Researchers build undetectable rootkit for programmable logic controllers

Researchers have devised a new malware attack against industrial programmable logic controllers (PLCs) that takes advantage of architectural shortcomings in microprocessors and bypasses current detection mechanisms.The attack changes the configuration of the input/output pins that make up the interface used by PLCs to communicate with other devices such as sensors, valves, and motors. PLCs are specialized embedded computers used to control and monitor physical processes in factories, power stations, gas refineries, public utilities, and other industrial installations.The attack, which will be presented at the Black Hat Europe security conference in London on Thursday, was developed by Ali Abbasi, a doctoral candidate in the distributed and embedded system security group at the University of Twente in the Netherlands, and Majid Hashemi, a research and development engineer at Quarkslab, a Paris-based cybersecurity company.To read this article in full or to leave a comment, please click here

Researchers build undetectable rootkit for programmable logic controllers

Researchers have devised a new malware attack against industrial programmable logic controllers (PLCs) that takes advantage of architectural shortcomings in microprocessors and bypasses current detection mechanisms.The attack changes the configuration of the input/output pins that make up the interface used by PLCs to communicate with other devices such as sensors, valves, and motors. PLCs are specialized embedded computers used to control and monitor physical processes in factories, power stations, gas refineries, public utilities, and other industrial installations.The attack, which will be presented at the Black Hat Europe security conference in London on Thursday, was developed by Ali Abbasi, a doctoral candidate in the distributed and embedded system security group at the University of Twente in the Netherlands, and Majid Hashemi, a research and development engineer at Quarkslab, a Paris-based cybersecurity company.To read this article in full or to leave a comment, please click here

Flying Dragon Eye: Uyghur Themed Threat Activity

DOWNLOAD FULL REPORT HERE DOWNLOAD INDICATORS OF COMPROMISE (IOCs) HERE This paper documents attempted exploitation activity aimed at Uyghur interests outside of China. Exploitation is being attempted via the usual tactic of spear phishing containing malicious attachments to targets. The exploit code attached used for dropping the malware is older – CVE-2012-0158 – and from […]

Former Cisco exec rejoins networking giant to head data center initiative

Cisco today said Roland Acra has rejoined the company as a senior vice-president/general manager for its data center business. If the name sounds familiar to Cisco watchers anyway, that’s because this will be Acra’s third stint with the company since 1991.“As a long-standing industry expert in Internet routing, software engineering and communication protocol development, Roland fits right in – once again. He is a Cisco veteran having held several general management and executive leadership positions from 1991 – 2003. In 2010, he came back to Cisco as Vice President in our Smart Grid Business Unit, following the acquisition of Arch Rock, a developer of IPv6-based wireless sensor networks where he served as President and CEO. Prior to Arch Rock, he was the President and CEO of Procket Networks,” wrote David Goeckeler senior VP/GM for Cisco’s networking and security business in a blog about Acra’s return.To read this article in full or to leave a comment, please click here

Former Cisco exec rejoins networking giant to head data center initiative

Cisco today said Roland Acra has rejoined the company as a senior vice-president/general manager for its data center business. If the name sounds familiar to Cisco watchers anyway, that’s because this will be Acra’s third stint with the company since 1991.“As a long-standing industry expert in Internet routing, software engineering and communication protocol development, Roland fits right in – once again. He is a Cisco veteran having held several general management and executive leadership positions from 1991 – 2003. In 2010, he came back to Cisco as Vice President in our Smart Grid Business Unit, following the acquisition of Arch Rock, a developer of IPv6-based wireless sensor networks where he served as President and CEO. Prior to Arch Rock, he was the President and CEO of Procket Networks,” wrote David Goeckeler senior VP/GM for Cisco’s networking and security business in a blog about Acra’s return.To read this article in full or to leave a comment, please click here

Former Cisco exec rejoins networking giant to head data center initiative

Cisco today said Roland Acra has rejoined the company as a senior vice-president/general manager for its data center business. If the name sounds familiar to Cisco watchers anyway, that’s because this will be Acra’s third stint with the company since 1991.“As a long-standing industry expert in Internet routing, software engineering and communication protocol development, Roland fits right in – once again. He is a Cisco veteran having held several general management and executive leadership positions from 1991 – 2003. In 2010, he came back to Cisco as Vice President in our Smart Grid Business Unit, following the acquisition of Arch Rock, a developer of IPv6-based wireless sensor networks where he served as President and CEO. Prior to Arch Rock, he was the President and CEO of Procket Networks,” wrote David Goeckeler senior VP/GM for Cisco’s networking and security business in a blog about Acra’s return.To read this article in full or to leave a comment, please click here

Dell, Amazon, Newegg beat Black Friday 2016 rush

Today, Nov. 1, marks the beginning of the Black Friday 2016 holiday shopping season for Dell, Amazon and New Egg, all of which have formally revealed deals on everything from laptop computers to virtual reality gaming systems to.DELL STRIKES EARLY Dell is offering select deals for 24 hours starting at 8am EST on Nov. 1 and then more blockbusters on Nov. 24-25 for Black Friday and Nov. 28 for Cyber Monday. Dell's hoping to lure potential buyers into its various loyalty programs to get earlier access to deals, and is offering free shipping for those who shop at Dell.com.To read this article in full or to leave a comment, please click here

Gartner: Despite the DDoS attacks, don’t give up on Dyn or DNS service providers

The DDoS attacks that flooded Dyn last month and knocked some high-profile Web sites offline don’t mean businesses should abandon it or other DNS service providers, Gartner says.In fact, the best way to go is to make sure critical Web sites are backed by more than one DNS provider, says Gartner analyst Bob Gill.+More on Network World: Gartner Top 10 technology trends you should know for 2017+To read this article in full or to leave a comment, please click here

Gartner: Despite the DDoS attacks, don’t give up on Dyn or DNS service providers

The DDoS attacks that flooded Dyn last month and knocked some high-profile Web sites offline don’t mean businesses should abandon it or other DNS service providers, Gartner says.In fact, the best way to go is to make sure critical Web sites are backed by more than one DNS provider, says Gartner analyst Bob Gill.+More on Network World: Gartner Top 10 technology trends you should know for 2017+To read this article in full or to leave a comment, please click here

Microsoft Azure Goes Back To Rack Servers With Project Olympus

The thing we hear time and time again from the hyperscalers is that technology is a differentiator, but supply chain can make or break them. Designing servers, storage, switching, and datacenters is fun, but if all of the pieces can’t be brought together at volume, and at a price that is the best in the industry, then their operations can’t scale.

It is with this in mind that we ponder Microsoft’s new “Project Olympus” hyperscale servers, which it debuted today at the Zettastructure conference in London. Or, to be more precise, the hyperscale server designs that it has created but

Microsoft Azure Goes Back To Rack Servers With Project Olympus was written by Timothy Prickett Morgan at The Next Platform.

That’s just wrong: Accusing granny of pirating zombie game

Releasing 60 million genetically modified mosquitoes a week sounds just wrong, but in theory the mutant mosquitoes will mate with normal mosquitos so the offspring will have a genetic flaw that causes them to die quickly. There is no mention of whether or not the millions of mutant mosquitoes to be released weekly will feed on the people of Brazil. If that’s not just wrong, then the three examples below surely are.Saddam Hussein…really Apple?Apple refused to issue a male customer a refund for an iPhone 7 unless he could prove he was not Saddam Hussein – you know, the Iraqi dictator executed by hanging in 2006 – basically a decade ago. Apparently, someone working for Apple was unaware of that fact.To read this article in full or to leave a comment, please click here

That’s just wrong: Accusing granny of pirating zombie game

Releasing 60 million genetically modified mosquitoes a week sounds just wrong, but in theory the mutant mosquitoes will mate with normal mosquitos so the offspring will have a genetic flaw that causes them to die quickly. There is no mention of whether or not the millions of mutant mosquitoes to be released weekly will feed on the people of Brazil. If that’s not just wrong, then the three examples below surely are.Saddam Hussein…really Apple?Apple refused to issue a male customer a refund for an iPhone 7 unless he could prove he was not Saddam Hussein – you know, the Iraqi dictator executed by hanging in 2006 – basically a decade ago. Apparently, someone working for Apple was unaware of that fact.To read this article in full or to leave a comment, please click here

Ansible 2.2 Network Updates

Ansible for Network Automation

The Slack channel question seemed so innocuous at the time, “I was reviewing through the Ansible 2.2 commits related to networking. Is there a summary of the networking items that are new in 2.2?”

In a rather quick response, my first answer seemed so obvious, “Not really, mostly simplifying code, merging template with config modules and some new platforms."

As the conversation continued though, reality came crashing down with the realization that the sprint from Ansible 2.1 to Ansible 2.2 for networking modules was substantially more than a few tweaks and added platforms.

Before getting into what’s new and what’s changed, let's review the overall state of network integration with Ansible. We started this journey just about a year ago announcing that Ansible would start supporting direct integration with network devices. At the time, this was a fairly big departure from the more traditional roots where Ansible has focused on in the systems and application development worlds. There always seemed to be a natural fit between Ansible’s agentless, SSH-based architecture’s ability to adapt to automating traditional network device configurations. It didn’t take long for the initial integration of network modules to start achieving greater adoption.

In just three releases (counting Continue reading

30% off Anker Phone Camera Lens Kit With Fisheye, 0.65x Wide Angle, 10x Macro – Deal Alert

This multi-functional camera lens kit works on most standard sized smartphones including the iPhone 7 (excluding Plus), and brings even more life to your photos with 180-degree fisheye, 0.65x wide angle and 10x macro lenses. It currently averages 4 out of 5 stars on Amazon, and its list price of $20 has been reduced 30% to just $14. See the lens kit now on Amazon.To read this article in full or to leave a comment, please click here

Worth Reading: New Strategies for Securing Our Personal Lives

I recently wrote an essay reflecting on the reality that nearly anyone with a life online is today subject to being hacked and having anything private become public. If the media is understandably going to publish newsworthy stuff, regardless of its provenance, and people are going to continue to use email and other communications that leave a record, what should be done? There are some tactical short term ways to mitigate risk. —Lawfare

LinkedInTwitterGoogle+Facebook

The post Worth Reading: New Strategies for Securing Our Personal Lives appeared first on 'net work.

UK government to spend $2.3 billion to bolster cybersecurity

The U.K. government will spend £1.9 billion (US $2.3 billion) over the next five years to pump up its cybersecurity defenses and pay for new research, Chancellor of the Exchequer Philip Hammond said. The goal of the spending, part of a new national cybersecurity strategy, is to make the U.K. one of the "safest places in the world to do business," with a world-class cybersecurity industry and workforce, Hammond said Tuesday.To read this article in full or to leave a comment, please click here

UK government to spend $2.3 billion to bolster cybersecurity

The U.K. government will spend £1.9 billion (US $2.3 billion) over the next five years to pump up its cybersecurity defenses and pay for new research, Chancellor of the Exchequer Philip Hammond said. The goal of the spending, part of a new national cybersecurity strategy, is to make the U.K. one of the "safest places in the world to do business," with a world-class cybersecurity industry and workforce, Hammond said Tuesday.To read this article in full or to leave a comment, please click here

1 2,410 2,411 2,412 2,413 2,414 3,695