Posts

Learning from NSA’s Master Hacker

“The big question you need to think about is if you have an intrusion somewhere in your network, can you then defend against this lateral movement?” – Rob Joyce, Chief of the TAO

Rob Joyce, head of the NSA’s Tailored Access Operations (TAO) elite division, recently spoke to a large audience at the Usenix Enigma security conference in San Francisco.  Joyce talked about TAO’s process for exploiting victim networks. This was the first public talk made by any member of the NSA’s  team which is considered among the best cyber-warfare intelligence gathering organization in the world.

Read more

Head of NSA’s Elite Hacking Unit: How We Hack

Inside the notoriously secretive National Security Agency is an elite unit made up of some of the best hackers on the planet, charged with breaking into computer networks around the world. Exactly how the Tailored Access Operations (TAO) cell works is a closely-held secret — despite some recent leaks — but in a rare public appearance, TAO’s chief shed some light on how America’s top cyber spies do their thing.

Illegal Mining, the Cyber Version

Illegal mining is a serious problem in the real world. Lately, it has also become popular with cyber attackers who manage to mine digital currency through untargeted attacks. Untargeted attacks are a common problem, not as attention grabbing as APTs, but still responsible for a large percentage of attacks. In this post, using Guardicore’s Data Center Security Suite, we’ll take a look at yet another type of untargeted attacks, as we first reported with Alex.  Our attacker “galaden666” is a Ukrainian gamer who makes money by mining a new digital currency called Litecoins (a variant of Bitcoins) on compromised servers by stealing their CPU cycles.

To read more about our attacker and how we caught him, click here

Caught red handed – Alex

Opportunistic hackers are far from the limelight these days but they still exist and can cause large amounts of damage if they manage to break into your systems. We’ve recently observed our Data Center Security Suite catch such a hacker, an “Alex” from Romania who has kindly enough supplied his own name and private domain for publicity.

Read more

GuardiCore Announces General Availability of its Data Center Security Suite

New Breed of Security Solution Detects Active Breaches inside Data Centers and Clouds Where Legacy Approaches Fall Short

San Francisco, CA – GuardiCore, a leader in internal data center security, today announced availability of its security solution that leverages advanced threat deception technology and a proactive honeypot approach to protect enterprise data centers and clouds from advanced threats that are increasingly breaching legacy security defenses. The GuardiCore Data Center Security Suite is built from the ground up for today’s modern data centers and clouds, providing unparalleled visibility, active breach detection and real-time response for both virtual and physical environments, and scales to support the performance requirements for high traffic data center environments. Read more