Architecture and Information Security - Cyber Security Informer

Zero Trust Network Architecture vs Zero Trust: What Is the Difference?

Joseph Steinberg

JANUARY 4, 2023

But, even those who have a decent grasp on the meaning of Zero Trust seem to frequently confuse the term with Zero Trust Network Architecture (ZTNA). Zero Trust Network Architecture is an architecture of systems, data, and workflow that implements a Zero Trust model. In short, Zero Trust is an approach.

Architecture

Architecture Artificial Intelligence Encryption Cybersecurity

Network Security Architecture: Best Practices & Tools

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization.

Architecture

Architecture Network Security Firewall Risk

On the Cybersecurity Jobs Shortage

Schneier on Security

SEPTEMBER 20, 2023

What there is a shortage of are computer scientists, developers, engineers, and information security professionals who can code, understand technical security architecture, product security and application security specialists, analysts with threat hunting and incident response skills.

Cybersecurity

Cybersecurity CISO Engineering Architecture

Building a Ransomware Resilient Architecture

eSecurity Planet

DECEMBER 2, 2022

While security teams layer essential preventative measures, resilience measures also need to be implemented in an architecture to reduce the impact of ransomware attacks on your backups. Figure 1: Typical VLAN architecture. Figure 2: Resilient VLAN architecture. How could this have been prevented? Does this add latency?

Architecture

Architecture Ransomware Backups Firewall

ÆPIC Leak is the first CPU flaw able to architecturally disclose sensitive data

Security Affairs

AUGUST 17, 2022

Researchers uncovered a new flaw, dubbed ÆPIC, in Intel CPUs that enables attackers to obtain encryption keys and other secret information from the processors. The ÆPIC Leak ( CVE-2022-21233 ) is the first architecturally CPU bug that could lead to the disclosure of sensitive data and impacts most 10th, 11th and 12th generation Intel CPUs.

Architecture

Architecture Firmware Software Information Security

WebAuthn, Passwordless and FIDO2 Explained: Fundamental Components of a Passwordless Architecture

Duo's Security Blog

DECEMBER 6, 2022

While this isn’t entirely wrong, passwords are difficult to remember and rarely secure. Experts in the fields of data protection and information security now look towards new technologies to make system access much more secure.

Architecture

Architecture Authentication Passwords Technology

What Is a DMZ Network? Definition, Architecture & Benefits

eSecurity Planet

APRIL 7, 2023

These and many other network security solutions are ramped up specifically on the DMZ, making it so network administrators can often detect unusual behavior before unauthorized users try to move past the DMZ to access the LAN. Definition, Architecture & Benefits appeared first on eSecurityPlanet.

Architecture

Architecture Firewall Network Security Technology

Google fixed a critical vulnerability in Chrome browser

Security Affairs

OCTOBER 30, 2024

Google has patched a critical Chrome vulnerability, tracked as CVE-2024-10487, reported by Apple Security Engineering and Architecture (SEAR) on October 23, 2024. Google addressed a critical vulnerability in its Chrome browser, tracked as CVE-2024-10487, which was reported by Apple.

Engineering

Engineering Architecture Hacking Information Security

NIST’s Post-Quantum Cryptography Standards

Schneier on Security

AUGUST 8, 2022

Fun fact: Those three algorithms were broken by the Center of Encryption and Information Security, part of the Israeli Defense Force. It took a couple of decades to fully understand von Neumann computer architecture; expect the same learning curve with quantum computing. The second uncertainly is in the algorithms themselves.

Encryption

Encryption Architecture Engineering Information Security

ConnectWise Quietly Patches Flaw That Helps Phishers

Krebs on Security

DECEMBER 1, 2022

“Our team quickly triaged the report and determined the risk to partners to be minimal,” said Patrick Beggs , ConnectWise’s chief information security officer. ” However, LastPass maintains that its “customer passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.”

Phishing

Phishing Architecture Passwords Accountability

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Security Affairs

FEBRUARY 15, 2025

“we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior.” ” reads the report published by Assetnote.

Firewall

Firewall Authentication Architecture Risk

Banshee macOS stealer supports new evasion mechanisms

Security Affairs

JANUARY 10, 2025

In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures. Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software.

Malware

Malware Advertising Antivirus Cybercrime

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Security Affairs

FEBRUARY 19, 2025

we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior. Fundamentally, these sorts of architectures lead to things like header smuggling and path confusion, which can result in many impactful bugs!

Firewall

Firewall Authentication Architecture Internet

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The modular architecture of the malware allows to extend its functionalities for multiple malicious purposes, including surveillance, reconnaissance, information theft, DDoS attacks, and arbitrary code execution.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

My Philosophy and Recommendations Around the LastPass Breaches

Daniel Miessler

DECEMBER 24, 2022

If you follow Information Security at all you are surely aware of the LastPass breach situation. These encrypted fields remain secured with 256-bit AES encryption and can only be decrypted with a unique encryption key derived from each user’s master password using our Zero Knowledge architecture.

Password Management

Password Management Passwords Encryption Backups

GhostWrite: New T-Head CPU Bugs Expose Devices to Unrestricted Attacks

The Hacker News

AUGUST 13, 2024

A team of researchers from the CISPA Helmholtz Center for Information Security in Germany has disclosed an architectural bug impacting Chinese chip company T-Head's XuanTie C910 and C920 RISC-V CPUs that could allow attackers to gain unrestricted access to susceptible devices. The vulnerability has been codenamed GhostWrite.

Architecture

Architecture Information Security

Google Responds to Warrants for “About” Searches

Schneier on Security

OCTOBER 13, 2020

“We vigorously protect the privacy of our users while supporting the important work of law enforcement,” Google’s director of law enforcement and information security Richard Salgado told us. We have knowingly and willingly built the architecture of a police state, just so companies can show us ads.

Surveillance

Surveillance Wireless Accountability Architecture

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

Security Affairs

JANUARY 28, 2025

DeepSeek’s AI model is highly appreciated due to its exceptional performance, low costs, versatility across various industries, and innovative architecture that enhances learning and decision-making.

Artificial Intelligence

Artificial Intelligence DDOS Architecture Marketing

Experts found multiple flaws in Mercedes-Benz infotainment system

Security Affairs

JANUARY 21, 2025

The experts used a diagnostic software to analyze the vehicle architecture, scan the Electronic Control Unit (ECU), identify its version, and test diagnostic functions. Kaspersky published research findings on the first-generation Mercedes-Benz User Experience (MBUX) infotainment system, specifically focusing on the Mercedes-Benz Head Unit.

Software

Software Architecture Media Engineering

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

“The adversaries appear to be well-resourced, patient, creative, and unusually knowledgeable about the internal architecture of the device firmware. ” concludes the report. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, China-linked threat actors)

Firmware

Firmware Government Firewall Malware

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

SecureWorld News

MARCH 13, 2025

Kowski also emphasizes the need for a multi-layered security approach, stating that "multi-factor authentication, strong password policies, and zero-trust architecture are essential defenses that significantly reduce the risk of AI-powered attacks succeeding, regardless of how convincing they appear."

Malware

Malware Cybersecurity Cyber threats Threat Detection

News Alert: Silent Signal discovers a critical vulnerability in IBM i System – CVE-2023-30990

The Last Watchdog

JULY 7, 2023

This necessitates a shift in paradigm for both security professionals and vendors, as IBM i Systems have been renowned for their inherent security. IBM i users are strongly advised to prioritize regular scanning, vulnerability remediation, and patching to ensure the security of their systems.

Architecture

Architecture Hacking Media Government

NASA identified 1,785 cyber incidents in 2020

Security Affairs

MAY 27, 2021

. • NASA lacked an Agency-wide risk management framework for information security and an information security architecture. The Security Operations Center lacks visibility and authority to manage information security incident detection and remediation for the entirety of NASA’s IT infrastructure.

Information Security

Information Security Cyber Attacks Mobile Architecture

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Security Affairs

MARCH 2, 2025

DragonForce Ransomware Group is Targeting Saudi Arabia Massive Botnet Targets M365 with Stealthy Password Spraying Attacks Notorious Malware, Spam Host Prospero Moves to Kaspersky Lab ACRStealer Infostealer Exploiting Google Docs as C2 #StopRansomware: Ghost (Cring) Ransomware The GitVenom campaign: cryptocurrency theft using GitHub Silent Killers: (..)

Malware

Malware Architecture IoT Ransomware

Rules File Backdoor: AI Code Editors exploited for silent supply chain attacks

Security Affairs

MARCH 19, 2025

” Rule files are configuration files that guide AI Agent behavior in code generation and modification, defining coding standards, project architecture, and best practices.

Architecture

Architecture Risk Hacking Software

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Design your architecture in a way where the CMS back end (the behind-the-scenes content repository) is not directly coupled to the front end (the presentation system).

Data breaches

Data breaches Encryption Mobile Technology

New NKAbuse malware abuses NKN decentralized P2P network protocol

Security Affairs

DECEMBER 15, 2023

The malicious code can target various architectures, it supports both flooder and backdoor capabilities. The primary target of NKAbuse is Linux desktops, however, it can target MISP and ARM architecture. NKN (New Kind of Network) is a decentralized peer-to-peer network protocol that relies on blockchain technology.

Malware

Malware Architecture Technology DDOS

News alert: Implementing AI-powered ‘Cisco HyperShield’ requires proper cybersecurity training

The Last Watchdog

AUGUST 16, 2024

As an “AI-native” security architecture, HyperShield promises to redefine traditional security protocols through its automated proactive cybersecurity measures and AI-driven security solutions.

Cybersecurity

Cybersecurity Architecture Technology Network Security

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

The Last Watchdog

OCTOBER 19, 2020

For organizations looking to improve their security posture, this is causing confusion and vendor fatigue, especially for companies that don’t have a full time Chief Information Security Officer. The vendors are well-intentioned.

eCommerce

eCommerce Cybersecurity B2B Marketing

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

Security Affairs

NOVEMBER 1, 2021

The botnet leverages a robust architecture based on a combination of third-party services, P2P, and Command & Control servers. This architecture was implemented to make the botnet resilient to takedowns by law enforcement and security firms with the support of the vendors of the infected devices.

Architecture

Architecture DDOS Advertising DNS

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

The Last Watchdog

JANUARY 8, 2023

The need for reset and oversight is so great that a new class of technology is emerging to give organizations a better grip on the digital sprawl that’s come to define modern-day enterprise architecture. About the essayist: Chris Reffkin is chief information security officer at cybersecurity software and services provider Fortra.

Risk

Risk Cybersecurity Technology CISO

Cisco IOS XR flaw allows attackers to crash BGP process on routers

Security Affairs

MARCH 15, 2025

It is based on a microkernel architecture, designed for high availability, scalability, and modularity. IOS XR is a network operating system developed by Cisco for carrier-grade and service provider routers.

Software

Software Architecture Hacking Risk

Multiple Git flaws led to credentials compromise

Security Affairs

JANUARY 27, 2025

“As we saw, text-based protocols are often vulnerable to injection, and a small architecture flaw can lead to a big security issue.” “I hope that this research helped the Git community to improve its security, and I am looking forward to seeing further research on Git-related projects.”

Architecture

Architecture Hacking Information Security

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

The Last Watchdog

FEBRUARY 26, 2023

At the developer level, they will fundamentally reshape how programmers do their work day in and day out – including employing more project management tools and secure system architecture frameworks to track and mitigate risks at any stage in the SDLC.

Cyber threats

Cyber threats Software Risk CISO

News Alert: Normalyze extends its DSPM platform to hybrid cloud and on-prem environments

The Last Watchdog

AUGUST 2, 2023

Padron “As our hybrid environment grew due to cloud migration and regulatory requirements, getting holistic visibility into our data stored on-premises and in the cloud is becoming a challenging task for our security and compliance teams,” said Nick Padron, Director of Information Security at Fairfield.

Cloud Migration

Cloud Migration Risk Architecture Media

PHP addressed critical RCE flaw potentially impacting millions of servers

Security Affairs

JUNE 9, 2024

“However, since PHP CGI is an outdated and problematic architecture, it’s still recommended to evaluate the possibility of migrating to a more secure architecture such as Mod-PHP, FastCGI, or PHP-FPM.” ” concludes the advisory.

Architecture

Architecture Hacking Risk Cybersecurity

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

Joseph Steinberg

JULY 13, 2022

the firm’s Head of Security Engineering and Architecture, is quoted as saying that Apple “makes the most secure mobile devices on the market.”. Also concerning is the fact that in Apple’s Lockdown announcement, Ivan Krsti?, Is that really true?

Cybersecurity

Cybersecurity Artificial Intelligence Government Social Engineering

XCSSET malware now targets macOS 11 and M1-based Macs

Security Affairs

APRIL 19, 2021

For example, a sample with the MD5 hash sum 914e49921c19fffd7443deee6ee161a4 contains two architectures: x86_64 and ARM64.” The first one corresponds to previous-generation, Intel-based Mac computers, but the second one is compiled for ARM64 architecture, which means that it can run on computers with the new Apple M1 chip.”.

Malware

Malware Cryptocurrency Architecture Engineering

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs

SEPTEMBER 18, 2024

“The investigation has yielded insights into the botnet’s network architecture, exploitation campaigns, malware components, and operational use, illuminating the evolving tactics and techniques employed by the threat actors. “This botnet has targeted entities in the U.S. ” concludes the report.

IoT

IoT Wireless DDOS Architecture

New modular ModPipe POS Malware targets restaurants and hospitality sectors

Security Affairs

NOVEMBER 12, 2020

The modular architecture of ModPipe consists of the basic components and downloadable modules: initial dropper that contains binaries (both 32-bit and 64-bit) of the next stage persistent loader and installs the appropriate version to the compromised machine. ” continues the analysis.

Malware

Malware Architecture Passwords Software

New HEH botnet wipes devices potentially bricking them

Security Affairs

OCTOBER 7, 2020

Researchers from from Netlab, the network security division of Chinese tech giant Qihoo 360, have discovered a new botnet, tracked as HEH, that contains the code to wipe all data from infected systems, such as routers, IoT devices, and servers. In the current version, each node cannot send control command to its peers.

Architecture

Architecture IoT Malware Advertising

Large-scale extortion campaign targets publicly accessible environment variable files (.env)

Security Affairs

AUGUST 18, 2024

This extortion campaign involved several security failures, including exposing environment variables, using long-lived credentials, and the lack of a least privilege architecture. This indicates that these threat actor groups are both skilled and knowledgeable in advanced cloud architectural processes and techniques.”

Architecture

Architecture Internet Internet Media

New variant of Necro Trojan infected more than 11 million devices

Security Affairs

SEPTEMBER 25, 2024

The analysis of Happy SDK likely revealed a different variant of Necro that doesn’t have a modular architecture. Between August 26th and September 15th, security solutions blocked over 10,000 Necro attacks globally, with most of the infections in Russia, Brazil, and Vietnam. ” concludes the report.

Architecture

Architecture Malware Mobile Advertising

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 14

Security Affairs

OCTOBER 6, 2024

Rhadamanthys Stealer Adds Innovative AI Feature in Version 0.7.0

Malware

Malware Architecture Cryptocurrency Cyber Attacks

Zero Trust Network Architecture vs Zero Trust: What Is the Difference?

Network Security Architecture: Best Practices & Tools

Trending Sources

On the Cybersecurity Jobs Shortage

Building a Ransomware Resilient Architecture

ÆPIC Leak is the first CPU flaw able to architecturally disclose sensitive data

WebAuthn, Passwordless and FIDO2 Explained: Fundamental Components of a Passwordless Architecture

What Is a DMZ Network? Definition, Architecture & Benefits

Google fixed a critical vulnerability in Chrome browser

NIST’s Post-Quantum Cryptography Standards

ConnectWise Quietly Patches Flaw That Helps Phishers

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Banshee macOS stealer supports new evasion mechanisms

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

My Philosophy and Recommendations Around the LastPass Breaches

GhostWrite: New T-Head CPU Bugs Expose Devices to Unrestricted Attacks

Google Responds to Warrants for “About” Searches

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

Experts found multiple flaws in Mercedes-Benz infotainment system

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

DeepSeek and AI-Generated Malware Pose New Danger for Cybersecurity

News Alert: Silent Signal discovers a critical vulnerability in IBM i System – CVE-2023-30990

NASA identified 1,785 cyber incidents in 2020

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Rules File Backdoor: AI Code Editors exploited for silent supply chain attacks

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

New NKAbuse malware abuses NKN decentralized P2P network protocol

News alert: Implementing AI-powered ‘Cisco HyperShield’ requires proper cybersecurity training

GUEST ESSAY: ‘CyberXchange’ presents a much-needed platform for cybersecurity purchases

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

GUEST ESSAY: In pursuit of smarter cybersecurity — to overcome complex risks and grow revenue

Cisco IOS XR flaw allows attackers to crash BGP process on routers

Multiple Git flaws led to credentials compromise

GUEST ESSAY: The case for complying with ISO 27001 — the gold standard of security frameworks

News Alert: Normalyze extends its DSPM platform to hybrid cloud and on-prem environments

PHP addressed critical RCE flaw potentially impacting millions of servers

Will iPhone’s New “Lockdown Mode” Create Dangerous Overconfidence In Apple’s CyberSecurity Capabilities?

XCSSET malware now targets macOS 11 and M1-based Macs

Experts warn of China-linked APT’s Raptor Train IoT Botnet

New modular ModPipe POS Malware targets restaurants and hospitality sectors

New HEH botnet wipes devices potentially bricking them

Large-scale extortion campaign targets publicly accessible environment variable files (.env)

New variant of Necro Trojan infected more than 11 million devices

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 14

Stay Connected