Posts for category: Forensics Weekly Executive Summmaries

Weekly Executive Summary for Week November 17, 2017

Monitoring Phase: Socket: Python library used for Low-level networking interfaces. The socket library is used to open a raw socket and sniff network traffic on the network. Once network packets ...

Weekly Executive Summary for Week November 10, 2017

Scanning Phase: Netdisco: Python 3 library is used to discover local devices and services. This library is used to power Home Assistant; which is an open-source home automation platform that is ...

Weekly Executive Summary for Week November 02, 2017

What has it been dubbed? REMCOS | Remote Control & Surveillance Software     What does it do? According to researchers at Fortinet and The New Jersey Cybersecurity & ...

Taking advantage of the 4-way handshake

What is the 4-way handshake? The 4-way handshake is an amendment to the original 802.11 standard to address security problems in WEP, which was implemented as Wi-Fi Protected Access II (WPA2). ...

Weekly Executive Summary for Week October 13, 2017

What is it? Advanced internet activity logging software | Data stealer What has it been dubbed? FormBook What has been affected? Mainly: Aerospace, Defense Contractor, Manufacturing ...

Weekly Executive Summary for Week October 06, 2017

What is it? Monero Mining | Crypto-mining What is affected? [UNPATCHED] Windows Server 2003 R2 What does it do?  Mining cryptocurrencies is expensive and takes a lot of computing power. ...

Weekly Executive Summary for Week September 29, 2017

What is it? Supply-Chain Malware What has been affected? CCleaner v5.33.6162 | CCleaner Cloud v1.07.3191 (32-bit version) | Payload 2 What does it do? The second part of the payload in ...

Weekly Executive Summary for Week September 22, 2017

What is it? Supply-Chain Malware What has been affected? CCleaner v5.33.6162 | CCleaner Cloud v1.07.3191 (32-bit version) | 1 What does it do? CCleaner is an application that allows users to ...

Weekly Executive Summary for Week September 15, 2017

What is it? Botnet What has it been dubbed? Mirai What does it do? The malware was designed to infect vulnerable IoT devices, which would later be used to launch enormous DDoS attacks. ...

Weekly Executive Summary for Week September 07, 2017

What is it? Ransomware What has it been dubbed? Locky | Diablo | Diablo6 | Lukitus What does it do? Locky ransomware was first released in 2016, since that time numerous variants have been ...