Cyber Security In Civil Aviation

 Case Studies, Fundamentals, Incident Response, Research  No Responses »
Apr 022013
 

  From the year 2012-2025 ICAO(International civil aviation organization) have decided to transform the present aviation environment by introducing new technology which will revolutionize present aviation industry. According to ICAO, the technology responsible to do so is named NextGen (Next Generation Air Transportation System), which is developed by the United States and will be mandatory throughout the US by 2025. Said that they also confirmed that the platform which is used for this is too Read More…

Russian FruitNinja Backdoor Analysis

 Case Studies, Compromise Detection, Malware Analysis, Mobile, Research, Tools  3 Responses »
Oct 092012
 

For my research, I chose to analyze a popular Android application for malwares. But why select a Russian version? Well, it made a compelling case study from analysis perspective that I later found out during my research. The application I selected was popular game called FruitNinja downloaded from Russian Fake Android Store (Figure 1). Figure 1 : Russian Fake Android App Store Steps for Analysis: Application PacKage (APK) is the file format used to distribute Read More…

Does Your DLP Implementation Keep You Awake At Night?

 Case Studies  1 Response »
Sep 052012
 

With the boundary-less work culture of the 21st century, organizations have started to wake up to the fact that they cannot withhold information within the confines of their heavily guarded data-centers. Clients, employees and vendors need the information on the servers, on their laptops, and on their handheld devices in order to continue smooth functioning of their businesses. Such information usually falls into the categories below: Classification Legitimate Users Examples Public  Visible to everyone in Read More…

Risk Analysis of Android Based Appliance

 Case Studies, Forensics, Mobile, Secure Coding  1 Response »
Nov 242011
 

Overview I had to do the risk analysis of the Android 2.2 – Froyo based appliance and check for any security flaws exist in it before the XYZ Ltd. (just the example) company could launch that product in the market. Background How I get connected to appliance At start of my task I first assign an IP address (here 192.168.1.88) to the appliance, and ensure I have necessary connectivity to the appliance. The next obvious Read More…

Social Engineering & "Influence", by Dr. Cialdini

 Case Studies, Hacks, Social Engineering  5 Responses »
Jun 032010
 

Over the past few years, we have completed a number of social engineering tests as part of advanced penetration testing at various organizations. Coincidentally, I recently read an excellent book called “Influence – the Psychology of Persuasion” by Dr. Robert Cialdini.and realized that it has some excellent lessons for anyone wanting to guard themselves from social engineering attacks. Dr. Cialdini’s book is an excellent coverage of what he calls “compliance professionals” – people engaged in Read More…

 Older Entries