Blog

Specialized blog with informative contents destined to a public with marked technical profile, in order to improve knowledge and create a culture about the security in Internet.

Post related to: Rootkit

Incontroller, the intelligent menace

The increase in industrial control systems and the shortcomings of those systems in cybersecurity measures have made such systems a preferred target of attacks. The number of tools designed to pose a threat to the OT sector has increased, and the use of the Incontroller tool is especially concerning.

Tags: 

Critical infrastructures

Cybercrime

Embedded systems

Incident

Industrial Control System

Industrial protocol

Linux

Malware

PLC

Rootkit

SCADA

Threats

Vulnerability

Windows

Emotet: characteristics and operation

In this post, an office document, a .doc file with macros, will be analyzed through the static and dynamic analysis of the sample in a controlled environment, in order to identify the actions carried out by the Emotet malware.

Tags: 

Cybercrime

Data protection

Firewall

Forensics

Incident

Malware

Phishing

Rootkit

Social engineering

Threats

Malware and security tools on Mac OS

The existence of malware for Mac OS has gained especial importance since 2014. We are going to take a look at some of the most important threats and security tools that worth to know.

Tags: 

Best practices

iOS

IoT

Malware

Rootkit

Threats

Malware families in industry

From time to time, Cybersecurity incidents in industry related to malware are published, and this news is often quite worrying.

Tags: 

APT

Botnet

Critical infrastructures

Industrial Control System

Rootkit

Vulnerability

Protecting yourself from BlackEnergy: detecting anomalies

The attack on the Ukrainian power grid has caused a lot of commotion at the global level. These kinds of attack on control systems are highly targeted and planned, but is there anything we can do to prevent them?

Tags: 

Critical infrastructures

Incident

Industrial Control System

Malware

Rootkit

Bootkits: Attacking the boot process

The boot process is a critical moment in the hardware initialization and operating system loading. This circumstance is a great opportunity for malicious software in order to take control of the machine silently.

Tags: 

iOS

Linux

Malware

Rootkit

Threats

Windows

Linux Capabilities and how to avoid being root

Sudo and setuid permissions are common methods to allow normal users to perform privileged tasks. However, both mechanisms involve elevated privileges and potentially dangerous. Solution? Use of Linux kernel capabilities.

Tags: 

Best practices

Linux

Rootkit

Safe development

Malware in Linux: Rootkits, concealment and detection

In previous papers have discussed the main types of rootkits in Linux and its operation. Some methods are described for this type of malware to hide and what you can do to try to detect them.

Tags: 

Linux

Rootkit

Threats

Malware in Linux: Kernel-mode-rootkits

The kernel-mode rootkits are one of the most fearsome threats because of their level of sophistication and difficulty of detection. Know how this type of rootkits in Linux systems work.

Tags: 

Linux

Malware

Rootkit

Threats

Malware in Linux: Rootkits, introduction and classification

It is common to hear statements like "I can't possibly have a virus, because I use Linux" or "There aren't any viruses on Macs". It is very well known that these ideas are completely false. Here is a good place to look at why.

Tags: 

Best practices

IoT

Linux

Malware

Rootkit

Threats