MIS 5212-Advanced Penetration Testing

MIS 5212 - Section 001 - Wade Mackey

Fox School of Business

Neil Y. Rushi

Cyber attacking medical devices

by 1 Comment

http://www.zdnet.com/article/iot-security-warning-cyber-attacks-on-medical-devices-could-put-patients-at-risk/

Here is another example of why the government, the health industry, cyber security experts and device makers should come together – medical devices have evolved to be considered Internet of things (IoT) and need to be protected because they are attached to human beings and since they rely on internet, cyber attacks could cause massive harm to these people. The article explains why we need all the necessary parties to come together to incorporate protection and plan for the events that may take place so the patients are not harmed in anyway.

DDoS on GitHub

by 2 Comments

https://thehackernews.com/2018/03/biggest-ddos-attack-github.html

GitHub is a code hosting website and someone or some group managed to find a misconfigured Memcached server(s) and spoofed an IP Address to create the DDoS event. The attack caused over 1.35Tbps of data, which is the largest attack ever. Experts say that these aren’t common and more to come in the future. The port number was 11211 and experts say to prevent these attacks is to either disable the port or use firewalls to protect memcached servers from attacks.

Free Keyloggers

by Leave a Comment

https://www.technewsworld.com/story/85002.html

People who bought HP laptops had a free keylogger program installed but it wasn’t on purpose. A user found out while troubleshooting it, but by default it was turned off. The user contacted HP and they applied a patch to remove it. The keylogger program was found to be a software bug that wasn’t finalized before being deployed. Issues about keyloggers are consumers don’t really know what it is and if hackers or other malicious people know about it, they can expose it for their own purpose.

Google Chrome personal data hijacking

by 3 Comments

I found this article a week ago and I thought it was interesting since I know at my job, other companies and even Temple students use Google Chrome for work or personal use. The malware would ask users to call a number and when they do, it would of course ask for personal info. This would let the hackers to gain and steal people’s info. Google is working on getting it fixed and companies won’t block access to browsers and ask for information to unlock it.

http://www.foxnews.com/tech/2018/02/09/scam-hijacks-google-chrome-browser-tries-to-get-your-personal-data.amp.html

When data isn’t correct and the aftermath

by Leave a Comment

In my forensics class, the professor talked about how a forensics expert solved cases to put the murderers away but later found he was incorrect. So the people sent to jail were freed. This can damage the reputation and trust of anyone in the field and relates to cyber security because we want to make sure our facts and data line up before we give a solution or data to accuse someone of an activity that either cause a system failure or intrusion.

http://www.forensicsciencetechnician.net/25-wrongly-convicted-felons-exonerated-by-new-forensic-evidence/