Today’s moral is short and sweet: don’t run outdated software, because someone will target your servers from across the world and attempt to run malware on them. The stories on GranCrab and Rail Europe are cases in point.
I want to take a moment and thank one of our sponsors by pointing out some recent content you might be interested in. Endgame, which sells endpoint protection tools, has created EMBER, a dataset of more than a million portable executable hashes that were scanned by VirusTotal during 2017. It includes metadata, but not the PE files themselves, so researchers can test their machine learning techniques against a stable benchmark. They have a lot more useful stuff on their blog, check them out.
An almost-weekly 30-minute podcast that is now at more than 100 episodes is worth listening to. Run by Daniel Miessler, you need to subscribe to his email list to get the show notes. The latest episode from early April quickly runs through the news about Facebook’s lack of privacy, cloud misconfigurations, the dangers of cut and pasting invisible text, and the Panera breach.