Derrich Phillips, Certified CMMC Assessor’s Post

A cluster of five vulnerabilities (CVEs 2023-24400 through to 24404, dubbed TETRA:BURST) has been discovered in the encryption mechanisms for the TETRA radio comms standard. TETRA radios are used worldwide; most of us military techie-types are familiar with them. TETRA also has industrial control system/SCADA applications though, which is rather concerning for public safety. The encryption algorithms have been kept secret by the ETSI standards organisation, however, researchers from Midnight Blue got hold of them and will be presenting their findings in full (and publishing the algorithms!) starting at next months Black Hat conference in Las Vegas. You can find more information on their research into these vulnerabilities at the Midnight Blue website: https://lnkd.in/evM-eBPt Of particular interest is CVE-2023-24402, as it transpires that the TEA1 encryption algorithm had a backdoor deliberately implanted which reduces the advertised 80-bit key to just 32-bits. This was apparently so that ETSI could sell the product outside of Europe. The TEA1 algorithm is primarily used in commercial applications, but is also used for critical national infrastructure, plus several non-European police and military organisations use it for, ahem, "secure" comms. The vulnerabilities have apparently been resolved by the TEA5, 6 and 7 algorithms, but as ETSI maintain their "non-disclosure" posture, no independent verification of the security of these algorithms has been conducted. Following on from her article in Wired ( https://lnkd.in/eZcxYEMz ), the ever-meticulous Kim Zetter has published her full interview with ETSI representative Brian Murgatroyd on Substack: https://lnkd.in/egiB4F9T Brian inexplicably defends ETSIs continued stance on hiding their algorithms behind non-disclosure agreements, by declaring that "obscurity is a form of security". Frankly, that is an APPALLING attitude to have in 2023, and will likely discourage trust in TETRA as a secure comms product. #encryption #cve #vulnerabilitymanagement #tetra #blackhat2023

In today’s high-tech world, the security of sensitive information is of paramount importance. One often-overlooked aspect of information security is the protection against compromising emanations or TEMPEST. TEMPEST refers to the unintentional leakage of electromagnetic signals from electronic devices that can be intercepted and decoded by malicious actors. TEMPEST EMI filters play a crucial role in mitigating this threat and safeguarding sensitive data in both government and private organizations. For more information, check out Premier Filters, Inc. https://lnkd.in/gJX9dTDY

[EN] Last week I was on a literally magic conference: CyberTek Tech Festival 🪄 One of the lectures I've taken part in was about analysing and breaking TETRA for OT by Jos Wetzels 📡 TETRA is an abbreviation for Terrestrial Trunked Radio and it is an open European standard for digital radiotelephone communications, established in 1995. It provides end-to-end encryption for the air transmission. Few details were publicly known as ciphers implemented there are proprietary ones. Last year a great research was published by a team from Midnight Blue company. The team reverse-engineered implemented algorithms and discovered critical and high severity vulnerabilities in the TETRA authentication and encryption algorithms. The flaws allow to intercept, manipulate and inject network traffic, both by passive and active adversaries in matter of minutes. The TETRA standard was established in 1995, so the official response was that the provided encryption was sufficient in the late 90s. The Midnight Blue team picked up the gauntlet. They carried out a similar attack on a machine produced in 1998 with Windows95 on board. The attack of course took more than a few minutes, i.e. 13 hours, but this is still far too less for providing any real security. Two main lessons here: proprietary ciphers should be avoided and security-by-obscurity is not a real security. If you use TETRA, please check firmware patches and compensating controls to apply in your networks. More on this awesome research can be found here: https://lnkd.in/gJPU64Wc 🤩 Take care and be safe! #Superbohakerka #CyberTek #Cryptanalysis

"Defense, medical, and critical infrastructure owners and operators need to enhance security for sectors including water, the electric grid and oil and gas pipelines. DOD has struggled to hire and retain cybersecurity personnel in a highly competitive market." Collaboration of industry, academia, and government has solved challenges through private public partnerships when dealing with historical infrastructure challenges from design to security. Today, the National Society of Professional Engineers and NICET with industry experts and academia take on the challenge once more with Systems Software Integration (https://lnkd.in/g5qdaZ-5) working with professional societies and experts Anthony Dezonno, Jeff Daniels, PhD, Frank B., Ben Railsback, M.S., P.E., Ross Rollins, Philip Giles, Dr. Waldemar Pabon, Waldemar Karwowski, ADEMOLA ADEJOKUN, P.E. ESEP, PMP, Dan Wittliff, Rebecca Bowman, Julie Chatman, MBA, CISM, Matt Aizcorbe, Lisa Ruscigno, M.Ed., Cate Richards, Mohamad Kassab, Ph.D., Rodney J. Petersen, Carol Woody, Laurie Williams, etc. to serve the public's best interest. https://lnkd.in/gMw9kJP5

When approaching utility management, a deep understanding of Industrial Control System (ICS) protocols becomes indispensable. This article is designed for those unfamiliar with the technical nuances of industrial networks, aiming to demystify ICS protocols and their significance within a security framework.   Incorporating tools like Leargas XDR, which is tailored for complex environments such as ICS, enhances our ability to monitor and protect these critical systems effectively. https://lnkd.in/eVvQjUMr

🚀 New Article Alert: XSS Payloads Part 1 🚀 Are you passionate about web security and eager to deepen your understanding of Cross-Site Scripting (XSS) attacks? Our latest article, "XSS Payloads Part 1," is now live! 🔍 What's Inside: An introduction to XSS and its significance in web application security. A comprehensive guide to different types of XSS payloads. Practical examples and use cases to illustrate how XSS payloads work. Tips and tricks for crafting effective XSS payloads for penetration testing. Whether you're a seasoned cybersecurity professional or just starting your journey in ethical hacking, this article provides valuable insights and actionable knowledge to enhance your skills. 💡 Why Read It: Stay ahead in the cybersecurity field with up-to-date techniques. Learn how to identify and exploit XSS vulnerabilities. Improve your web application testing methodologies. Don't forget to share your thoughts and feedback in the comments. Let's make the web a safer place together! 🛡️💻 #CyberSecurity #WebSecurity #XSS #CrossSiteScripting #PenetrationTesting #EthicalHacking #InfoSec #WebAppSecurity #BugBounty #SecurityTesting#CyberSecurity #InfoSec #WebSecurity #PenetrationTesting #EthicalHacking #XSS #CrossSiteScripting #XSSCheatSheet #WebAppSecurity #BugBounty #VulnerabilityTesting #CyberThreats #Hacker #SecurityTesting #Malware #CyberDefense #ExploitDevelopment #CyberAttack #NetworkSecurity #ApplicationSecurity #DataProtection #Hacking #CyberAwareness #SecureCoding #OWASP #CyberSec #DigitalSecurity #ThreatHunting #CyberResilience #RedTeam #BlueTeam #SecurityOps #ZeroDay #CyberForensics #Phishing #Ransomware #ThreatIntelligence #SOC #CISO #ISO27001 #SecurityAnalyst #CyberCompliance #AppSec #Firewall #SIEM #CyberIncident #DarkWeb #CyberEducation #CyberPolicy #CTF

https://lnkd.in/gzMxwpMB The new Caldera for OT extension is the result of a collaboration between the Homeland Security Systems Engineering and Development Institute (HSSEDI) and CISA, to help improve the resilience of critical infrastructure.

🌐🔒 Thales accredited by the European Union for Electromagnetic Espionage Security! In last February, the #EuropeanUnion accredited Thales for its activities in the TEMPEST domain. ⏩ This designation refers to the measures protecting against the interception of electromagnetic waves emitted by sensitive devices, such as computers 💻 and mobile phones 📳. ⏩ Defined by the National Security Agency, these standards ensure system security against information leaks via electromagnetic radiation. ⏩ Thales thus becomes the first French company listed on the "IASG 7-04" list, recognized by the NSA and ANSSI - Agence nationale de la sécurité des systèmes d'information. This accreditation demonstrates our ongoing commitment to innovation and expertise in communications security. 💬 "Our TEMPEST laboratory, equipped with very specific means, strengthens our leadership position and the trust of our clients," says Pierre Jeanne, VP Sovereign Cybersecurity Technologies. This recognition opens new perspectives for our TEMPEST activities in Europe, particularly for upcoming tenders: equipment supply, measurement services, system analysis, etc. 👉 More here: https://lnkd.in/dKrc5kNY Council of the European Union #CyberSecurity #Innovation #Thales #TEMPEST #Protection #EuropeanUnion #DigitalSecurity

Sec + Today, I managed to cover Indicators of Compromise by Professor Messer. I included IOCs briefly in a previous article I wrote about APT29's TTPs in the Solar Winds Compromise (See link below) :) Day 22/30 #secpluschallenge Josh Mason Day 68 #cybertechdave100daysofcyberchallenge

IT'S TIME TO ACT! Too many governments and CNI companies keep on believing that software based protection of the critical OT environment is good enough and focus too much on compliance with ISO2700x, NIS2 and IEC62443. Why? The answer is that they simply don't know the existence and possibilities to apply Engineering Grade (physical) solutions like UNIDIRECTIONAL SECURITY GATEWAYS ... or they find it too hard to convince their colleagues and the board people. At the other side I'm happy to see that maturity is growing in Europe and that it's a matter of time (and feeling the pain) before CNI will act in the right direction to stay ahead of the ever increasing "Threat landscape. Want to know more about "Segmentation 202: Unidirectional Architectures", read this blog: