Tag Archives: Devices

New Mirai variant attacks Apache Struts vulnerability

New variants of the Mirai and Gafgyt botnets are targeting unpatched enterprise devices, according to new research.

Palo Alto Networks’ Unit 42 found the variants affect vulnerabilities in Apache Struts and in SonicWall’s Global Management System (GSM). The Mirai variant exploits the same vulnerability in Apache Struts that was behind the 2018 Equifax data breach, while the Gafgyt variant exploits a newly uncovered vulnerability in unsupported, older versions of SonicWall’s GSM.

The Unit 42 research team noted the Mirai variant involves taking advantage of 16 different vulnerabilities. And while that’s not unusual, it is the first known instance of Mirai or any of its variants targeting an Apache Struts vulnerability.

The research also found the domain that hosts the Mirai samples had resolved to a different IP address in August, which also hosted Gafgyt samples at that time. Those samples exploited the SonicWall GSM vulnerability, which is tracked as CVE-2018-9866. Unit 42’s research did not say whether the two botnets were the work of a single threat group or actor, but it did say the activity could spell trouble for enterprises.

“The incorporation of exploits targeting Apache Struts and SonicWall by these IoT/Linux botnets could indicate a larger movement from consumer device targets to enterprise targets,” the Palo Alto researchers wrote.

The Apache Struts vulnerability exploited by the new Mirai variant was patched last year before it was used in the Equifax breach. But systems that have not been updated are still susceptible to these types of exploits.

The Mirai botnet first emerged in the fall of 2016, and it has since affected hundreds of thousands of IoT and connected devices. The botnet’s malware had primarily targeted consumer devices, and it was responsible for massive distributed denial-of-service attacks on the German teleco Deutsche Telekom and on the domain name server provider Dyn, which took down websites such as Airbnb, Twitter, PayPal, GitHub, Reddit, Netflix and others.

The Unit 42 researchers discovered the Gafgyt and Mirai variant on Aug. 5, and they alerted SonicWall about its GMS vulnerability. The public disclosure was posted by Palo Alto on Sept. 9.

Two seconds to take a bite out of mobile bank fraud with Artificial Intelligence

The future of mobile banking is clear. People love their mobile devices and banks are making big investments to enhance their apps with digital features and capabilities. As mobile banking grows, so does the one aspect about it that can be wrenching for customers and banks, mobile device fraud. 

image

Problem: To implement near real-time fraud detection

Most mobile fraud occurs through a compromise called a SIM swap attack in which a mobile number is hacked. The phone number is cloned and the criminal receives all the text messages and calls sent to the victim’s mobile device. Then login credentials are obtained through social engineering, phishing, vishing, or an infected downloaded app. With this information, the criminal can impersonate a bank customer, register for mobile access, and immediately start to request fund transfers and withdrawals.

Artificial Intelligence (AI) models have the potential to dramatically improve fraud detection rates and detection times. One approach is described in the Mobile bank fraud solution guide.  It’s a behavioral-based AI approach and can be much more responsive to changing fraud patterns than rules-based or other approaches.

The solution: A pipeline that detects fraud in less than two seconds

Latency and response times are critical in a fraud detection solution. The time it takes a bank to react to a fraudulent transaction translates directly to how much financial loss can be prevented. The sooner the detection takes place, the less the financial loss.

To be effective, detection needs to occur in less than two seconds. This means less than two seconds to process an incoming mobile activity, build a behavioral profile, evaluate the transaction for fraud, and determine if an action needs to be taken. The approach described in this solution is based on:

  • Feature engineering to create customer and account profiles.
  • Azure Machine Learning to create a fraud classification model.
  • Azure PaaS services for real-time event processing and end-to-end workflow.

The architecture: Azure Functions, Azure SQL, and Azure Machine Learning

Most steps in the event processing pipeline start with a call to Azure Functions because functions are serverless, easily scaled out, and can be scheduled.

The power of data in this solution comes from mobile messages that are standardized, joined, and aggregated with historical data to create behavior profiles. This is done using the in-memory technologies in Azure SQL.  

Training of a fraud classifier is done with Azure Machine Learning Studio (AML Studio) and custom R code to create account level metrics.

Recommended next steps

Read the Mobile bank fraud solution guide to learn details on the architecture of the solution. The guide explains the logic and concepts and gets you to the next stage in implementing a mobile bank fraud detection solution. We hope you find this helpful and we welcome your feedback.

For Sale – WD 2TB My Cloud NAS Brand new sealed.

Brand new and sealed Western Digital 2TB My Cloud NAS drive.

Fantastic devices but these are spare units which I never got round to setting up.
I have 2 of these available. Both sealed and brand new.

I’ll add pictures ASAP as I’m listing this on my phone right now.

Price and currency: 125
Delivery: Delivery cost is included within my country
Payment method: BT PPG
Location: Newcastle upon Tyne.
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – WD 2TB My Cloud NAS Brand new sealed.

Brand new and sealed Western Digital 2TB My Cloud NAS drive.

Fantastic devices but these are spare units which I never got round to setting up.
I have 2 of these available. Both sealed and brand new.

I’ll add pictures ASAP as I’m listing this on my phone right now.

Price and currency: 125
Delivery: Delivery cost is included within my country
Payment method: BT PPG
Location: Newcastle upon Tyne.
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – WD 2TB My Cloud NAS Brand new sealed.

Brand new and sealed Western Digital 2TB My Cloud NAS drive.

Fantastic devices but these are spare units which I never got round to setting up.
I have 2 of these available. Both sealed and brand new.

I’ll add pictures ASAP as I’m listing this on my phone right now.

Price and currency: 125
Delivery: Delivery cost is included within my country
Payment method: BT PPG
Location: Newcastle upon Tyne.
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

Microsoft Movies & TV Now Supports Movies Anywhere – Xbox Wire

Today we are excited to announce that the Microsoft Movies & TV app for Xbox and Windows 10 devices now supports Movies Anywhere, which brings your favorite film libraries together in one place.

When you connect your Microsoft account with your Movies Anywhere account, all of your eligible movies from Microsoft can be enjoyed across your favorite screens at no extra cost. This includes Xbox and Windows, iOS and Android, smart TVs, and streaming devices.

In addition, eligible movies you previously purchased from other participating digital retailers will now be viewable through the Movies & TV app on Xbox and Windows 10.

As part of our launch, we have a limited time offer for anyone who connects his or her Microsoft account to Movies Anywhere for the first time. Once you connect, you will receive X-Men Days of Future Past in your digital collection on us. This offer begins today and only runs for a limited time, so head here to connect your accounts today or visit this page for complete details.

Microsoft Movies & TV allows you to watch the newest movies and TV shows across your favorite devices, before streaming services or disc, and without subscription or membership fees. You can download for offline viewing and take it on the go, or watch the latest episode of a show the day after it airs on TV. There are weekly deals in Sales & Specials to grow your collection, and all of your purchases earn you credits through Microsoft Rewards.

We have been working to bring you the best viewing experience on Xbox and Windows 10 for your favorite movies. Thank you for sharing your feedback and happy movie watching!

For Sale – HP Gen7 N54L microserver

HP Gen7 N54L
AMD Turion™ II Neo (2.2GHz)
8GB RAM
120GB SSD
BIOS mod to enable 6 SATA devices (4 front bays, 2 in the top)
Packed in original box
Key for drive bay lock
All drive screws and install tool
eSATA cable

Moved to a Gen8 hence sale.

Wil only sell to members with established feedback.

Price and currency: 85
Delivery: Delivery cost is included within my country
Payment method: BT or PPG
Location: MANCHESTER, M28
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

For Sale – HP Gen7 N54L microserver

HP Gen7 N54L
AMD Turion™ II Neo (2.2GHz)
8GB RAM
120GB SSD
BIOS mod to enable 6 SATA devices (4 front bays, 2 in the top)
Packed in original box
Key for drive bay lock
All drive screws and install tool
eSATA cable

Moved to a Gen8 hence sale.

Wil only sell to members with established feedback.

Price and currency: 85
Delivery: Delivery cost is included within my country
Payment method: BT or PPG
Location: MANCHESTER, M28
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

Tempered Networks extends reach of NAC software

Tempered Networks, a maker of network access control for a wide variety of devices, has extended its technology to Microsoft Azure, Google Cloud, Linux servers and additional IoT endpoints.

Tempered, which introduced the latest enhancements this week, has developed NAC software based on the Host Identity Protocol (HIP), a technology developed by a working group within the Internet Engineering Task Force. A HIP network replaces all IP addresses with cryptographic host identifiers that are resistant to denial-of-service and man-in-the-middle attacks.

Tempered has created a HIP wrapper that lets customers manage large numbers of devices through a product the vendor calls a HIPswitch. The technology creates a private overlay network to control what specific endpoints can access. The product can protect corporate, industrial and IoT systems.

What’s new

The latest improvements to the Tempered product portfolio includes a version of HIPswitch for Microsoft Azure and one for Google Cloud. The virtual appliance serves as an identity gateway for endpoints trying to access data, workloads and containers in the public clouds. The NAC software had only been available for AWS.

Also new is the HIPserver for Linux. HIPserver, which was available only for Windows, acts as a server’s overlay network gateway. The software, combined with a firewall, can cloak workloads, so they are not visible to hackers. The technology also ensures that network connections are authenticated before establishing a TCP session. HIPserver supports all major Linux distributions, whether they are running in a public cloud, on premises or a remote site.

Another technology added to the Tempered portfolio is the HIPswitch 75 appliance, a palm-sized IoT edge gateway designed as “plug-and-play” hardware for medical devices, point-of-sale systems and building automation controls. HIPswitch ensures that access policies are enforced for the attached systems.

Finally, Tempered introduced a product called HIPclient, which runs on Windows, Mac and iOS devices. The NAC software ensures clients only access authorized network resources.

The complete Tempered platform includes central software the vendor calls the conductor, which is akin to a software-defined networking controller. Customers use the product’s user interface to whitelist everything attached to HIPswitches and to set access policies for each endpoint or groups of them. Policy routing across the identity network is handled through technology Tempered calls the HIPrelay.

Tempered sells its products via annual subscription, based on the number of products deployed. Fees for HIPswitch for cloud start at $660, HIPserver for Linux, $1,180; and HIPclient, $300.

For Sale – HP Gen7 N54L microserver

HP Gen7 N54L
AMD Turion™ II Neo (2.2GHz)
8GB RAM
120GB SSD
BIOS mod to enable 6 SATA devices (4 front bays, 2 in the top)
Packed in original box
Key for drive bay lock
All drive screws and install tool
eSATA cable

Moved to a Gen8 hence sale.

Wil only sell to members with established feedback.

Price and currency: 85
Delivery: Delivery cost is included within my country
Payment method: BT or PPG
Location: MANCHESTER, M28
Advertised elsewhere?: Advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.