- rwth-security - lists.rwth-aachen.de

Gorilla Android Malware: Evolving Threat with Espionage Capabilities
by Bernd Kohler 19 Apr '25

19 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Gorilla Android Malware: Evolving Threat with Espionage Capabilities" VG Bernd [0] https://securityonline.info/gorilla-android-malware-evolving-threat-with-es… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Prepping for post-quantum: a beginner’s guide to lattice cryptography
by Bernd Kohler 16 Apr '25

16 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Prepping for post-quantum: a beginner’s guide to lattice cryptography" VG Bernd [0] https://blog.cloudflare.com/lattice-crypto-primer/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Linux Detection Engineering
by Bernd Kohler 16 Apr '25

16 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier FYI "Linux Detection Engineering " - A primer on persistence mechanisms - [0] - A Sequel on Persistence Mechanisms - [1] - A Continuation on Persistence Mechanisms - [2] - Approaching the Summit on Persistence Mechanisms - [3] - The Grand Finale on Linux Persistence - [4] VG Bernd [0] https://www.elastic.co/security-labs/primer-on-persistence-mechanisms [1] https://www.elastic.co/security-labs/sequel-on-persistence-mechanisms [2] https://www.elastic.co/security-labs/continuation-on-persistence-mechanisms [3] https://www.elastic.co/security-labs/approaching-the-summit-on-persistence [4] https://www.elastic.co/security-labs/the-grand-finale-on-linux-persistence -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

How to enable post-quantum key exchange and AEGIS in Nginx
by Bernd Kohler 15 Apr '25

15 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "How to enable post-quantum key exchange and AEGIS in Nginx" VG Bernd [0] https://00f.net/2025/03/27/post-quantum-nginx/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social-Media-Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.instagram.com/itcenterrwthaachen/ https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Android to Auto-Reboot After 72 Hours of Inactivity
by Bernd Kohler 15 Apr '25

15 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Android to Auto-Reboot After 72 Hours of Inactivity" - "... applies to Android smartphones and tablets ..." - "... if the system is rebooted, it returns to a fully encrypted state. At this point, only the PIN can decrypt the data—biometric methods are rendered inoperative ..." - "... user fails to unlock the device using either a PIN or biometric authentication within 72 hours, the system deems the device inactive and will automatically reboot, reverting it to the BFU state. ..." VG Bernd [0] https://securityonline.info/android-to-auto-reboot-after-72-hours-of-inacti… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social-Media-Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.instagram.com/itcenterrwthaachen/ https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/c/ITCenterRWTHAachen

1 0

EU gives staff 'burner phones, laptops' for US visits
by Bernd Kohler 15 Apr '25

15 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "EU gives staff 'burner phones, laptops' for US visits" --> "... is common practice for anyone visiting China, Russia, and other states where aggressive electronic surveillance is expected. Apparently the European Union has added the United States to that list. ..." VG Bernd [0] https://www.theregister.com/2025/04/15/ec_burner_devices/ -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social-Media-Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.instagram.com/itcenterrwthaachen/ https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/c/ITCenterRWTHAachen

1 0

Phishing kits now vet victims in real-time before stealing credentials
by Bernd Kohler 14 Apr '25

14 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Phishing kits now vet victims in real-time before stealing credentials" --> "Precision-Validated Phishing" --> "... only shows fake login forms when a user enters an email address that the threat actors specifically targeted ..." VG Bernd [0] https://www.bleepingcomputer.com/news/security/phishing-kits-now-vet-victim… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 1

Identity Providers Passthrough Phishing
by Bernd Kohler 14 Apr '25

14 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Identity Providers Passthrough Phishing" VG Bernd [0] https://github.com/mrsheepsheep/idp-passthrough-phishing -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

Device Code Login Phishing Presentation Attack, Detect, Mitigate
by Bernd Kohler 14 Apr '25

14 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "Device Code Login Phishing Presentation Attack, Detect, Mitigate" VG Bernd [0] https://www.youtube.com/watch?v=Y8SSYLEq15Q -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 Fax: +49 241 80-22666 kohler(a)itc.rwth-aachen.de www.itc.rwth-aachen.de Social Media Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ

1 0

CVE-2024-56406: Heap Overflow Vulnerability in Perl Threatens Denial of Service and Potential Code Execution
by Bernd Kohler 14 Apr '25

14 Apr '25

Hallo zusammen, sofern nicht selber schon gesehen/-lesen hier [0] FYI "CVE-2024-56406: Heap Overflow Vulnerability in Perl Threatens Denial of Service and Potential Code Execution" VG Bernd [0] https://securityonline.info/cve-2024-56406-heap-overflow-vulnerability-in-p… -- Bernd Kohler IT Center Abteilung: Netze RWTH Aachen University Wendlingweg 10 52074 Aachen Tel: +49 241 80-29793 E-Mail: kohler(a)itc.rwth-aachen.de Web: https://www.itc.rwth-aachen.de Social-Media-Kanäle des IT Centers: https://blog.rwth-aachen.de/itc/ https://www.facebook.com/itcenterrwth https://www.instagram.com/itcenterrwthaachen/ https://www.linkedin.com/company/itcenterrwth https://www.youtube.com/c/ITCenterRWTHAachen

1 0