0P3N Blog

Cybrary’s Open Blog is a user contributed cybersecurity knowledge base that brings together content highlighting the latest tools, exploits, technologies and insights in the industry.

Anatomy of a Ransomware Attack - Part 3
By: AjayRandhawa
March 18, 2017

COMMON TYPES OF RANSOMWARE 3.1 CryptoLocker Ransomware has been around in some form for over a decade, but came to prominence in 2013, with the rise of the original CryptoLocker malware. While the original was shut down in 2014, the approach has been widely copied. So much so, in fact, that the word CryptoLocker has become ...

5 Best Entry-Level IT Certifications
By: jrinehard
March 17, 2017

In today’s fast-paced and highly connected tech industry, seeking out the most relevant and useful career insight into the industry can seem like an intimidating task, especially when innovation in the tech field can change the name of the game overnight. Most newcomers coming into the tech field have little to no experience but are desperately seeking the right ...

Need a FUD: What about Shellter?
By: bytezealot
March 17, 2017

Shellter is a dynamic shellcode injection tool, and the first truly dynamic PE (portable executable) infector ever created. It can be used in order to inject shellcode into native 32-bit Windows applications. It takes advantage of the original structure of the PE file and doesn’t apply any modification such as changing memory access permissions in sections (unless the user ...

Anatomy of a Ransomware Attack - Part 2
By: AjayRandhawa
March 17, 2017

ANATOMY OF RANSOMWARE How it works : A ransomware attack goes through five stages from the time it installs on your computer to the appearance of the ransom warning on your screen 2.1 Five Stages of Crypto Ransomware 2.1.1 INSTALLATION After a victim’s computer is infected, the crypto-ransomware installs itself, and sets keys in the ...

Cybercrime and Punishment: Who’s Actually Paying the Price?
By: rcubed
March 16, 2017

It seems that a week doesn’t go by where there isn’t news of a major data breach or intelligence dump. Yesterday gave us something slightly different, but still a variation on the same theme. On Wednesday March 15, 2017 the Justice Department indicted four defendants – all with ties to Russia – for an array of computer and hacking ...

Aireplay Vs Mdk3: Wireless Deauthentication
By: Invoron 'norovni'
March 16, 2017

I am pretty sure anyone who has ever tried to hack wireless network should have come across aireplay-ng (one among aircrack-ng suite), very few may have heard about mdk3. Similar to aireplay-ng, mdk3 can be used to Jam a wireless network exploiting IEEE 802.11 protocol weakness. In this article lets talk on how to use them and jump to some ...

Anatomy of a Ransomware Attack CryptoLocker - Part 1: CryptoWall How to Stay Safe
By: AjayRandhawa
March 16, 2017

ABSTRACT Ransomware is malware that prevents you from using your files or your computer, and then extorts money from you in exchange for a promise to unlock them. This type of malware is responsible for tens of millions of dollars in extortion annually. Worse still, developing new variants is trivial, ...

How to Showcase your Skills in an Online Portfolio
By: Olivia
March 15, 2017

In the blog, I’ve talked a lot about resume tips and emphasizing skills to help you get hired. I realize in doing so that some skills are more visual and creative than others, with everyone from coders to technical writers needing an ideal place to showcase their work.Resumes are necessary of course, and just the first part of the ...

Let's go Phishing!
By: bigmatt
March 15, 2017

Everyday millions of spam emails are getting by spam and firewall filters, and into the mailboxes of many unsuspecting users.  From claims of a wealthy Nigerian Prince, to sweepstakes winners, "magic pills" and many others litter the inbox, and all it takes is one end user to click on the email and either follow the instructions in said email, or ...

Scripting Vulnerability Crisis: Crawling Out of the Rabbit Hole
By: ericcacordier
March 15, 2017

 What you do not know will not hurt you – right? Wrong! Scripting vulnerabilities will creep up on you and it can cause a temporary project shutdown, an entire rewrite of a project or worse project cancellation. Long gone are the days of development just to see if it works. Waiting for a security team to catch your ...