Category Archives: blacklist

If one mobile service provider blocks a certain IMEI from using its network, will the same IMEI work with another mobile service provider? [closed]

Posted on by

Suppose that there only exists two mobile service providers in a given country; provider A, and provider B. Let’s assume that some user on A’s network loses her phone and calls the service provider, A, to block the IMEI of the lost phone. … Continue reading If one mobile service provider blocks a certain IMEI from using its network, will the same IMEI work with another mobile service provider? [closed]

New CISA Blacklist: What It Means For You

Posted on by

Everyone makes mistakes once in a while. Maybe not all the time, but who hasn’t reused a password or ignored a software update? But any time someone ignores security best practices adds to your risk. The Cybersecurity and Infrastructure Security Agency (CISA) recognizes these risks and has released a Bad Practices page on its website. […]

The post New CISA Blacklist: What It Means For You appeared first on Security Intelligence.

Continue reading New CISA Blacklist: What It Means For You

Should web application firewalls block IPs by RBL blacklists and VPN/Proxies. An overkill?

Posted on by

I am working on web application firewall rules that detect and block malicious IPs. So far I have employed rules that look for DOS or DDOS attacks by IPs and block them temporarily. Now, I have a query regarding RBL blacklists and VPN/Prox… Continue reading Should web application firewalls block IPs by RBL blacklists and VPN/Proxies. An overkill?

Can’t find cause of malware in WordPress site – adding html files with redirects [closed]

Posted on by

I’m helping a non-profit and they have had malware on their WordPress site. I installed Sucuri and it quickly finds some strangely named HTML files in the base directory. I removed those files. Because of the malware found, the non-profit … Continue reading Can’t find cause of malware in WordPress site – adding html files with redirects [closed]

[SANS ISC] Simple Blacklisting with MISP & pfSense

Posted on by

I published the following diary on isc.sans.edu: “Simple Blacklisting with MISP & pfSense“: Here is an example of a simple but effective blacklist system that I’m using on my pfSense firewalls. pfSense is a very modular firewall that can be expanded with many packages. About blacklists, there is a well-known

The post [SANS ISC] Simple Blacklisting with MISP & pfSense appeared first on /dev/random.

Continue reading [SANS ISC] Simple Blacklisting with MISP & pfSense

Application layer DDOS attack detection – enough to analyse only GET/POST requests?

Posted on by

I am developing a DOS attack recognition module for application layer requests.
The application has a backend consisting several APIs. They all are connected through an API gateway(developed in Node Js). Every request is recorded to a data… Continue reading Application layer DDOS attack detection – enough to analyse only GET/POST requests?

Application layer DDOS attack detection – enough to analyse only GET/POST requests?

Posted on by

I am developing a DOS attack recognition module for application layer requests.
The application has a backend consisting several APIs. They all are connected through an API gateway(developed in Node Js). Every request is recorded to a data… Continue reading Application layer DDOS attack detection – enough to analyse only GET/POST requests?