From Evasive Malware to Hacker’s Passwords and Identity

0
Last week, while I am analyzing one of the sample that I found it very suspicious, I found SMTP,FTP and C&C passwords of the malware writer and some interesting...

A Hacker Caught During Malware Analysis

0
Today, while I am analyzing one of the sample that I found it very suspicious, I found SMTP username and password of the malware writer. And I decided to share the...

BlackNurse Denial of Service Attack

1
BlackNurse Denial of Service Attack "Remember the days back in the 90s when you could cripple someones Internet connection simply by issuing a few PING command like “ping -t ”? This type...

Dns Amplification DDOS Attacks

1
Dns Amplification Attacks and How Much Vulnerable We are as A Country Last week, I talked about one of the misuse type of DNS protocol is DNS tunneling. Today, I am going to...

Detecting and Blocking DNS Tunneling

1
Detecting and Blocking DNS Tunneling DNS (Domain Name System) is the protocol which is composed of hierarchical and dynamic database and it provides us IP addresses, text records, mail exchange information (MX records), name...

Remote Triggered Black Hole (RTBH) Routing to Mitigate DDOS

0
Remote Triggered Black Hole (RTBH) Routing to Mitigate DDOS Border Gateway Protocol (BGP) is the protocol, which is designed to share routing, reachability and some other information among autonomous systems (AS). Border Gateway...

Unknown Unicast Floods As a Local DOS

0
Unknown Unicast Floods As a Local DOS In the last three months, I faced with a problem on my Layer 2 topology.  The problem behaved like a broadcast attack and about 10Gbps backup traffic was...

Savunma Sanayii Firmaları ve Finansal Kuruluşları Hedef Alan Zararlı İncelemesi

0
GIB şablonu kullanılarak savunma sanayii firmaları ve finansal kuruluşları hedef alan, zararlı içerik barındıran e-postalar gönderilmektedir. Göndericinin "posta*@gelirler.gov.tr" olması, mail içeriğinin inandırıcılık açısından oldukça başarılı olması, düzgün bir Türkçe ile hazırlanması ve...

Multiple Security issues with ScreenOS (CVE-2015-7755, CVE-2015-7756)

1
On December 17th, 2015, Juniper Networks published an Important Announcement about ScreenOS which is pointing authentication backdoor and VPN decrypt on GT and SSG series devices. The backdoor can be exploited by using...