Uncategorized

Analysis-PPT

summary report

Exploiting Metasploitable 2 with Metasploit in Kali-Linux 2016 – PowerPoint

Metasploit Executive Summary

Certifications are big business in many industries but especially in the Information Technology sector. In speaking with seasoned IT professionals, I’ve found that popular certifications one year tend to lose their value the next. One such IT professional told me recently that Microsoft Certifications were extremely valuable ten, fifteen years ago. In 2017, I, personally, do not know one person seeking a Microsoft certification. I do, however, know many people seeking some form of cyber security certification and since the ITACS course is designed to prep for the CISA or CISSP, it is good to see those two certifications at the top of this list. While these certifications could lose their popularity in the not so distant future (like a Microsoft Specialist Certification), it’s good to see that for now they are highly reputable.

http://www.itcareerfinder.com/brain-food/blog/entry/10-hot-cyber-security-certifications-for-2017.html

A newly discovered piece of malware targeting Magento stores has a self-healing routine to restore itself after deletion, security researchers have discovered.The recently spotted Magento-targeting malware is using a database trigger to restore itself in the event it has been deleted: every time a new order is made, injected SQL code searches the compromised Magento installation and, if it doesn’t find the malware, it re-adds it. The malware leverages SQL stored procedures for this operation.

Malware’s behavior renders previous cleaning routines useless, because removing the malicious code from the infected records will no longer ensure that the infection is gone. This would only work for regular Javascript-based malware, which normally gets injected in the static header or footer HTML definitions in the database.The newly observed malware ensures that the self-healing trigger is executed every time a new order is made. The query checks for the existence of the malware in the header, footer, copyright and every CMS block. If absent, it will re-add itself.Malware detection should now include database analysis as well, because file scanning is no longer efficient. This discovery shows we have entered a new phase of malware evolution

http://www.securityweek.com/self-healing-malware-hits-magento-stores

This article is from the weekly blog post from Rapid 7. There’s a few interesting topics talked about, such as their suggestion for users to use post exploitation modules, a new exploit to exfiltrate data from Cisco Firepower Management console, a new stateless Android meterpreter module and a new module for hacking into cars remotely. This blog seems like a good way to stay updated on new modules and updates to the Metasploit framework and news in the offsec community.

https://community.rapid7.com/community/metasploit/blog/2017/02/09/metasploit-framework-valentines-update

MEITU, A CHINESE selfie editing app, has amassed billions in downloads since launching in 2008; it’s been trendy in Asia for several years, and just recently began gaining popularity in the United States. The anime-style photo-editing tool, which is available through the Apple and Android app stores, features airbrushed, fairylike depictions of people.

Users noticed that the Android version had very invasive permissions, and developers who took a deeper look found code that pulled a whole lot of sensitive data off your phone, and sent it to Meitu’s servers in China. That included unique identifiers for your phone — its IMEI and MAC address — and precise GPS coordinates of your location, which is pulled from the EXIF data of photos you take even if you deny the app permission to your phone’s location data. It even checked iOS versions to see if they were running on jailbroken device, so it could send back more data.

 

 

https://community.giffgaff.com/t5/Blog/Meitu-the-tracking-controversy-over-the-latest-selfie-craze/bc-p/19871691