Today, we will look at the ROBOT attack on encrypted communications, HP's inattentive developer bug, the new ransomware in the Balkans, and at the end a positive progressive message from the North is waiting for you. We wish pleasant readings.
If we think that with HTTPS our sensitive data cannot do anything wrong on the network, let's not be so sure. This week, the ROBOT attack exploits the vulnerability that we can break through encrypted communications. There comes a strong word; vulnerability has existed for a long time and has been marked as solved for the last 19 years. The TLS protocol patch was incomplete and so 27 of the 100 most visited sites were vulnerable, including for example PayPal.
However, from the first million sites were vulnerable to only 30,000 because the bug occurred in the library mostly used for expensive commercial products. If an attacker captures the transmission between the client and the vulnerable TLS server and is able to connect up to a million times in succession with the TLS server, the attacker has won and can benefit from the vulnerability. This was demonstrated by the researchers signing the test report with the HTTPS private key of the Facebook certificate (which has already been patched). You can test your own server via the web interface. However, if you do not want to wait for a queue, you can run the python script that the creators have added.
Last week, HP released updated drivers for hundreds of its models. The main task of the update was to remove the debugging code that could be used by the attacker to "construct" the keylogger. The whole problem consisted of the code that is part of the Synaptics Touchpad driver. Security expert Michael Myng, who discovered the vulnerability, has made it clear that logging is implicitly disabled, but it can be easily changed by simply editing the registers. The whole analysis can be found on GitHub. HP has admitted the mistake, according to their comments, it is the code that the inattentive developer has forgotten here, which has not happened for the first time.
A group of engineers from Princeton University came up with a way to track the location of a mobile phone without using GPS. In the form of PinMe, they have shown that it is possible to determine the user's location from information that can be obtained without the explicit permission of the various sources of the phone. The application determines the way of movement (walking, car, train, airplane) through the time zone, the last assigned IP address and air pressure (which compares with publicly available weather information) to determine the position of the device with GPS precision.
And now something from the Internet. On Tuesday 12. 12. 2017 04:43 UTC was an interesting event due to BGPMon. A total of 80 BGP prefixes usually reported by Google, Apple, Facebook, Microsoft, Twitch NTT Communications, and Riot games had set Origin AS at 39523 (DV-LINK-AS) from Russia in the global BGP routing. One of the attractions is the autonomous system 39523 (DV-LINK-AS) has not yet sent a single announcement for several years (except for one year this year). Due to the importance and number of reported ranges, an unintentional error can almost certainly be ruled out, and most likely, it is a security incident with the intention of redirecting and gaining traffic from someone else. Altogether, this involved two attempts between 04:43 UTC and 04:46 UTC and the other started at 07:07 UTC and ended at 07:10 UTC.
Dell Securework employees warn about the vulnerability of two entry control units. The bug provides attackers with the ability to unlock or lock the door by sending an unauthorized request to vulnerable devices. These are two AMAG Technology products used in EN-1DBC and EN-2DBC. It should be noted that the devices must be at the basic settings so that an attacker can send an unauthorized request to open the door using TCP / IP.
And a positive dot at the end. Iceland's Safer Internet Center came up with an unconventional idea, urging the public to become part of a Sunday without mobile phones. The aim of this event, which took place on 26 November, was to make the public aware of the use of smart phones, especially with regard to mutual family interaction. The organizers of the event called on the public to think about whether and how mobile phones affect their own close family relationships, both in parent-child relationship and vice versa. More than 140,000 people learned about this event, according to available data. Sunday without a phone tried over 3,000 families.
|Description: create cloud server, cloud based server hosting, cloud application server|
|DM Solutions e.K.||SSD Webhosting Standard||INR||1,219||Unlimited||25.00GB||Germany||23s ago|
|Description: ruby server monitoring, gfi server monitor, wow mop private server|
|arvixe.com||Personal class||INR||264||Unlimited||Unlimited||United States||37s ago|
|Description: cloud based server backup solutions, server monitoring tool, cloud hosted servers|
|IT-Service Kretzschmar||Spar200M||INR||8||Unlimited||0.19GB||Germany||13s ago|
|Description: online server monitor, dedicated server with cpanel, create a cloud server|
|Description: dedicated server hosting australia, cloud based server backup, server backups|
|Web-Service4U||Spar 200M||INR||8||Unlimited||200 MB||Germany||37s ago|
|Description: server monitor android, raid server recovery, sql server recovery|
|luminea IT Solutions Ltd.||Reseller R3||INR||2,027||50000 MB||19.53GB||Germany||58s ago|
|Description: cloud backup services for servers, server monitoring cloud, windows server monitoring tools|
|VCServer Network OHG||Webhosting 6.0 XXL||INR||1,217||Unlimited||100.00GB||Germany||41s ago|
|Description: exchange server monitoring, windows server recovery, server monitoring|
|Description: running wordpress on windows server, linux server monitoring, windows 2008 server backup|
|Description: cloud file servers, sql server backup strategy, small business server backup solutions|
|SSD Webhosting||FastPro S||INR||813||Unlimited||3GB||Germany||35s ago|
|Description: systems management server, windows cloud servers, cloud backup servers|
|AlsoISP||Bronze *L*||INR||142||Unlimited||200 MB||Germany||43s ago|
|Description: best server backup solution, server cloud canada, cost of cloud server|
|Description: xen server backup, monitor windows server performance, server backup solution|
|Description: back up servers, server on cloud, cloud server setup|
|Description: cloud server host, cloud server services, server disaster recovery|
|http://www.stable.cz/||Mini||INR||246||Unlimited||400 MB||Czech Republic||43s ago|
|Description: how to backup server, performance monitor windows server 2008 r2, monitoring server performance|
|Description: online server backup solutions, monitoring server software, cloud vs server|
|Description: server image backup, sql server backup table, cloud virtual servers|
|Description: hp server monitoring software, australian dedicated server hosting, servermonitor|
|Description: server network monitoring software, windows server 2003 installation, server network monitoring|
|Description: server backup system, online server backups, cloud based mail server|
|Description: online server backup, windows server backup system state, cloud plex server|
|Description: cloud server provider, server monitoring dashboard, simple server monitoring|
|hostsg.com||Starter 5||INR||566||Unlimited||5GB||29s ago|
|Description: cloud servers reviews, server 2008 image backup, sql server with check option|
|Description: cloud server costs, windows server 2003 group policy editor, best server backup|
|Description: cloud backup server, datacenter server architecture, online backup servers|
|Luminea IT Solutions Ltd.||Profi.Plus||INR||806||Unlimited||20GB||Germany||45s ago|
|Description: server backup tools, server cloud, server performance monitoring|
|Description: web server monitoring, build a cloud server, windows server 2008 system restore|
INR 1,221 / Mo
INR 5,373 / Mo