ANGLER EXPLOIT KIT EVADING EMET
- wong chee tat :)
Tuesday, June 7, 2016
'Alarming' rise in ransomware tracked
'Alarming' rise in ransomware tracked
By Mark Ward
Technology correspondent, BBC News
7 June 2016
Cyber-thieves are adopting ransomware in "alarming" numbers, say security researchers.
There are now more than 120 separate families of ransomware, said experts studying the malicious software.
Other researchers have seen a 3,500% increase in the criminal use of net infrastructure that helps run ransomware campaigns.
The rise is driven by the money thieves make with ransomware and the increase in kits that help them snare victims.
Ransomware is malicious software that scrambles the data on a victim's PC and then asks for payment before restoring the data to its original state. The costs of unlocking data vary, with individuals typically paying a few hundred pounds and businesses a few thousand.
Rapid growth
"Ransomware and crypto malware are rising at an alarming rate and show no signs of stopping," said Raj Samani, European technology head for Intel Security.
Ransomware samples seen by his company had risen by more than a quarter in the first three months of 2016, he added.
Mr Samani blamed the rise on the appearance of freely available source code for ransomware and the debut of online services that let amateurs cash in.
Ransomware was easy to use, low risk and offered a high reward, said Bart Parys, a security researcher who helps to maintain a list of the growing numbers of types of this kind of malware.
"The return on investment is very high," he said.
Many cyber-thieves using ransomware demand to be paid in bitcoins
Mr Parys and his colleagues have now logged 124 separate variants of ransomware. Some virulent strains, such as Locky and Cryptolocker, were controlled by individual gangs, he said, but others were being used by people buying the service from an underground market.
"It's safe to say that certain groups are behind several ransomware programs, but not all," he said. "Especially now with Eda and HiddenTear copy and paste ransomware, there are many new, and often unexperienced, cybercriminals."
A separate indicator of the growth of ransomware came from the amount of net infrastructure that gangs behind the malware had been seen using.
The numbers of web domains used to host the information and payment systems had grown 35-fold, said Infoblox in its annual report which monitors these chunks of the net's infrastructure.
"They use it and customise it for each attack, " said Rod Rasmussen, vice-president of security at Infoblox.
"They will have their own command and control infrastructure and they might use it to generate domains for a campaign," he told the BBC. "Then they'll have some kind of payment area that victims can go to."
"The different parts are tied to particular parts of the chain," he said. "Infection, exploitation and ransom."
Hidden files
The spread of ransomware was also being aided by tricks cyber-thieves used to avoid being detected by security software, said Tomer Weingarten, founder of security company SentinelOne.
"Traditional anti-virus software is not effective in dealing with these types of attacks," he said.
The gangs behind the most prevalent ransomware campaigns had got very good at hiding their malicious code, said Mr Weingarten.
"Where we see the innovation is in the infection vector," he said.
SentinelOne had seen gangs using both well-known techniques and novel technical tricks to catch out victims.
A lot of ransomware reached victims via spear-phishing campaigns or booby-trapped adverts, he said, but other gangs used specialised "crypters" and "packers" that made files look benign.
Others relied on inserting malware into working memory so it never reached the parts of a computer on which most security software keeps an eye.
"It's been pretty insane with ransomware recently," he said.
- wong chee tat :)
By Mark Ward
Technology correspondent, BBC News
7 June 2016
Cyber-thieves are adopting ransomware in "alarming" numbers, say security researchers.
There are now more than 120 separate families of ransomware, said experts studying the malicious software.
Other researchers have seen a 3,500% increase in the criminal use of net infrastructure that helps run ransomware campaigns.
The rise is driven by the money thieves make with ransomware and the increase in kits that help them snare victims.
Ransomware is malicious software that scrambles the data on a victim's PC and then asks for payment before restoring the data to its original state. The costs of unlocking data vary, with individuals typically paying a few hundred pounds and businesses a few thousand.
Rapid growth
"Ransomware and crypto malware are rising at an alarming rate and show no signs of stopping," said Raj Samani, European technology head for Intel Security.
Ransomware samples seen by his company had risen by more than a quarter in the first three months of 2016, he added.
Mr Samani blamed the rise on the appearance of freely available source code for ransomware and the debut of online services that let amateurs cash in.
Ransomware was easy to use, low risk and offered a high reward, said Bart Parys, a security researcher who helps to maintain a list of the growing numbers of types of this kind of malware.
"The return on investment is very high," he said.
Many cyber-thieves using ransomware demand to be paid in bitcoins
Mr Parys and his colleagues have now logged 124 separate variants of ransomware. Some virulent strains, such as Locky and Cryptolocker, were controlled by individual gangs, he said, but others were being used by people buying the service from an underground market.
"It's safe to say that certain groups are behind several ransomware programs, but not all," he said. "Especially now with Eda and HiddenTear copy and paste ransomware, there are many new, and often unexperienced, cybercriminals."
A separate indicator of the growth of ransomware came from the amount of net infrastructure that gangs behind the malware had been seen using.
The numbers of web domains used to host the information and payment systems had grown 35-fold, said Infoblox in its annual report which monitors these chunks of the net's infrastructure.
"They use it and customise it for each attack, " said Rod Rasmussen, vice-president of security at Infoblox.
"They will have their own command and control infrastructure and they might use it to generate domains for a campaign," he told the BBC. "Then they'll have some kind of payment area that victims can go to."
"The different parts are tied to particular parts of the chain," he said. "Infection, exploitation and ransom."
Hidden files
The spread of ransomware was also being aided by tricks cyber-thieves used to avoid being detected by security software, said Tomer Weingarten, founder of security company SentinelOne.
"Traditional anti-virus software is not effective in dealing with these types of attacks," he said.
The gangs behind the most prevalent ransomware campaigns had got very good at hiding their malicious code, said Mr Weingarten.
"Where we see the innovation is in the infection vector," he said.
SentinelOne had seen gangs using both well-known techniques and novel technical tricks to catch out victims.
A lot of ransomware reached victims via spear-phishing campaigns or booby-trapped adverts, he said, but other gangs used specialised "crypters" and "packers" that made files look benign.
Others relied on inserting malware into working memory so it never reached the parts of a computer on which most security software keeps an eye.
"It's been pretty insane with ransomware recently," he said.
- wong chee tat :)
Recap: Agent Handlers in an enterprise network
In this figure, all Agent Handlers:
• Are connected to the McAfee ePO SQL database using low-latency high-speed links
• Are located close to the clients they support
• Have failover configured between Agent Handlers in other cities
• Are managed from the McAfee ePO server
The Agent Handlers in these cities have specific configurations.
• Dallas — The Agent Handler is configured with failover support to the Agent Handler in Los
Angeles.
• Los Angeles — The two Agent Handlers have load balancing configured.
• Washington DC — The Agent Handler uses specific ports to connect to the McAfee ePO server
from behind a firewall.
Notes:
Agent Handlers distribute agent-server comms by directing managed systems (client machines) to report to agent handler (AH) instead of epo server
AH should NOT used as:
- distributed repo. repo distribute large files (Think of newer DAT files, product updates, etc). AH use logic to communicate events back to db. These events tell mcafee agent to download new products from distributed repo. AH cache files from distributed repo but should NOT replaced distributed repo.
- slow or irregular links.
AH Functions:
1) use work queue as primary communication mode
2) check server every 10s & perform requested action eg: agent wakeup calls, product deployment, data channel messages
3) communicate with each other , for load balancing and failover
Roaming with AH:
- users roam between different sites connect to nearest AH. possible if all locations configured in mcafee agent failover list.
Repo caching
- AH cache content and product updates if mcafee agent can't access content from master repo on epo server
Q: How much bandwidth is used for communication between the database and the Agent Handler?
A: Bandwidth between the Agent Handler and the database varies based on the number of agents
connecting to that Agent Handler. However, each Agent Handler places a fixed load on the database server for:
• Heartbeat (updated every minute)
• Work queue (checked every 10 seconds)
• Database connections held open to the database (2 connections per CPU for EventParser plus 4 connections per CPU for Apache)
Q: How many agents can one Agent Handler support?
A: Agent Handlers for scalability are not required until a deployment reaches 100,000 nodes. Agent Handlers for topology or failover might be required at any stage. A good rule is one Agent Handler per 50, 000 nodes.
- Ref: ePolicy Orchestrator 5.1.0 Best Practices Guide - Rev B
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
Homage to the 36 trillion, 119 thousand, 500 Amitabha Buddhas
- wong chee tat :)
六字真言頌 怙主三寶
六字真言頌 怙主三寶
虔心皈依怙主三寶,真心憐憫慈母眾生,嗡瑪尼巴美吽……
佛為導師法為正道,僧為善侶同為救主,嗡瑪尼巴美吽……
登山階梯過河船舟,驅愚慧燈險隘坦途,嗡瑪尼巴美吽……
口誦真言心中祈禱,地獄烈火從此熄滅,嗡瑪尼巴美吽……
唱頌六字胸中發願,冷獄冰雪消融變暖,嗡瑪尼巴美吽……
誦持六字威力無比,十八地獄變成樂土,嗡瑪尼巴美吽……
世間無實因緣難料,生死輪回行善為要,嗡瑪尼巴美吽……
萬物無常善惡交替,向善精進矢志不渝,嗡瑪尼巴美吽……
暇滿人身難得至寶,虛度此生實為可惜,嗡瑪尼巴美吽……
貪心無盡欲望皆空,惡趣業因棄之從善,嗡瑪尼巴美吽……
萬惡煩惱罪孽根源,時刻提防凡夫癡念,嗡瑪尼巴美吽……
強壯身軀入土荒野,驅走死神上師引路,嗡瑪尼巴美吽……
瑪尼頌詞怙主三寶,諾言活佛順口編唱,嗡瑪尼巴美吽……
虔誠頂禮觀音菩薩,消除罪孽速證佛果,嗡瑪尼巴美吽……
如來佛子慈悲引路,眾生往生極樂佛土,嗡瑪尼巴美吽……
六字斷除六道苦難頌
嗡字放光照耀天界,死苦難忍觀音救度,嗡瑪尼巴美吽……
瑪字光照阿修羅界,爭斗死傷觀音救度,嗡瑪尼巴美吽……
尼字放光照亮人間,生老病死觀音救度,嗡瑪尼巴美吽……
巴字放光照亮畜生,蠢啞痛苦觀音救度,嗡瑪尼巴美吽……
美字放光照亮惡鬼,饑餓難熬觀音救度,嗡瑪尼巴美吽……
吽字放光照亮地獄,冷熱煎熬觀音救度,嗡瑪尼巴美吽……
- wong chee tat :)
虔心皈依怙主三寶,真心憐憫慈母眾生,嗡瑪尼巴美吽……
佛為導師法為正道,僧為善侶同為救主,嗡瑪尼巴美吽……
登山階梯過河船舟,驅愚慧燈險隘坦途,嗡瑪尼巴美吽……
口誦真言心中祈禱,地獄烈火從此熄滅,嗡瑪尼巴美吽……
唱頌六字胸中發願,冷獄冰雪消融變暖,嗡瑪尼巴美吽……
誦持六字威力無比,十八地獄變成樂土,嗡瑪尼巴美吽……
世間無實因緣難料,生死輪回行善為要,嗡瑪尼巴美吽……
萬物無常善惡交替,向善精進矢志不渝,嗡瑪尼巴美吽……
暇滿人身難得至寶,虛度此生實為可惜,嗡瑪尼巴美吽……
貪心無盡欲望皆空,惡趣業因棄之從善,嗡瑪尼巴美吽……
萬惡煩惱罪孽根源,時刻提防凡夫癡念,嗡瑪尼巴美吽……
強壯身軀入土荒野,驅走死神上師引路,嗡瑪尼巴美吽……
瑪尼頌詞怙主三寶,諾言活佛順口編唱,嗡瑪尼巴美吽……
虔誠頂禮觀音菩薩,消除罪孽速證佛果,嗡瑪尼巴美吽……
如來佛子慈悲引路,眾生往生極樂佛土,嗡瑪尼巴美吽……
六字斷除六道苦難頌
嗡字放光照耀天界,死苦難忍觀音救度,嗡瑪尼巴美吽……
瑪字光照阿修羅界,爭斗死傷觀音救度,嗡瑪尼巴美吽……
尼字放光照亮人間,生老病死觀音救度,嗡瑪尼巴美吽……
巴字放光照亮畜生,蠢啞痛苦觀音救度,嗡瑪尼巴美吽……
美字放光照亮惡鬼,饑餓難熬觀音救度,嗡瑪尼巴美吽……
吽字放光照亮地獄,冷熱煎熬觀音救度,嗡瑪尼巴美吽……
- wong chee tat :)
Blog Updates:
Blog Updates:
Minor updates:
- Update labels on some old posts
Will continue to make minor improvements for this blog!
- wong chee tat :)
Minor updates:
- Update labels on some old posts
Will continue to make minor improvements for this blog!
- wong chee tat :)
June 2016 Singapore Savings Bonds - GX16070A
Issuance details - GX16070A
| Bond ID |
GX16070A
|
|---|---|
| Amount available |
$300 million
|
| Issue date |
1 Jul 2016
|
| Maturity date(1) |
1 Jul 2026
|
| Interest payment dates(1) |
The 1st interest payment will be made on 1 Jan 2017, and subsequently
every six months on 1 Jul and 1 Jan every year. |
| Investment amounts |
You can invest a minimum of $500, and in multiples of $500 up to
$50,000 for this issue. The total amount of Savings Bonds held across all issues cannot be more than $100,000. |
| Application period |
Opens: 6.00pm, 1 Jun 2016
Closes: 9.00pm, 27 Jun 2016 Results: After 3.00pm, 28 Jun 2016 Keep track of the important dates with our SSB calendar. |
| Apply through |
DBS/POSB, OCBC and UOB ATMs and DBS/POSBInternet Banking,
from 7.00am - 9.00pm, Mon - Sat, excluding Public Holidays. On 1 Jun 2016, these channels will be open from 6.00pm to 9.00pm. CPF and SRS funds are not eligible. |
This bond will be reflected as "SBJUL16 GX16070A" in your CDP statement and "CDP-SBJUL16" in your bank statement.
Interest rates
* At the end of each year, on a compounded basis
Calculate the interest you will earn based on your desired investment amount using the Interest Calculator.
(1)If this day is not a business day, payment will be made on the next business day.
- wong chee tat :)
McAfee DAT version = 8188 (jun 06th 2016)
McAfee DAT version = 8188 (jun 06th 2016)
Link: here ( Select Yes. And it keeps getting updated daily. Region=US)
- wong chee tat :)
Link: here ( Select Yes. And it keeps getting updated daily. Region=US)
- wong chee tat :)
Subscribe to:
Posts (Atom)