Architecture and Document - Cyber Security Informer

Coffee with the Council Podcast: Scoping and Segmentation: Navigating Modern Network Architecture and PCI DSS v4.x

PCI perspectives

NOVEMBER 18, 2024

Recently, PCI SSC published a new information supplement called PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. I'm Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council.

Architecture

Data Wallets Using the Solid Protocol

Schneier on Security

JULY 25, 2024

I am the Chief of Security Architecture at Inrupt, Inc. , This week, we announced a digital wallet based on the Solid architecture. Details are here , but basically a digital wallet is a repository for personal data and documents. Right now, there are hundreds of different wallets, but no standard.

Architecture

Architecture Data privacy

Metadata Left in Security Agency PDFs

Schneier on Security

MARCH 12, 2021

Really interesting research : “Exploitation and Sanitization of Hidden Data in PDF Files” Abstract: Organizations publish and share more and more electronic documents like PDF files. All these information can be exploited easily by attackers to footprint and later attack an organization.

Architecture

Architecture Software

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Safety and Security in Automated Driving

Adam Shostack

JANUARY 2, 2025

I would find it more surprising if I were to look at a 150 page document and not find anything surprising.) I also like Figure 27 & 28 (shown), showing risks associated with a generic architecture. Give specific threat information and mitigation strategies to component designers. I find some parts of it surprising. (I

Risk

Risk Architecture Manufacturing Cybersecurity

New Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures

PCI perspectives

SEPTEMBER 9, 2024

The PCI Security Standards Council (PCI SSC) has published a new Information Supplement:  PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures. This

Architecture

Threat Model Thursday: Architectural Review and Threat Modeling

Adam Shostack

JANUARY 2, 2025

[no description provided] For Threat Model Thursday, I want to use current events here in Seattle as a prism through which we can look at technology architecture review. Let's transition from the housing crisis here in Seattle to the architecture crisis that we face in technology. Seattle has a housing and homelessness crisis.

Architecture

Architecture Marketing Technology Software

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

The Last Watchdog

JANUARY 27, 2025

demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation.

Password Management

Password Management Architecture Threat Detection Cybersecurity

The Architectural Mirror (Threat Model Thursday)

Adam Shostack

JANUARY 2, 2025

I last discussed this in " Architectural Review and Threat Modeling ".) Builders say problems with the system are setting their projects back by weeks or months.Soon after launch, the new system repeatedly stalled and permit documents appeared to go missing. It's hard to face the mirror and say 'could I have done that better?'

Architecture

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. This article explores network security architecture components, goals, best practices, frameworks, implementation, and benefits as well as where you can learn more about network security architecture.

Architecture

Architecture Network Security Firewall Risk

Best Policy Templates for Compliance: Essential Documents for Regulatory Success

Centraleyes

FEBRUARY 17, 2025

Designing a Strategic Policy Management Architecture A mature program requires more than a process overhaulit demands a strategic architecture that integrates process, information, and technology. Process Architecture: Structure your policy lifecyclefrom development to retirementfor seamless operation.

Architecture

Architecture Government Risk Technology

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

Modular Architecture: SploitScan is highly flexible. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool. Check the documentation for detailed instructions. SploitScan keeps things simple with a user-friendly CLI.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

Modular Architecture: SploitScan is highly flexible. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool. Check the documentation for detailed instructions. SploitScan keeps things simple with a user-friendly CLI.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The modular architecture of the malware allows to extend its functionalities for multiple malicious purposes, including surveillance, reconnaissance, information theft, DDoS attacks, and arbitrary code execution.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

News alert: SquareX’s “Year of Browser Bugs” project exposes critical cybersecurity blind spots

The Last Watchdog

MARCH 18, 2025

Throughout 2025, SquareXs research team will disclose at least one critical web attack per month as part of the YOBB project, focusing on vulnerabilities that exploit architectural limitations of the browser and incumbent solutions. As the year progresses, security teams can expect monthly disclosures to be documented at [link].

Cybersecurity

Cybersecurity Architecture Media Password Management

Microsoft Patch Tuesday, June 2022 Edition

Krebs on Security

JUNE 15, 2022

Dubbed “ Follina ,” the flaw became public knowledge on May 27, when a security researcher tweeted about a malicious Word document that had surprisingly low detection rates by antivirus products. “Most malicious Word documents leverage the macro feature of the software to deliver their malicious payload. .

Architecture

Architecture Internet Internet Software

Attacking the Intel Secure Enclave

Schneier on Security

AUGUST 30, 2019

Abstract: Modern CPU architectures offer strong isolation guarantees towards user applications in the form of enclaves. And there are no security mechanisms that can deal with malicious enclaves, because the designers couldn't imagine that they would be necessary. The results are predictable.

Malware

Malware Architecture Encryption Phishing

What is 5G security? Explaining the security benefits and vulnerabilities of 5G architecture

CyberSecurity Insiders

SEPTEMBER 21, 2021

Defining 5G security and architecture. According to the document, 5G’s trustworthiness is made possible by a set of security features that were built using system design principles applied with a risk-based mindset. Delving into the technical details of the 5G security architecture is beyond the scope of this article.

Architecture

Architecture IoT Mobile Internet

GPU Hosting, LLMs, and the Unseen Backdoor

SecureWorld News

APRIL 16, 2025

Shared memory, shared risk This is the big one: GPUs rely on shared memory architectures. Researchers have demonstrated attacks that can extract neural network architecture and weights by observing GPU memory access patterns. It holds sensitive datasetsPII, trade secrets, internal documents. This isn't science fiction.

Architecture

Architecture Artificial Intelligence Passwords Risk

What Is a DMZ Network? Definition, Architecture & Benefits

eSecurity Planet

APRIL 7, 2023

DMZ network architecture DMZ Architecture There are two main layout options to choose from when developing a DMZ subnetwork: a single firewall layout and a dual firewall layout. Definition, Architecture & Benefits appeared first on eSecurityPlanet.

Architecture

Architecture Firewall Network Security Technology

Software Vulnerabilities in the Boeing 787

Schneier on Security

AUGUST 16, 2019

The CIS/MS is responsible for applications like maintenance systems and the so-called electronic flight bag, a collection of navigation documents and manuals used by pilots. Boeing maintains that other security barriers in the 787's network architecture would make that progression impossible.

Software

Software Architecture Engineering Hacking

Google Responds to Warrants for “About” Searches

Schneier on Security

OCTOBER 13, 2020

One of the things we learned from the Snowden documents is that the NSA conducts “about” searches. We have knowingly and willingly built the architecture of a police state, just so companies can show us ads. That is, searches based on activities and not identifiers.

Surveillance

Surveillance Wireless Accountability Architecture

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

The first documented attack against a Sophos facility is the one that targeted Cyberoam in 2018. “The adversaries appear to be well-resourced, patient, creative, and unusually knowledgeable about the internal architecture of the device firmware. ” concludes the report.

Firmware

Firmware Government Firewall Malware

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

SecureList

APRIL 17, 2025

Infection through a malicious MMC script One of the recent infections we spotted was delivered through a malicious MMC script, designed to be disguised as a document from the National Land Agency of Mongolia (ALAMGAC): Malicious MMC script as displayed in Windows Explorer. Open the downloaded lure document for the victim.

Malware

Malware Encryption Architecture Engineering

Version 7 of the REMnux Distro Is Now Available

Lenny Zeltser

JULY 22, 2020

This Linux distribution for malware analysis includes hundreds of new and classic tools for examining executables, documents, scripts, and other forms of malicious code. Revamped REMnux documentation provides an extensive, categorized listing of the installed malware analysis tools, and lists their authors, websites, and license details.

Architecture

Architecture Malware Software Technology

U.S. Security Agencies Release Network Security, Vulnerability Guidance

eSecurity Planet

MARCH 4, 2022

The NSA’s 58-page Network Infrastructure Security Guidance (PDF) is more of a catalog of network security best practices, based on principles of zero trust and segmentation , following up on brief January guidance (PDF) on segmentation that discussed the Purdue Enterprise Reference Architecture (image below).

Network Security

Network Security Architecture Authentication Firewall

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

Security Affairs

MARCH 8, 2024

million files, and 65,000 documents were classified by NCSC as data relevant to the Federal Administration. 278 Federal Administration’s files contained technical information, encompassing documentation on IT systems, software requirement documents, or architectural descriptions. ” continues the report.

Ransomware

Ransomware Data breaches Unstructured Data Architecture

PCI DSS v4.0 Evidence and documentation requirements checklist

Pen Test Partners

FEBRUARY 12, 2025

When it comes to compliance, the list of documentation and evidence pieces is broad. To help weve created a checklist of the key documents broken down per control to help you navigate PCI and ensure youve covered all bases. Update regularly : Review and update documents periodically to align with changing compliance requirements.

Penetration Testing

Penetration Testing Encryption Architecture Authentication

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Chances are strong that your corporate website uses a CMS, and perhaps you have a separate CMS for documents and other files shared by your employees, partners, and suppliers. Design your architecture in a way where the CMS back end (the behind-the-scenes content repository) is not directly coupled to the front end (the presentation system).

Data breaches

Data breaches Encryption Mobile Technology

Beyond the Surface: the evolution and expansion of the SideWinder APT group

SecureList

OCTOBER 15, 2024

SideWinder’s most recent campaign schema Infection vectors The SideWinder attack chain typically starts with a spear-phishing email with an attachment, usually a Microsoft OOXML document (DOCX or XLSX) or a ZIP archive, which in turn contains a malicious LNK file. Some infection routines do not check the architecture.

Malware

Malware Encryption Architecture Phishing

RSAC insights: Malware is now spreading via weaponized files circulating in data lakes, file shares

The Last Watchdog

JUNE 3, 2022

Digital content creation is flourishing with intellectual property, financial records, marketing plans and legal documents circulating within a deeply interconnected digital ecosystem. It’s documents, PDFs, CSV files, Excel files, images, lots of unstructured data; we track 150 different file types. Srinivasan.

Unstructured Data

Unstructured Data Malware Digital transformation Authentication

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

JULY 17, 2020

The Cyble research team analyzed the data leaked by the Nefilim ransomware operators consisting of various sensitive and corporate operational documents of Aero Technique Espace (ATE), a well-established French aircraft painting company that had been acquired by Air works. ” reads the post published by Cyble.

Business Services

Business Services Ransomware Mobile Advertising

HomePwn: Swiss Army Knife for Penetration Testing of IoT Devices

Hacker's King

NOVEMBER 2, 2024

HomePwn has a modular architecture in which any user can expand the knowledge base about different technologies. Now simply follow the usage instructions as mentioned in the documentation PDF file given above. With a strong library of modules, you can use this tool to load new features and use them on a vast variety of devices.

Penetration Testing

Penetration Testing IoT Technology DNS

Crimea “manifesto” deploys VBA Rat using double attack vectors

Malwarebytes

JULY 29, 2021

On July 21, 2021, we identified a suspicious document named “????????.docx” We could not determine who might be behind this attack based on the techniques alone, but a decoy document displayed to victims may give some clues. The second template is embedded in Document.xml.rels and is loaded into the document.

Architecture

Architecture Social Engineering Cyber Attacks Engineering

CISA warns of phishing attacks delivering KONNI RAT

Security Affairs

AUGUST 17, 2020

Threat actors used a decoy document titled “Pyongyang e-mail lists – April 2017” and it contained the email addresses and phone numbers of individuals working at organizations such as the United Nations, UNICEF and embassies linked to North Korea. The KONNI malware also employed in at least two campaigns in 2017.

Phishing

Phishing Malware Advertising Architecture

Amazon’s “Alexa Built-in” Threat Model

Adam Shostack

MARCH 5, 2020

Amazon has released a set of documents, “ Updates to Device Security Requirements for Alexa Built-in Products.” More precisely, since I don’t have an Amazon developer account, I’m going to look at the blog post, and infer some stuff about the underlying documentation.).

IoT

IoT Engineering Software Architecture

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

Security Affairs

APRIL 27, 2020

In March 2016, the Verizon breach digest reported a number of cyber attacks including one against an unnamed water utility, described in the document as the Kemuri Water Company (KWC). The operator behind the water utility hired Verizon to assess its systems, during the investigation the experts discovered evidence of cyber attacks.

Energy and Utilities

Energy and Utilities Government Cyber Attacks Architecture

EAGERBEE, with updated and novel components, targets the Middle East

SecureList

JANUARY 6, 2025

rar" "<<ip in the network>>c$Users<<user name>>Documents" "<<ip in the network>>c$Users<<user name>>Desktop" rar.exe a -v100M idata001.rar This memory-resident architecture enhances its stealth capabilities, helping it evade detection by traditional endpoint security solutions.

Malware

Malware Architecture Passwords Accountability

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Security Affairs

SEPTEMBER 29, 2022

Researchers from Black Lotus Labs at Lumen Technologies, recently uncovered a multifunctional Go-based malware that was developed to target devices based on multiple architectures, including Windows and Linux. The Chaos malware includes capabilities previously documented in the original Kaiji Linux botnet. ” concludes the report.

Malware

Malware DDOS Architecture Financial Services

RFC 9620: A Call for Human Rights in Internet Protocols

Penetration Testing

SEPTEMBER 18, 2024

The Internet Research Task Force (IRTF) has released a new document, RFC 9620, aimed at drawing the attention of protocol and architecture developers to critical human rights issues. The document... The post RFC 9620: A Call for Human Rights in Internet Protocols appeared first on Cybersecurity News.

Internet

Internet Internet Architecture Cybersecurity

Mitigating kernel risks on 32-bit ARM

Google Security

FEBRUARY 23, 2022

Posted by Ard Biesheuvel, Google Open Source Security Team Linux kernel support for the 32-bit ARM architecture was contributed in the late 90s, when there was little corporate involvement in Linux development, and most contributors were students or hobbyists, tinkering with development boards, often without much in the way of documentation.

Risk

Risk Architecture Wireless Software

macOS Backdoor RustDoor likely linked to Alphv/BlackCat ransomware operations

Security Affairs

FEBRUARY 10, 2024

The malware impersonates a Visual Studio update and was designed to support Intel and Arm architectures. Researchers from Bitdefender discovered a new macOS backdoor, dubbed RustDoor, which appears to be linked to ransomware operations Black Basta and Alphv/BlackCat. RustDoor is written in Rust language and supports multiple features.

Ransomware

Ransomware Architecture Malware Passwords

Announcing SecureX Academy

Cisco Security

JUNE 18, 2021

We have been able to bring together the Cisco Secure portfolio, 3rd party tools and data sources, and a robust platform architecture into which these technologies can be plugged, in a way that saves organizations time and money and increases their security, using just the free SecureX architecture and the tools and people they already have.

Architecture

Architecture Technology

Miro Threat Modeling Template for EoP

Adam Shostack

JANUARY 2, 2025

Teams have found this quite helpful in documenting their threat models. You'll need: The requirements for what you're building An architecture (data flow) diagram which shows your trust boundaries (where ownership or access rights to the data change in the flow) A neuro diverse group of people who know what they're building.

Architecture

Architecture Engineering Security Awareness

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

Modular Architecture: SploitScan is highly flexible. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool. Check the documentation for detailed instructions. SploitScan keeps things simple with a user-friendly CLI.

Penetration Testing

Penetration Testing Architecture Cybercrime Security Defenses

Coffee with the Council Podcast: Scoping and Segmentation: Navigating Modern Network Architecture and PCI DSS v4.x

Data Wallets Using the Solid Protocol

Webinars

Trending Sources

Metadata Left in Security Agency PDFs

Webinars

Safety and Security in Automated Driving

New Information Supplement: PCI DSS Scoping and Segmentation Guidance for Modern Network Architectures

Threat Model Thursday: Architectural Review and Threat Modeling

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

The Architectural Mirror (Threat Model Thursday)

Network Security Architecture: Best Practices & Tools

Best Policy Templates for Compliance: Essential Documents for Regulatory Success

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

News alert: SquareX’s “Year of Browser Bugs” project exposes critical cybersecurity blind spots

Microsoft Patch Tuesday, June 2022 Edition

Attacking the Intel Secure Enclave

What is 5G security? Explaining the security benefits and vulnerabilities of 5G architecture

GPU Hosting, LLMs, and the Unseen Backdoor

What Is a DMZ Network? Definition, Architecture & Benefits

Software Vulnerabilities in the Boeing 787

Google Responds to Warrants for “About” Searches

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

Version 7 of the REMnux Distro Is Now Available

U.S. Security Agencies Release Network Security, Vulnerability Guidance

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

PCI DSS v4.0 Evidence and documentation requirements checklist

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Beyond the Surface: the evolution and expansion of the SideWinder APT group

RSAC insights: Malware is now spreading via weaponized files circulating in data lakes, file shares

Orange Business Services hit by Nefilim ransomware operators

HomePwn: Swiss Army Knife for Penetration Testing of IoT Devices

Crimea “manifesto” deploys VBA Rat using double attack vectors

CISA warns of phishing attacks delivering KONNI RAT

Amazon’s “Alexa Built-in” Threat Model

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

EAGERBEE, with updated and novel components, targets the Middle East

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

RFC 9620: A Call for Human Rights in Internet Protocols

Mitigating kernel risks on 32-bit ARM

macOS Backdoor RustDoor likely linked to Alphv/BlackCat ransomware operations

Announcing SecureX Academy

Miro Threat Modeling Template for EoP

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Stay Connected