New malware program infects ATMs, dispenses cash on command

Security researchers have discovered a new malware program that infects automated teller machines (ATMs) and allows attackers to extract cash on command.The program is dubbed GreenDispenser and was detected in Mexico. However, it's only a matter of time until similar attacks are adopted by cybercriminals in other countries, researchers from security firm Proofpoint said in a blog post.GreenDispenser is not the first malware program to target ATMs. In October 2013, security researchers from Symantec warned about a backdoor called Ploutus that could infect ATMs when a new boot disk is inserted into their CD-ROM drives.To read this article in full or to leave a comment, please click here

Dell expands campus, data center switches

Dell this week expanded its campus and data center switching lineup with products designed simplify topologies and support new data rates.In the campus, Dell unveiled the C9010 Network Director switch and the C1048P Rapid Access Node. These new switches are intended to flatten network topologies into two tiers but with logical connectivity to make those two tiers appear as one.+MORE ON NETWORK WORLD: Dell celebrates disaggregation’s first anniversary+The switches are based on Broadcom’s Trident II silicon, which incorporates a tagging mechanism for node-to-director connectivity and virtual grouping into a single management and administrative domain. Dell says this provides a single management view from access to core, and a single point of control for quality of service, policy provisioning, software upgrades, and programming software-defined attributes.To read this article in full or to leave a comment, please click here

Worth Reading: Breach Presumption

The hipster view of data loss seems to be a shrug of the shoulders these days. As a society, we give up financial data to people that steal it so often that we barely care. We shrug our shoulders, sigh at the inconvenience, set up a new account or two, and move on. Yes, sometimes the damage is more serious than unauthorized charges on our Visa cards, but that’s rare enough to avoid societal outrage. Rather, we’ve simply gotten used to the breaches. via ethan banks

The post Worth Reading: Breach Presumption appeared first on 'net work.

Geek Speak Round Up – Network Management

Thwack Community

I mentioned a few months ago that I had been asked to write some thought-provoking blogs on the subject of network management for the Solarwinds Thwack Community “Geek Speak” area. I’ve now finished my six posts, and while they won’t be reproduced on movingpackets.net, I’m linking to them here as I think they touch on some subjects close to my Software Defined Heart.

Click da pic to read the article.

1. Do You Monitor Your Network Interfaces?

thwack_post1_preview

2. The Perils of High Speed Logging

thwack_post2_preview

3. Could SNMP Please Just Die Already?

thwack_post3_preview

4. Keeping Your Secrets Secret

thwack_post4_preview

5. DHCP As A Configuration Tool

thwack_post5_preview

6. Network Management Isn’t Enough Any More

thwack_post6_preview

 

I hope you find something to think about or react to there. I’ve tried to blend some hyperbole with a tablespoon of annoyance and a light dash of technical reality. If you have any specific comments on any of these posts, the right thing to do would be to login to Thwack and comment there, but I’ll take any feedback you want to give, wherever it is.

 

 

Disclosures

I am participating in the Solarwinds Thwack Ambassador program on a paid basis for July-September 2015. My posts Continue reading

Ransomware pushers up their game against small businesses

After extorting millions from consumers over the past few years, file-encrypting ransomware creators are increasingly focusing their attention on victims who are more likely to pay up: small and medium-sized businesses.Throughout June and July, over 67 percent of users who clicked on malicious links in CryptoWall-related emails were from the SMB sector, researchers from antivirus vendor Trend Micro found. An additional 17 percent were from within large enterprises.CryptoWall is one of the most widespread ransomware programs, infecting nearly 625,000 systems between March and August 2014 and many more since then. Researchers estimate that it has earned well over $1 million for its creators.To read this article in full or to leave a comment, please click here

HP’s struggles reflected in CIOs IT purchasing plans

HP's plan to lay off 33,000 workers over the next three years -- the latest step in its massive restructuring -- underscores the challenges the tech giant faces as it seeks to adapt to changing demands in corporate computing.CIOs, many of whom are under pressure to inject digital capabilities into their businesses and support increasingly mobile workforces, are shifting spending away from enterprise hardware and services to cloud, mobile and analytics software. Incumbent vendors are scrambling to keep up, each in different ways. However, HP’s answer to the challenges is the most dramatic and headline-grabbing.To read this article in full or to leave a comment, please click here

Apple devs: Don’t let Apple’s Xcode validation scare you

The Apple App Store has long enjoyed a sterling reputation for screening out malware. But last weekend, the company pulled apps infected with XcodeGhost malware from the Chinese Apple App Store -- infected apps that had apparently been created with a counterfeit version of Apple's Xcode IDE by unsuspecting developers.As a precaution, Apple emailed its developers on Tuesday, recommending that they validate their installed version of Xcode using a simple procedure to ensure it wasn't a hacked version. The email also contained a reminder to "always download Xcode directly from the Mac App Store, or from the Apple Developer website, and leave Gatekeeper enabled on all your systems to protect against tampered software."To read this article in full or to leave a comment, please click here

Privacy group calls for a boycott of tech companies supporting CISA

Privacy advocates are stepping up their lobbying efforts against the controversial cyber threat information sharing bill currently in Congress after several tech giants indicated their support.Activist group Fight for the Future criticized Salesforce for supporting legislation which would "grant blanket immunity for American companies to participate in government mass surveillance programs like PRISM, without meaningfully addressing any of the fundamental cyber security problems we face in the U.S." Accordingly, Fight for the Future said it will abandon the Heroku cloud application platform within the next 90 days and encourages others to follow suit. The letter to Salesforce CEO Marc Benioff was posted on the site YouBetrayedUs.org.To read this article in full or to leave a comment, please click here

Cybersecurity hall of fame names inductees

Incoming class The National Cyber Security Hall of Fame has announced its recent class of inductees. In noting them we also highlight some of the past winners. The hall of fame recognizes the history and contributions of pioneers, innovators and educators who influenced the industry. The inductees are chosen by a board of advisers. Pictured from left to right are: Susan Landau, Steven Lipner, Cynthia Irvine, Ron Ross, and Jerry Saltzer is in front.To read this article in full or to leave a comment, please click here

An EIGRP Scaling Puzzle

This last week I received an email from a friend asking about scaling. The situation is this: a particular company has well over 100 EIGRP routers on a single L2 service from a provider. Will this scale? What’s more interesting than simply asking about scale, though, is to ask the “why” question — no matter […]

The post An EIGRP Scaling Puzzle appeared first on Packet Pushers.

DHCP Details You Didn’t Know

If you’ve been a networking engineer (or a sysadmin) for a few years, you must be pretty familiar with DHCP and might think you know everything there is to know about this venerable protocol. So did I… until I read the article by Chris Marget in which he answers two interesting questions:

  • How does the DHCP server (or relay) send DHCP offer to the client that doesn’t have an IP address (and doesn’t respond to ARP)?
  • How does the DHCP client receive the DHCP responses if it doesn’t have an IP address?
More details
1 3,343 3,344 3,345 3,346 3,347 3,875