Silensec Newsletter

Chinese spying chips found in servers used by US tech companies

Chinese Spying Chips Found Hidden On Servers Used By US Companies

A report revealed details of a significant supply chain attack which appears to be one of the largest corporate espionage and hardware hacking programs from a nation-state.

According to the report, a tiny surveillance chip has been found hidden in the servers used by nearly 30 American companies, including Apple & Amazon.

The malicious chips, which were not part of the original server motherboards designed by the U.S-based company Super Micro, had been inserted during the manufacturing process in China.

Read more...

New Yorkers sue Trump and FEMA to stop Presidential Alert

New Yorkers sue Trump and FEMA to stop Presidential Alert

Three New York residents last week filed a lawsuit in the Southern District Court of New York against President Donald Trump and William Long, administrator of the Federal Emergency Management Agency.

The residents want to halt FEMA's new Presidential Alert messaging system, which enables Trump to deploy alerts of national emergencies.

Presidential Alerts are similar to Amber or other emergency alerts on your phone - you hear a loud noise comes along with vibration.

Read more...

FBI warns companies about hackers increasingly abusing RDP connections

FBI warns companies about hackers increasingly abusing RDP connections

In a recent publication issued by the FBI, is a warning to companies about the dangers of leaving RDP (Remote Desktop Protocol) endpoints exposed online. In its alert, the FBI mentions that the number of computers with an RDP connection left accessible on the Internet has gone up since mid and late 2016.

This assertion from the FBI correlates with numbers and trends reported by cybersecurity firms in the past few years.

Read more...

New Linux Kernel bug affects Red Hat, CentOS, and debian distributions

New Linux Kernel bug affects Red Hat, CentOS, and debian distributions

Security researchers have published the details and proof-of-concept PoC exploits of an integer overflow vulnerability in the Linux kernel that could allow an unprivileged user to gain superuser access to the targeted system.

The vulnerability, discovered by cloud-based security and compliance solutions provider Qualys, which has been dubbed "Mutagen Astronomy," affects the kernel versions released between July 2007 & July 2017, impacting the Red Hat Enterprise Linux, CentOS, and Debian distributions.

Read more...

The Mirai botnet architects are now fighting crime with the FBI

The Mirai botnet architects are now fighting crime with the FBI

Three college-age defendants behind the creation of the Mirai botnet - an online tool that wreaked destruction across the internet in the fall of 2016 with unprecedentedly powerful distributed denial of service attacks - will stand in an Alaska courtroom Tuesday and ask for a novel ruling from a federal judge: They hope to be sentenced to work for the FBI.

Read more...

Russians tried to hack Swiss lab testing samples from Skripal attack

Russians tried to hack Swiss lab testing samples from Skripal attack

Dutch officials recently revealed that they arrested and expelled two alleged Russian intelligence agents who were caught attempting to hack into the Spiez Laboratory, a Swiss national laboratory that is home to the Swiss Federal Institute for NBC (Nuclear, Biological, and Chemical) Protection.

Read more...