Frank Crast, Author at Securezoo

TeamViewer permissions bug

Leave a Comment / Vulnerabilities & Exploits / Frank Crast / December 6, 2017 / GitHub, TeamViewer

A new vulnerability in TeamViewer remote support software could allow an attacker to gain control of presenter’s or viewer’s session without permission.

TeamViewer permissions bug Read More »

Andromeda botnet dismantled

Leave a Comment / Cybercrime, Cybersecurity Attacks / Frank Crast / December 4, 2017 / Andromeda, botnet, Cybercrime, FBI

The Federal Bureau of Investigation (FBI) worked with multiple international partners to take down on November 29 one of the longest running malware families dubbed Andromeda.

Andromeda botnet dismantled Read More »

New Mirai campaign targets new IoT devices

Cybersecurity Attacks, Internet of Things (IoT), Network Security / Frank Crast / December 4, 2017 / botnet, IOT, Mirai, Wproot, ZyXEL

Security researchers spotted an increase in new activity from the Mirai IoT botnet. This new campaign targets organizations in Argentina, but has spread to other parts of South America and North Africa.

New Mirai campaign targets new IoT devices Read More »

6 Good Mac Security Hardening Recommendations

Endpoint Security / Frank Crast / December 2, 2017 / 10.10, Apple, CIS, EFI, Mac, macOS, OS X, SP 800-179

In the wake of Apple’s most recent and embarassing blunder regarding the macOS High Sierra root login flaw, I felt it was a good time to revisit Apple Mac hardening guidelines that can help users and IT admins better secure Apple’s OS, to include macOS and OS X.

6 Good Mac Security Hardening Recommendations Read More »

Turla group malware

Cybercrime, Cybersecurity Attacks / Frank Crast / December 1, 2017 / malware, Nautilus, NCSC, Neuron, Snake rootkit, Turla

The United Kingdom’s National Cyber Security Centre (NCSC) has released a security advisory and intelligence report on the Turla cyber threat group that targets government, military, technology, energy and commercial organizations.

Turla group malware Read More »

What Are Application Containers And How Do I Secure Them?

Application Security, Cybersecurity Articles, Server Security / Frank Crast / November 30, 2017 / AppArmor, Containers, Docker, EC2, LXC, NIST, RTM, SELinux, SP 800-190, virtual machine, virtualization, VM

You may have wondered what application containers are, let alone how to secure them. The National Institute of Standards and Technology (NIST) sets out to explain the benefits and security concerns with application container technologies in the latest Special Publication (SP 800-190) Application Container Security Guide.

What Are Application Containers And How Do I Secure Them? Read More »

OpenEMR vulnerability

Leave a Comment / Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / November 29, 2017 / Medical, OpenVMR, Vulnerabilities

An OpenEMR vulnerability could expose millions of medical records to attackers. The flaw has been patched with OpenEMR 5.0.0 Patch 6 a couple of weeks ago. Unpatched versions could allow an attacker to steal patient records and personal data by exploiting the vulnerability in the setup.php installation script. OpenEMR is a popular open source electronic health records and medical practice

OpenEMR vulnerability Read More »

Major macOS flaw

Leave a Comment / Endpoint Security, Vulnerabilities & Exploits / Frank Crast / November 29, 2017 / Apple, macOS, Password, root, sudo, Vulnerabilities

The latest version of macOS High Sierra allows any local user with physical access to take over any Mac by logging in as root and no password.

Major macOS flaw Read More »

Tizi backdoor mobile threat

Malware, Mobile Security / Frank Crast / November 28, 2017 / Android, malware, mobile, Tizi

Google security researchers discovered a backdoor family of malware called Tizi that can root Android devices and exploit older vulnerabilities.

Tizi backdoor mobile threat Read More »

FALLCHILL RAT cyber threat

Cybersecurity Attacks, Malware / Frank Crast / November 28, 2017 / aerospace, FALLCHILL, Finance, HIDDEN COBRA, malware, RAT, telecom

The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) issued a joint technical alert on updated threat intelligence on a remote administration tool (RAT) dubbed FALLCHILL used by the North Korean government.

FALLCHILL RAT cyber threat Read More »