The National Security Agency (NSA) published guidance today to help Department of Defense (DoD) and other system administrators identify and mitigate security issues associated with a transition to Internet Protocol version 6 (IPv6).
“IPv6 Security Guidance” highlights how several security issues can surface in networks that are new to IPv6, or in early phases of the IPv6 transition. Networks new to IPv6 lack maturity in IPv6 configurations and tools, and dual-stacked networks, which run on IPv4 and IPv6 simultaneously, have an increased attack surface.
“The Department of Defense will incrementally transition from IPv4 to IPv6 over the next few years and many DoD networks will be dual-stacked,” said Neal Ziring, NSA Cybersecurity Technical Director. “It’s important that DoD system admins use this guidance to identify and mitigate potential security issues as they roll out IPv6 support in their networks.”
Google has just patched Chrome’s eighth zero-day hole of the year so far.
Zero-days are bugs for which there were zero days you could have updated proactively…
…because cybercriminals not only found the bug first, but also figured out how to exploit it for nefarious purposes before a patch was prepared and published.
So, the quick version of this article is: go to Chrome’s Three-dot menu (⋮), choose Help > About Chrome, and check that you have version 107.0.5304.121 or later.
Uncovering zero-days
Two decades ago, zero-days often became widely known very quickly, typically for one (or both) of two reasons:
A self-spreading virus or worm was released to exploit the bug. This tended not only to draw attention to the security hole and how it was being abused, but also to ensure that self-contained, working copies of the malicious code were blasted far and wide for researchers to analyse.
A bug-hunter not motivated by making money released sample code and bragged about it. Paradoxically, perhaps, this simultaneously harmed security by handing a “free gift” to cybercriminals to use in attacks right away, and helped security by attracting researchers and vendors to fix it, or come up with a workaround, quickly.
These days, the zero-day game is rather different, because contemporary defences tend to make software vulnerabilities harder to exploit.
Today’s defensive layers include: additional protections built into operating systems themselves; safer software development tools; more secure programming languages and coding styles; and more powerful cyberthreat prevention tools.
In the early 2000s, for instance – the era of super-fast-spreading viruses such as Code Red and SQL Slammer – almost any stack buffer overflow, and many if not most heap buffer overflows, could be turned from theoretical vulnerabilities into practicable exploits in quick order.
In other words, finding exploits and “dropping” 0-days was sometimes almost as simple as finding the underlying bug in the first place.
And with many users running with Administrator privileges all the time, both at work and at home, attackers rarely needed to find ways to chain exploits together to take…
https://spinsafe.com/wp-content/uploads/2022/09/chrome-1200.png404773SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2022-11-27 23:00:062022-11-27 23:00:06Chrome fixes 8th zero-day of 2022 – check your version now – Naked Security
ESET researchers spot an updated version of the malware loader used in the Industroyer2 and CaddyWiper attacks
Sandworm, the APT group behind some of the world’s most disruptive cyberattacks, continues to update its arsenal for campaigns targeting Ukraine.
The ESET research team has now spotted an updated version of the ArguePatch malware loader that was used in the Industroyer2 attack against a Ukrainian energy provider and in multiple attacks involving data wiping malware called CaddyWiper.
The new variant of ArguePatch – named so by the Computer Emergency Response Team of Ukraine (CERT-UA) and detected by ESET products as Win32/Agent.AEGY – now includes a feature to execute the next stage of an attack at a specified time. This bypasses the need for setting up a scheduled task in Windows and is likely intended to help the attackers stay under the radar.
Another difference between the two otherwise highly similar variants is that the new iteration uses an official ESET executable to hide ArguePatch, with the digital signature removed and code overwritten. The Industroyer2 attack, meanwhile, leveraged a patched version of HexRays IDA Pro’s remote debug server.
The latest find builds on a string of discoveries that ESET researchers have made since just before Russia’s invasion of Ukraine. On February 23rd, ESET’s telemetry picked up HermeticWiper on the networks of a number of high-profile Ukrainian organizations. The campaigns also leveraged HermeticWizard, a custom worm used for propagating HermeticWiper inside local networks, and HermeticRansom, which acted as decoy ransomware. The next day, a second destructive attack against a Ukrainian governmental network started, this time deploying
https://spinsafe.com/wp-content/uploads/2022/05/arguepatch-sandworm-ukraine-malware-loader.jpg415623SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2022-05-20 19:30:062022-05-20 19:30:06Sandworm uses a new version of ArguePatch to attack targets in Ukraine
Keeping track of passwords in this digital age is no easy task. The average internet user has around 70 passwords, but only 34% of us manage to change them regularly. That’s according to Nord Security, cybersecurity experts and creators of NordPass.
A password manager like NordPass can make your life a lot easier and more secure. You’ll only need to remember one Master Password – or use your fingerprint on a mobile device – and NordPass handles the rest.
NordPass isn’t perfect, however. Autofill for forms doesn’t work on mobile, so you’ll need to keep entering your address the old-fashioned way.
You’ll only need to grab your credit card to scan it into the vault because NordPass doesn’t ask for any money upfront. If the free level has enough features for you, you are welcome to stay on the free plan indefinitely.
Specifications: NordPass
Platforms
Windows, macOS, Linux, Android, iOS
Free version
Yes
2FA
Optional
Browser extensions
Google, Chrome, Mozilla Firefox, Edge, Brave, Opera, and Safari
Form filling
Yes
Biometric login
macOS, Windows, Android, iOS
PIN code
No
Price and Coverage with NordPass
(Image credit: Tom’s Hardware)
NordPass has three plans: Free, Premium, and Family.
The free plan is for one user, with enough features to keep your online presence safe and secure. It saves unlimited passwords, remembers your logins, and allows you to import and export passwords from your browser or other password keepers.
You can scan your credit card information into the NordPass vault for safe shopping, keep secure notes to remember gate or Wi-Fi codes, and it can fill out a variety of other types of forms with information you provide.
Tired of thinking of super strong passwords? NordPass can generate unique and highly-secure passwords and remember them for you. Plus, it syncs automatically across multiple devices so you’re secure on your desktop, phone, and tablet. You also have the option of turning on multi-factor authentication.
The Premium level is $4.99 a month and does everything the free level does, plus it offers proactive tools to keep…
https://spinsafe.com/wp-content/uploads/2022/05/KiJCBqhVfa3MV2Ct97FYF5-1200-80.jpg5141200SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2022-05-11 10:00:062022-05-11 10:00:06NordPass Review: Free Version is Actually Worth Using
