co.uk/2018/03/12/memcached_cavalry_spotted_on_the_horizon/
MOSQUITO is new technique devised by a team of researchers at Israel's Ben Gurion University, led by the expert Mordechai Guri, to exfiltrate data from an air-gapped network.
http://securityaffairs.co/wordpress/70192/hacking/mosquito-attack-airgapped-networks.html
Over last couple of days we've seen a big increase in an obscure amplification attack vector - using the memcached protocol, coming from UDP port 11211.
https://blog.cloudflare.com/memcrashed-major-amplification-attacks-from-port-11211/
The first documented native IPv6 DDoS attack has been spotted in the wild over the weekend. The DNS dictionary attack originated from around 1,900 different native IPv6 hosts, on more than 650 different networks and targeted authoritative DNS service Neustar's network.
https://www.scmagazineuk.com/first-true-native-ipv6-ddos-attack-spotted-in-wild/article/747217/
The CSIAC is a DoD-sponsored Center of Excellence in the fields of Cybersecurity, Software Engineering, Modeling & Simulation, and Knowledge Management & Information Sharing.Learn More
| Phone: | 800-214-7921 |
| Email: | info@csiac.org |
| Address: | 266 Genesee St. Utica, NY 13502 |
