<img height="1" width="1" src="https://www.facebook.com/tr?id=3323484487762706&amp;ev=PageView&amp;noscript=1">

Pulsar Cyber Trends Dec 2021

Dec 24, 2021
Click me

Recent Content

EXECUTIVE SUMMARY

The month of December has been eventful in terms of developments in the cyber security space. The big news relates to the Log4J vulnerability and potential risks and opportunities it presents. Another major sea change is the resurgence of botnets including the Marai botnet. Finally, we are seeing signs that the US Cyber Command and other Western cyber entities are starting to get off the sidelines and actually fight back against the open cyber assaults against Western commercial interests.

 

LOG4J

The Log4J vulnerabilities will be the gift that keeps on giving for the next year or more due to the fact that the hack is so versatile and the targets are often clueless to the fact that they even have the code running in their systems. Log4J is an open source, logging module that is included in everything from smart devices to enterprise software packages. It can be used to log anything and if the thing it logs can be manipulated by a hacker, then the system, if vulnerable, can typically, be taken over by the hacker. We have already added this powerful tool to our arsenal and are looking at continuing to improve our ways to detect it for both exploitation and defensive purposes.

 

BOTNETS

Botnets seem to be entering a new phase of attack as a service as previously decimated botnets experience recent resurgence. For example, Emotet was famously taken down in coordinated raids to sever its command and control (C2) infrastructure, but in December it has made an impressive comeback. This comeback seems to be enabled by the TrickBot malware indicating cooperation among the major botnet players. Botnet resurgence is a precursor to ever larger waves of ransomware infection.

 

CYBER COMMAND, ET. AL.

U.S. Cyber Command and other Western agencies appear to be steadily increasing their willingness to hack back and interdict in ways that were rare in the past. Cyber Command played a role in recent botnet take downs including those against TrickBot and Emotet. In December, General Paul M. Nakasone, the head of Cyber Command, said, “a new cross-functional effort has been gathering intelligence to combat criminal groups targeting U.S. infrastructure”. Word from our sources is that the attacks against the US pipeline, food manufacturers and health organizations has finally risen to the level or a red line and may have started a new phase in the status of cyber conflict.

 

Download Now
Jill Stagner

Jill Stagner

Jill is the Director of Marketing and Program Development. She manages the marketing, communication and company branding efforts for Pulsar. In addition, she helps with the public facing materials for all of Pulsar’s products and services.

LinkedIn
View all posts

Pulsar Security Wireless Network Protection Service

Organizations choose SONAR to properly monitor Wireless Network Threats

LEARN MORE ABOUT SONAR
sonar
SONAR

100% of the team holds advanced cybersecurity certifications.

  • Certified Ethical Hacker
    Certified Ethical Hacker
    Certified Information Systems Security Professional
    Certified Information Systems Security Professional
    CompTIA Security+ Certified
    CompTIA Security+ Certified
    OSWP Offensive Security
    OSWP Offensive Security
    GIAC Security Expert
    GIAC Security Expert
    Offensive Security Certified Expert
    Offensive Security Certified Expert
    Offensive Security Certified Professional
    Offensive Security Certified Professional
    GIAC Exploit Researcher and Advanced Penetration Tester
    GIAC Exploit Researcher and Advanced Penetration Tester
    GIAC Web Application Penetration Tester
    GIAC Web Application Penetration Tester
    GIAC Certified Penetration Tester
    GIAC Certified Penetration Tester
  • GIAC Mobile Device Security Analyst
    GIAC Mobile Device Security Analyst
    GIAC Certified Incident Handler
    GIAC Certified Incident Handler
    GIAC Assessing and Auditing Wireless Networks
    GIAC Assessing and Auditing Wireless Networks
    GIAC Python Coder
    GIAC Python Coder
    GIAC Reverse Engineering Malware
    GIAC Reverse Engineering Malware
    GIAC Network Forensic Analyst
    GIAC Network Forensic Analyst
    GIAC Certified Forensic Analyst
    GIAC Certified Forensic Analyst
    GIAC Certified Forensic Examiner
    GIAC Certified Forensic Examiner
    GIAC Certified Intrusion Analyst
    GIAC Certified Intrusion Analyst
    GIAC Certified Detection Analyst
    GIAC Certified Detection Analyst
  • GIAC Continuous Monitoring Certification
    GIAC Continuous Monitoring Certification
    GIAC Certified Unix Security and Administration
    GIAC Certified Unix Security and Administration
    GIAC Certified Windows Security Administrator
    GIAC Certified Windows Security Administrator
    GIAC Critical Controls Certification
    GIAC Critical Controls Certification
    GIAC Security Essentials Certification
    GIAC Security Essentials Certification
    GIAC Defending Advanced Threats
    GIAC Defending Advanced Threats
    GIAC Law of Data Security & Investigation
    GIAC Law of Data Security & Investigation
    CompTIA Network+ Certified
    CompTIA Network+ Certified
    Scrum Alliance CSP-SM Certified
    Scrum Alliance CSP-SM Certified
    Microsoft MTA Security Fundamentals
    Microsoft MTA Security Fundamentals
  • Microsoft MTA Database Fundamentals
    Microsoft MTA Database Fundamentals
    CISCO Certified CCNA
    CISCO Certified CCNA
    AWS Certified Solutions Architect Associate
    AWS Certified Solutions Architect Associate
offsec
  • Home
  • Services
  • Partners
  • Contact
  • Contact

Copyright © 2023 Pulsar Security

|

Privacy Policy

|

Terms & Conditions

Website Design & Development by CommonPlaces Interactive