Tabla de contenidos para May 2023 en Hackercool Magazine

Hackercool Magazine|May 2023

REAL WORLD HACKING

Reports from cybersecurity company TrendMicro detected evidence of the Apache paperCut software being exploited in the wild by Russian Hackers as far as April 13/14 2023. Another cybersecurity company Huntress, reported that it is observed hackers exploiting this vulnerability to install remote management and maintenance (RMM) like Atera and Syncro and TrueBot. Microsoft has reported that hackers are exploiting this vulnerability to deliver Clop and LockBit ransomware families. What is Papercut Software? PaperCut MF is a print management software that is embedded on printer and photocopies and MFDs to monitor and control print output of organisation with simple administrative tools. How many people use 'it'? PaperCut software is used by over 100 million users worldwide over from 70,000 companies. Cyber security company, Huntress detected about 1800 publicly exposed vulnerable scenes.…

5 min.

Hackercool Magazine|May 2023

CYBER WAR

Greg Skulmoski Associate Professor, Project Management, Bond University Like most people I check my emails in the morning, wading through a combination of work requests, spam and news alerts peppering my inbox But yesterday brought something different and deeply disturbing. I noticed an alert from the American Cybersecurity and Infrastructure Security Agency (CISA) about some very devious malware that had infected a network of computers. The malware in question is Snake, a cyber espionage tool deployed by Russia’s Federal Security Service that has been around for about 20 years. According to CISA, the Snake implant is the “most sophisticated cyber espionage tool designed and used by Center 16 of Russia’s Federal Security Service for longterm intelligence collection on sensitive targets”. The Stealthy Snake The Russian Federal Security Service developed the…

4 min.

Hackercool Magazine|May 2023

AV EVASION

Overview of Malware Evasion Techniques Purpose and Objectives of Malware Evasion The primary purpose of malware evasion techniques is to evade detection by antivirus software and other security measures. Malicious actors aim to ensure that their malware remains undetected, allowing them to carry out their malicious activities without interruption. By evading detection, malware can gain persistence on the compromised system, exfiltrate sensitive data, propagate to other systems, or execute malicious commands. Common Types of Malware Evasion Techniques 1. Polymorphic Malware Polymorphic malware is a type of evasive malware that employs sophisticated code transformation techniques to change its appearance with each infection. It achieves this by using encryption, shapeshifting, and dynamic code generation. Encryption involves encoding the malware’s payload using cryptographic algorithms, making it challenging for AV software to detect and…

7 min.

Hackercool Magazine|May 2023

INTRODUCTION

It was an early morning of December 201 2 when Glenn Greenwald, columnist for “The Guardian” received an email from a person asking for his public PGP (Pretty Good Privacy) key because he wanted to send him an email securely. Glenn Greenwald had no idea what PGP was or how to get it. Repeated attempts by the person to contact Glenn Greenwald were ignored, as he got busy in some rather ‘important’ tasks. The person pestered to get Greenwald’s attention for over a month before giving up. It would take another six months for Greenwald to meet this person through his friend Laura Poitres. The person is none other than Edward Snowden, the NSA whistle-blower of USA. After this initial contact, these three would constantly communicate with each other and…

4 min.

Hackercool Magazine|May 2023

CYBER SECURITY

Richard Forno Principal Lecturer in Computer Science and Electrical Engineering, University of Maryland, Baltimore County Society’s understanding of technology and cyber security often is based on simple stereotypes and sensational portrayals in the entertainment media. I’ve written about how certain scenarios are entertaining but misleading. Think of black-clad teenage hackers prowling megacities challenging corporate villains. Or think of counterintelligence specialists repositioning a satellite from the back of a surveillance van via a phone call. But sometimes Hollywood gets it right by depicting reality in ways that both entertain and educate. And that’s important, because whether it’s a large company, government or your personal information, we all share many of the same cybersecurity threats and vulnerabilities. As a former cybersecurity industry practitioner and current cybersecurity researcher, I believe the final season…

6 min.

Hackercool Magazine|May 2023

BEGINNER BASICS

Introduction The TCP/IP model is a fundamental framework that forms the basis of modern computer networking. It provides a standardized approach to data transmission, enabling devices to communicate and exchange information seamlessly across the internet. In this article, we will explore the TCP/IP model in extreme detail, covering each layer and its significance within the networking ecosystem. A screen recording app named "iRecorder - Screen Recorder" has been removed from the Play Store after it was found to have data stealing malware. Overview of the TCP/IP Model The TCP/IP model consists of four layers, each serving a specific purpose in the communication process. These layers are: 1.Application Layer: This layer focuses on providing network services to applications and end-user processes. It encompasses protocols such as HTTP, SMTP, FTP, and DNS, which…

8 min.