Cybersecurity researchers have shed more light on a malicious loader that runs as a server and executes received modules in memory, laying bare the structure of an “advanced multi-layered virtual machine” used by the malware to fly under the radar. Wslink, as the malicious loader is called, was first documented by Slovak cybersecurity company ESET […]
An Instance refers to a server that is running our applications. Assume a single server is a single instance. Our cloud workloads are run on virtual machines called Instances. VM Virtual Machine and Instance are frequently used to mean the same. However, the term Instance is favored in cloud computing, although many people still use […]
Tech firm AMD issued a security guide to address two potential attacks against the Secure Encrypted Virtualization (SEV) solution, which keeps virtual machines protected from some attack variants. According to reports, these attacks would allow threat actors to inject malicious code into a SEV-encrypted virtual machine. The attacks, identified as SEVurity and undeSErVed, work not […]
RedHunt aims to be a one stop shop for all your threat emulation and threat hunting needs by integrating attacker’s arsenal as well as defender’s toolkit to actively identify the threats in your environment. Base Machine: Lubuntu-18.04 x64 Tool Setup Attack Emulation: Caldera Atomic Red Team DumpsterFire Metta RTA Nmap CrackMapExec Metasploit Responder Zap Logging […]
Around 40% of Microsoft’s Azure VMs now run Linux distributions, according to a tweet made by Microsoft Developer UK twitter account, ZDNet reports. That information was retweeted by Linuxing community manager Brian Byrne. Did you know that 40% of #VirtualMachines in #Azure are running #Linux? #FutureDecoded #Dev pic.twitter.com/Ypb667Oa1L — Microsoft Developer (@msdevUK) October 31, 2017 Only […]
Bank Trojan called “Ursnif” using clever Trick to Evade sandbox Detection from the Virtual Machine Environment by using mouse movements. New Futures has been embedded with it including anti-sandbox Technique to avoid Detection and its used combination of mouse position and file time stamps. Trojan This clever Technique helps to decode the internal data and steal Data […]
In July 2017, security researchers have spotted a new version of the proficient Ursnif banking trojan that comes with a clever trick to avoid sandbox environments and automated virtual machines by using mouse movements to detect if a real user is interacting with the computer. The general idea is to detect if the mouse cursor’s […]
Hack worked by stitching together three separate exploits. Contestants at this year’s Pwn2Own hacking competition in Vancouver just pulled off an unusually impressive feat: they compromised Microsoft’s heavily fortified Edge browser in a way that escapes a VMware Workstation virtual machine it runs in. The hack fetched a prize of $105,000, the highest awarded so […]
Short Bytes: The security researchers at Palo Alto Networks have detected two versions of a malware similar to Shamoon which attacked 35,000 Saudi Aramco machines in 2011. The latest version, known as Second Shamoon 2, was spotted in November 2016. It is known to cause cyber espionage and damage virtual machines working on the target […]
Short Bytes: At its Ignite conference, Microsoft announced Windows Defender Application Guard for its Edge Browser. This technology will run Edge in a lightweight virtual machine, isolating it from the rest system. As a result, hackers will find it difficult to inject malware via a website and steal sensitive data. Microsoft has revealed its plan […]
Existing crypto software “wholly unequipped” to counter Rowhammer attacks. The world has seen the most unsettling attack yet resulting from the so-called Rowhammer exploit, which flips individual bits in computer memory. It’s a technique that’s so surgical and controlled that it allows one machine to effectively steal the cryptographic keys of another machine hosted in the same […]
Short Bytes: Microsoft’s investments in cloud-based open source technologies is now paying off. Thanks to the high demand for Linux on Azure, more Linux-lovers are choosing Redmond’s cloud platform. As a result, today, about one-third of Azure virtual machines are running Linux. If you think that Microsoft’s love for Linux and open source is selfless, think […]
If many endpoints’ traffic pass through the VM host, why not move security there, sort of catch “bad things” before they even enter the endpoint, asks ESET’s Cameron Camp.