Simjacker: how to protect your network from the latest hot vulnerability
•
2 likes•819 views
Simjacker is a vulnerability that allows hackers to exploit SMS commands to gain control of mobile devices. The document discusses: 1. The history of STK and how it allows SMS-based menus and commands to be sent to SIM cards, including sending location data and making calls. 2. How the Simjacker vulnerability works by sending SMS commands from an unauthorized number or platform to exploit the STK functionality. 3. Recommendations for networks to protect against Simjacker like prohibiting direct STK SMS messages and continually monitoring and assessing networks for vulnerabilities.
Report
Share
Report
Share
Download to read offline
Recommended
Creating a fuzzer for telecom protocol 4G LTE case study
This presentation shows the insights of the successful maintenance and development of the designed tool for the Diameter protocol, raises awareness about other security protocols, and is of service to those who find protocol vulnerabilities daunting.
Telecom Security in the Era of 5G and IoT
Dmitry Kurbatov is the CTO of Positive Technologies, a cybersecurity company. He began his career as a network engineer in 2007 before switching to security in 2009. In his presentation, he discusses security issues for 5G and IoT networks. He notes that the virtualized and programmable nature of 5G introduces new vulnerabilities, and that legacy threats to previous cellular standards still apply. Additionally, the massive number of connected IoT devices poses new threats like large-scale botnets. He concludes by providing guidelines for 5G security, including implementing policies separately for each network slice and securing new interfaces from the start.
SS7: 2G/3G's weakest link
Both mobile operators and cybercriminals make heavy use of the SS7 protocol on previous-generation networks.
SS7 is old and vulnerable to attacks, yet will underpin the advanced networks of tomorrow. Learning more about SS7 is mission-critical for securing increasingly complex environments.
Watch the webinar to learn all about the ins and outs of SS7 for a smooth transition to 5G!
Our premium SS7 Security Analysis Report serves as a valuable knowledge base for cybersecurity specialists and network experts as they prepare for the security challenges of 2020. To access the report, go to: https://positive-tech.com/research/ss7-network-security-analysis-2020/
Network security - Defense in Depth
The document provides an overview of network security threats and countermeasures. It discusses various types of threats like viruses, denial of service attacks, and spoofing. It recommends a defense-in-depth approach using multiple layers of security like firewalls, intrusion detection systems, antivirus software, and encryption. Specific security measures are examined, including network monitoring, access control, and securing servers and applications.
5G SA security: a comprehensive overview of threats, vulnerabilities and rem...
This document discusses security threats and vulnerabilities in 5G standalone networks. It begins by introducing the speakers and providing background on Positive Technologies' experience in telecommunications security. It then outlines various attack vectors such as man-in-the-middle attacks and denial-of-service attacks on the 5G standalone core. The document explains that protocols like PFCP are similarly vulnerable to attacks as previous protocols like GTP. It argues that network operators should focus on prevention to avoid costly security failures. Finally, it discusses the challenges network operators face and how Positive Technologies can help through automated security products and expert services.
SS7: the bad neighbor you're stuck with during the 5G migration and far beyond
For the past decades, SS7 protocol has been our closest neighbor to support the roaming infrastructure. However, with untrusted agents exploiting this protocol and the migration to 5G, many operators are at risk of security data breaches and the inability to switch to 5G secure infrastructure fast. Especially now, when major cybersecurity organizations (ENISA) include signaling security in their 5G networks threat landscape, SS7 protocol has to come into the spotlight during the design stage.
Our live webinar, hosted by our telecom experts Federico Aureli, Technical Security Specialist, and Milan Brezina, Telecom and SMS fraud expert, reveals the trending topics in SS7 security and explains:
- Why SS7 will stay a long time even in the era of 5G
- Why mobile operators should take into account SS7 weaknesses
- What SS7 protocol real-life fraud cases exist
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech
SS7 Vulnerabilities
Nowadays mobile networks are the most dynamic part of critical communication infrastructures and the key instrument used to perform daily activities ranging from voice and text messaging to providing signaling for emergency services and critical infrastructure.
Telecom security from ss7 to all ip all-open-v3-zeronights
Telecom security is way more than SIP-breaking some peripheral PBXs and raking a few thousands of dollars of free calls. From the formerly closed garden of SS7 to new all-IP telecom protocols such as Diameter and LTE protocols, the telecom domain faces now both the challenges of availability -one minute of downtime costs literally millions- and signaling vulnerabilities cutting down entire countries, causing massive frauds and the all new networking protocols. These new telecom protocols are rolled out in IP-centric fashion, with its myriad of standard IP security pitfalls and vulnerabilities, as well as very specific telecom vulnerabilities. The HLR is not only using TCP/IP for OAM and business workflow, but also now being named an HSS, it uses IP-only protocols such as Diameter for its Core Network signaling operations. That means that now telecom are facing new security risks both in term of exposure and threats, with its Core Network being exposed to unsophisticated IP-centered attackers, and the continuous waves of telecom-centered defrauders. In this presentation, we'll demo the new technologies of 3G and LTE networks and how to attack and defend them. We'll also show what kind of exposure one telecom companies, Mobile Network Operators and SS7 providers shows to external attackers.
Recommended
Creating a fuzzer for telecom protocol 4G LTE case study
This presentation shows the insights of the successful maintenance and development of the designed tool for the Diameter protocol, raises awareness about other security protocols, and is of service to those who find protocol vulnerabilities daunting.
Telecom Security in the Era of 5G and IoT
Dmitry Kurbatov is the CTO of Positive Technologies, a cybersecurity company. He began his career as a network engineer in 2007 before switching to security in 2009. In his presentation, he discusses security issues for 5G and IoT networks. He notes that the virtualized and programmable nature of 5G introduces new vulnerabilities, and that legacy threats to previous cellular standards still apply. Additionally, the massive number of connected IoT devices poses new threats like large-scale botnets. He concludes by providing guidelines for 5G security, including implementing policies separately for each network slice and securing new interfaces from the start.
SS7: 2G/3G's weakest link
Both mobile operators and cybercriminals make heavy use of the SS7 protocol on previous-generation networks.
SS7 is old and vulnerable to attacks, yet will underpin the advanced networks of tomorrow. Learning more about SS7 is mission-critical for securing increasingly complex environments.
Watch the webinar to learn all about the ins and outs of SS7 for a smooth transition to 5G!
Our premium SS7 Security Analysis Report serves as a valuable knowledge base for cybersecurity specialists and network experts as they prepare for the security challenges of 2020. To access the report, go to: https://positive-tech.com/research/ss7-network-security-analysis-2020/
Network security - Defense in Depth
The document provides an overview of network security threats and countermeasures. It discusses various types of threats like viruses, denial of service attacks, and spoofing. It recommends a defense-in-depth approach using multiple layers of security like firewalls, intrusion detection systems, antivirus software, and encryption. Specific security measures are examined, including network monitoring, access control, and securing servers and applications.
5G SA security: a comprehensive overview of threats, vulnerabilities and rem...
This document discusses security threats and vulnerabilities in 5G standalone networks. It begins by introducing the speakers and providing background on Positive Technologies' experience in telecommunications security. It then outlines various attack vectors such as man-in-the-middle attacks and denial-of-service attacks on the 5G standalone core. The document explains that protocols like PFCP are similarly vulnerable to attacks as previous protocols like GTP. It argues that network operators should focus on prevention to avoid costly security failures. Finally, it discusses the challenges network operators face and how Positive Technologies can help through automated security products and expert services.
SS7: the bad neighbor you're stuck with during the 5G migration and far beyond
For the past decades, SS7 protocol has been our closest neighbor to support the roaming infrastructure. However, with untrusted agents exploiting this protocol and the migration to 5G, many operators are at risk of security data breaches and the inability to switch to 5G secure infrastructure fast. Especially now, when major cybersecurity organizations (ENISA) include signaling security in their 5G networks threat landscape, SS7 protocol has to come into the spotlight during the design stage.
Our live webinar, hosted by our telecom experts Federico Aureli, Technical Security Specialist, and Milan Brezina, Telecom and SMS fraud expert, reveals the trending topics in SS7 security and explains:
- Why SS7 will stay a long time even in the era of 5G
- Why mobile operators should take into account SS7 weaknesses
- What SS7 protocol real-life fraud cases exist
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech
SS7 Vulnerabilities
Nowadays mobile networks are the most dynamic part of critical communication infrastructures and the key instrument used to perform daily activities ranging from voice and text messaging to providing signaling for emergency services and critical infrastructure.
Telecom security from ss7 to all ip all-open-v3-zeronights
Telecom security is way more than SIP-breaking some peripheral PBXs and raking a few thousands of dollars of free calls. From the formerly closed garden of SS7 to new all-IP telecom protocols such as Diameter and LTE protocols, the telecom domain faces now both the challenges of availability -one minute of downtime costs literally millions- and signaling vulnerabilities cutting down entire countries, causing massive frauds and the all new networking protocols. These new telecom protocols are rolled out in IP-centric fashion, with its myriad of standard IP security pitfalls and vulnerabilities, as well as very specific telecom vulnerabilities. The HLR is not only using TCP/IP for OAM and business workflow, but also now being named an HSS, it uses IP-only protocols such as Diameter for its Core Network signaling operations. That means that now telecom are facing new security risks both in term of exposure and threats, with its Core Network being exposed to unsophisticated IP-centered attackers, and the continuous waves of telecom-centered defrauders. In this presentation, we'll demo the new technologies of 3G and LTE networks and how to attack and defend them. We'll also show what kind of exposure one telecom companies, Mobile Network Operators and SS7 providers shows to external attackers.
Attacking GRX - GPRS Roaming eXchange
GRX is the global private network where telecom network operators exchange GPRS roaming traffic of their users. It’s also used for all M2M networks where roaming is used, and that is the case from some company’s truck fleet management system down to intelligence GPS location spybug tracking system.
GPRS has been there from 2.5G GSM networks to the upcoming LTE Advanced networks, and is now quite widespread technology, along with its attacks. GRX has had a structuring role in the global telecom world at a time where IP dominance was beginning to be acknowledged. Now it has expanded to a lightweight structure using both IP technologies and ITU-originated protocols.
In this presentation, we’ll see how this infrastructure is protected and how it can be attacked. We’ll discover the issues with specific telco equipment inside GRX, namely GGSN and SGSN but also now PDN Gateways in LTE and LTE Advanced “Evolved Packet Core”. We will see the implications of this with GTP protocol, DNS infrastructure, AAA servers and core network technologies such as MPLS, IPsec VPNs and their associated routing protocols. These network elements were rarely evaluated for security, and during our engagements with vulnerability analysis, we’ve seen several vulnerabilities that we will be showing in this speech.
We will demo some of the attacks on a simulated “PS Domain” network, that it the IP part of the Telecom Core Network that transports customers’ traffic, and investigate its relationships with legacy SS7, SIGTRAN IP backbones, M2M private corporate VPNs and telecom billing systems. We will also seem how automation enable us to succeed at attacks which are hard to perform and will show how a “sentinel” attack was able to compromise a telecom Core Network during one penetration test.
Telecom under attack: demo of fraud scenarios and countermeasures
Telecom fraud is booming at an alarming rate worldwide to become a major source of revenue loss for mobile operators. According to the CFSA, mobile operators lost $28 billion to fraud in 2019. SIM swapping has again become a hot-button topic in the telecom industry. This worrying trend is provoking disputes between banks and telecoms and causing harm all around.
Our security experts Sergey Puzankov and Milan Březina show how to perform and protect from different attacks in the telecom world, including:
- SIM swapping
- A2P SMS termination with security bypass
- OTP SMS interception
Wireless network security
This document summarizes wireless network security and mobile device security. It discusses wireless network threats such as identity theft, man-in-the-middle attacks, and denial of service attacks. It also discusses IEEE 802.11 wireless LAN security standards including WEP, WPA, and RSN. Mobile device security threats include lack of physical security controls, use of untrusted networks and applications. The document outlines security strategies for wireless transmissions, access points, and networks. It also describes the phases of IEEE 802.11i including discovery, authentication, key management, and protected data transfer.
Cyber security from military point of view
1) Cyber security is an important issue from a military perspective as modern militaries rely on information technology systems for many functions beyond just command and control, including logistics, research, and personnel records.
2) Cyber attacks can have kinetic consequences by disrupting infrastructure and causing property damage or loss of life, as seen in attacks on Estonia and Georgia.
3) Modern cyber weapons are developed using a combination of human hackers and software tools, analogous to how traditional weapons combine soldiers and technology like rifles.
SOAR and SIEM.pptx
SIEM (Security Information and Event Management) technology provides real-time analysis of security alerts from various sources like network devices, servers, etc. It has four main components - SEM (Security Event Management), SIM (Security Information Management), data collection, and data analysis. SOAR (Security Orchestration, Automation and Response) was developed to address limitations of SIEM tools like needing regular tuning and dedicated staff. SOAR technologies enable automated response to security events by integrating data from various sources, building response processes using playbooks, and providing a single dashboard for security response. Key benefits of SOAR include faster incident detection/response, better threat context, simplified management, and boosting analyst productivity through automation.
SIEM and Threat Hunting
This document provides an overview of security operation centers (SOCs), security information and event management (SIEM) tools, threat hunting, and related concepts. It defines SOCs as facilities that monitor and analyze an organization's security posture using technology and processes. SIEM tools are listed that help with this. Threat hunting is described as investigating security incidents to uncover new tactics, techniques and procedures (TTPs) used by attackers. The Cyber Kill Chain model and common indicators used to detect compromises like IOCs and IOAs are also summarized.
Attacks you can't combat: vulnerabilities of most robust MNOs
In his 45-minute presentation, our expert demonstrates how an intruder can use new SS7 vulnerabilities to bypass security tools. You will find out why it is possible, how network equipment reacts to malicious traffic, and what can be done to secure telecom networks.
Signaling security essentials. Ready, steady, 5G!
A big challenge for mobile network operators in the new, ever-evolving 5G era is the signaling security of the standardized protocols used in order to exchange data. Telecommunication companies face this challenge and have to be on the verge every time there is a potential hacker attack. What is the best way to approach these striking threats and even to be ready before it occurs?
In our webinar, Positive Technologies will offer you several breakthrough strategies on how to deal with security flaws in telecom.
Our expert will show you the evolution of protocol security, share insights into the potential activities of a hacker and give useful advice about compliance with security standards.
Metasploit seminar
This document provides an introduction to Metasploit, a penetration testing platform used to find, exploit, and validate vulnerabilities. It discusses how to create an Android payload file using msfvenom, send it to a target device, and use Metasploit to interact with the device after payload execution. The document also lists some advantages and disadvantages of Metasploit and references used.
Best Practices for Network Security Management
Gidi Cohen, Founder & CEO, Skybox Security
Changing technology and business trends pose new challenges to network security management, including firewall change management processes, management of security configurations in a BYOD-world, regulatory compliance, validation of firewall migrations, and troubleshooting access problems to complex networks. Through case studies, survey data, and real-world practices, this session will grant insight into automating and optimizing network security management.
Learn to streamline and automate firewall analysis to improve productivity
Discover how to automate network device configuration to minimize error
Gain insight into how secure change management can ensure stringent security compliance
Requirement for creating a Penetration Testing Lab
This document has been prepared in order to develop a good Penetration Testing and Vulnerability Assessment Lab. The document contains Hardware requirements, our manual & automated Software requirements, approaches for Performing Penetration testing.
Further, this document is design to make a Penetration test LAB in order to simulate the vulnerabilities in the testing environment and to execute the vulnerability assessment & penetration testing from the LAB by providing the Static IP to the Client, ensuring that the test is being performed from a valid/legitimate link.
INCIDENT RESPONSE OVERVIEW
This document provides an overview of incident response procedures, including the incident response life cycle of detection, categorization, containment, investigation, remediation, reporting, and learnings. It outlines roles and responsibilities, communication processes, and generic response playbooks. Resources for incident response frameworks and standards are also referenced.
Telecom Network & SIEM logs analysis using machine learning
This document summarizes a presentation on analyzing telecom network and SIEM logs using machine learning. The presentation discusses:
1. The growing field of telecommunications technologies and the increased demand during the COVID-19 pandemic.
2. The need for security event management in telecom networks given risks like intrusions, fraud, and ransomware attacks.
3. How to implement dynamic security event management using machine learning by gathering data from various logs and analyzing patterns in real-time to detect anomalies and intrusions.
Arp spoofing
ARP spoofing allows an attacker to intercept or modify communications between two hosts on a local network by falsifying ARP responses and changing a target's ARP cache entries. The attacker sends spoofed ARP replies associating the target's IP addresses with the attacker's MAC address, intercepting traffic intended for another host. This enables man-in-the-middle attacks where the attacker can sniff or modify intercepted traffic before forwarding it. Defenses include static ARP entries and port security on switches, but weaknesses remain, especially on networks using dynamic addressing protocols like DHCP.
Worldwide attacks on SS7 network
Presented by Pierre-Olivier Vauboin & Alexandre De Oliveira at Hackito Ergo Sum 2014
http://2014.hackitoergosum.org/
Mobile telecommunication networks are complex and provide a wide range of services, making them a tempting target for fraudsters and for intelligence agencies. Moreover, the architecture, equipment and protocols used on these networks were never designed with security in mind, availability being the first concern. Today, even though some telecom operators are investing money into securing their network, events confirm that for most of them maturity in term of security is yet to come, as recently shown with the example of massive traffic interception on compromised SCCP and GRX providers like Belgacom’s BICS. Here we present the most typical and legitimate telecom callflows from making a mobile phone call to sending a SMS. Then we describe the protocol layers involved and how to abuse them, which fields can be manipulated in order to attack both the operator infrastructure and its subscribers. Finally, we show a real life example of scan performed from an international SS7 interconnection and practical attacks on subscribers such as spam, spoofed SMS and user location tracking.
Network Security - Defense Through Layered Information Security
My presentation about Defense in Depth and Next Generation Firewall.
Presented for iFest event, held by UHAMKA, Jakarta.
Cscu exam-info-and-test-objective
The document provides information about the Certified Secure Computer User (CSCU) certification exam. It outlines that the exam contains 50 multiple choice questions, takes 2 hours, and requires a passing score of 70%. The exam tests candidates on 13 security domains, including securing operating systems, protecting systems with antiviruses, data encryption, internet security, and securing email communications. It provides learning objectives for each domain that candidates should understand in order to pass the exam.
Ceh v5 module 19 evading ids firewall and honeypot
The document discusses techniques for evading intrusion detection systems (IDS), firewalls, and honeypots. It provides information on common IDS types and how they detect intrusions. It then describes various methods that can be used to evade detection by IDSes, firewalls, and tools commonly used for this purpose. The document also discusses firewalls, how they operate to filter network traffic, and common firewall types. It concludes with an overview of honeypots and how they can be detected.
Mobile signaling threats and vulnerabilities - real cases and statistics from...
Kirill Puzankov in Bucharest, Romania on November 8-9th 2018 at DefCamp #9.
The videos and other presentations can be found on https://def.camp/archive
Positive approach to security of Core networks
Mobile operators across the globe have already started to roll out their 5G. It is here to stay and so security should be kept it mind ensuring the industry learns from the lessons of previous generous networks.
In 2020 our PT Telecom Attack Discovery (PT TAD) 5G-ready next-generation signaling firewall scored no. 1 on the security market.* Want to find out the reasons behind this accolade, then watch the record of our webinar to learn about an effective approach towards signaling security in the era of 5G.
During the live session Positive Technologies’ experts - Kirill Puzankov, Product Manager and Jimmy Jones, security telecoms expert:
explained how to implement security for Core networks quickly, efficiently and with fewer efforts
showed a demo on how telecom operators could withstand an attack or malicious actions using our next-generation Telecom Attack Discovery signaling Firewall
provided statistics and key trends in signaling security.
* According to ROCCO Signalling Firewall Vendor Performance Report 2020. https://positive-tech.com/research/rocco-report-2020/
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
introduction to Embedded System Security
The document provides an introduction to embedded system security. It defines an embedded system and gives examples. Embedded system security is defined as protecting resources an embedded system is responsible for. The document discusses why security is important for embedded systems and types of attacks, including embedded software attacks and embedded hardware attacks. It covers topics like firmware vs operating systems, and types of hardware attacks such as probing, side-channel attacks, and fault induction.
More Related Content
What's hot
Attacking GRX - GPRS Roaming eXchange
GRX is the global private network where telecom network operators exchange GPRS roaming traffic of their users. It’s also used for all M2M networks where roaming is used, and that is the case from some company’s truck fleet management system down to intelligence GPS location spybug tracking system.
GPRS has been there from 2.5G GSM networks to the upcoming LTE Advanced networks, and is now quite widespread technology, along with its attacks. GRX has had a structuring role in the global telecom world at a time where IP dominance was beginning to be acknowledged. Now it has expanded to a lightweight structure using both IP technologies and ITU-originated protocols.
In this presentation, we’ll see how this infrastructure is protected and how it can be attacked. We’ll discover the issues with specific telco equipment inside GRX, namely GGSN and SGSN but also now PDN Gateways in LTE and LTE Advanced “Evolved Packet Core”. We will see the implications of this with GTP protocol, DNS infrastructure, AAA servers and core network technologies such as MPLS, IPsec VPNs and their associated routing protocols. These network elements were rarely evaluated for security, and during our engagements with vulnerability analysis, we’ve seen several vulnerabilities that we will be showing in this speech.
We will demo some of the attacks on a simulated “PS Domain” network, that it the IP part of the Telecom Core Network that transports customers’ traffic, and investigate its relationships with legacy SS7, SIGTRAN IP backbones, M2M private corporate VPNs and telecom billing systems. We will also seem how automation enable us to succeed at attacks which are hard to perform and will show how a “sentinel” attack was able to compromise a telecom Core Network during one penetration test.
Telecom under attack: demo of fraud scenarios and countermeasures
Telecom fraud is booming at an alarming rate worldwide to become a major source of revenue loss for mobile operators. According to the CFSA, mobile operators lost $28 billion to fraud in 2019. SIM swapping has again become a hot-button topic in the telecom industry. This worrying trend is provoking disputes between banks and telecoms and causing harm all around.
Our security experts Sergey Puzankov and Milan Březina show how to perform and protect from different attacks in the telecom world, including:
- SIM swapping
- A2P SMS termination with security bypass
- OTP SMS interception
Wireless network security
This document summarizes wireless network security and mobile device security. It discusses wireless network threats such as identity theft, man-in-the-middle attacks, and denial of service attacks. It also discusses IEEE 802.11 wireless LAN security standards including WEP, WPA, and RSN. Mobile device security threats include lack of physical security controls, use of untrusted networks and applications. The document outlines security strategies for wireless transmissions, access points, and networks. It also describes the phases of IEEE 802.11i including discovery, authentication, key management, and protected data transfer.
Cyber security from military point of view
1) Cyber security is an important issue from a military perspective as modern militaries rely on information technology systems for many functions beyond just command and control, including logistics, research, and personnel records.
2) Cyber attacks can have kinetic consequences by disrupting infrastructure and causing property damage or loss of life, as seen in attacks on Estonia and Georgia.
3) Modern cyber weapons are developed using a combination of human hackers and software tools, analogous to how traditional weapons combine soldiers and technology like rifles.
SOAR and SIEM.pptx
SIEM (Security Information and Event Management) technology provides real-time analysis of security alerts from various sources like network devices, servers, etc. It has four main components - SEM (Security Event Management), SIM (Security Information Management), data collection, and data analysis. SOAR (Security Orchestration, Automation and Response) was developed to address limitations of SIEM tools like needing regular tuning and dedicated staff. SOAR technologies enable automated response to security events by integrating data from various sources, building response processes using playbooks, and providing a single dashboard for security response. Key benefits of SOAR include faster incident detection/response, better threat context, simplified management, and boosting analyst productivity through automation.
SIEM and Threat Hunting
This document provides an overview of security operation centers (SOCs), security information and event management (SIEM) tools, threat hunting, and related concepts. It defines SOCs as facilities that monitor and analyze an organization's security posture using technology and processes. SIEM tools are listed that help with this. Threat hunting is described as investigating security incidents to uncover new tactics, techniques and procedures (TTPs) used by attackers. The Cyber Kill Chain model and common indicators used to detect compromises like IOCs and IOAs are also summarized.
Attacks you can't combat: vulnerabilities of most robust MNOs
In his 45-minute presentation, our expert demonstrates how an intruder can use new SS7 vulnerabilities to bypass security tools. You will find out why it is possible, how network equipment reacts to malicious traffic, and what can be done to secure telecom networks.
Signaling security essentials. Ready, steady, 5G!
A big challenge for mobile network operators in the new, ever-evolving 5G era is the signaling security of the standardized protocols used in order to exchange data. Telecommunication companies face this challenge and have to be on the verge every time there is a potential hacker attack. What is the best way to approach these striking threats and even to be ready before it occurs?
In our webinar, Positive Technologies will offer you several breakthrough strategies on how to deal with security flaws in telecom.
Our expert will show you the evolution of protocol security, share insights into the potential activities of a hacker and give useful advice about compliance with security standards.
Metasploit seminar
This document provides an introduction to Metasploit, a penetration testing platform used to find, exploit, and validate vulnerabilities. It discusses how to create an Android payload file using msfvenom, send it to a target device, and use Metasploit to interact with the device after payload execution. The document also lists some advantages and disadvantages of Metasploit and references used.
Best Practices for Network Security Management
Gidi Cohen, Founder & CEO, Skybox Security
Changing technology and business trends pose new challenges to network security management, including firewall change management processes, management of security configurations in a BYOD-world, regulatory compliance, validation of firewall migrations, and troubleshooting access problems to complex networks. Through case studies, survey data, and real-world practices, this session will grant insight into automating and optimizing network security management.
Learn to streamline and automate firewall analysis to improve productivity
Discover how to automate network device configuration to minimize error
Gain insight into how secure change management can ensure stringent security compliance
Requirement for creating a Penetration Testing Lab
This document has been prepared in order to develop a good Penetration Testing and Vulnerability Assessment Lab. The document contains Hardware requirements, our manual & automated Software requirements, approaches for Performing Penetration testing.
Further, this document is design to make a Penetration test LAB in order to simulate the vulnerabilities in the testing environment and to execute the vulnerability assessment & penetration testing from the LAB by providing the Static IP to the Client, ensuring that the test is being performed from a valid/legitimate link.
INCIDENT RESPONSE OVERVIEW
This document provides an overview of incident response procedures, including the incident response life cycle of detection, categorization, containment, investigation, remediation, reporting, and learnings. It outlines roles and responsibilities, communication processes, and generic response playbooks. Resources for incident response frameworks and standards are also referenced.
Telecom Network & SIEM logs analysis using machine learning
This document summarizes a presentation on analyzing telecom network and SIEM logs using machine learning. The presentation discusses:
1. The growing field of telecommunications technologies and the increased demand during the COVID-19 pandemic.
2. The need for security event management in telecom networks given risks like intrusions, fraud, and ransomware attacks.
3. How to implement dynamic security event management using machine learning by gathering data from various logs and analyzing patterns in real-time to detect anomalies and intrusions.
Arp spoofing
ARP spoofing allows an attacker to intercept or modify communications between two hosts on a local network by falsifying ARP responses and changing a target's ARP cache entries. The attacker sends spoofed ARP replies associating the target's IP addresses with the attacker's MAC address, intercepting traffic intended for another host. This enables man-in-the-middle attacks where the attacker can sniff or modify intercepted traffic before forwarding it. Defenses include static ARP entries and port security on switches, but weaknesses remain, especially on networks using dynamic addressing protocols like DHCP.
Worldwide attacks on SS7 network
Presented by Pierre-Olivier Vauboin & Alexandre De Oliveira at Hackito Ergo Sum 2014
http://2014.hackitoergosum.org/
Mobile telecommunication networks are complex and provide a wide range of services, making them a tempting target for fraudsters and for intelligence agencies. Moreover, the architecture, equipment and protocols used on these networks were never designed with security in mind, availability being the first concern. Today, even though some telecom operators are investing money into securing their network, events confirm that for most of them maturity in term of security is yet to come, as recently shown with the example of massive traffic interception on compromised SCCP and GRX providers like Belgacom’s BICS. Here we present the most typical and legitimate telecom callflows from making a mobile phone call to sending a SMS. Then we describe the protocol layers involved and how to abuse them, which fields can be manipulated in order to attack both the operator infrastructure and its subscribers. Finally, we show a real life example of scan performed from an international SS7 interconnection and practical attacks on subscribers such as spam, spoofed SMS and user location tracking.
Network Security - Defense Through Layered Information Security
My presentation about Defense in Depth and Next Generation Firewall.
Presented for iFest event, held by UHAMKA, Jakarta.
Cscu exam-info-and-test-objective
The document provides information about the Certified Secure Computer User (CSCU) certification exam. It outlines that the exam contains 50 multiple choice questions, takes 2 hours, and requires a passing score of 70%. The exam tests candidates on 13 security domains, including securing operating systems, protecting systems with antiviruses, data encryption, internet security, and securing email communications. It provides learning objectives for each domain that candidates should understand in order to pass the exam.
Ceh v5 module 19 evading ids firewall and honeypot
The document discusses techniques for evading intrusion detection systems (IDS), firewalls, and honeypots. It provides information on common IDS types and how they detect intrusions. It then describes various methods that can be used to evade detection by IDSes, firewalls, and tools commonly used for this purpose. The document also discusses firewalls, how they operate to filter network traffic, and common firewall types. It concludes with an overview of honeypots and how they can be detected.
Mobile signaling threats and vulnerabilities - real cases and statistics from...
Kirill Puzankov in Bucharest, Romania on November 8-9th 2018 at DefCamp #9.
The videos and other presentations can be found on https://def.camp/archive
What's hot (20)
Telecom under attack: demo of fraud scenarios and countermeasures
Telecom under attack: demo of fraud scenarios and countermeasures
Attacks you can't combat: vulnerabilities of most robust MNOs
Attacks you can't combat: vulnerabilities of most robust MNOs
Requirement for creating a Penetration Testing Lab
Requirement for creating a Penetration Testing Lab
Telecom Network & SIEM logs analysis using machine learning
Telecom Network & SIEM logs analysis using machine learning
Network Security - Defense Through Layered Information Security
Network Security - Defense Through Layered Information Security
Ceh v5 module 19 evading ids firewall and honeypot
Ceh v5 module 19 evading ids firewall and honeypot
Mobile signaling threats and vulnerabilities - real cases and statistics from...
Mobile signaling threats and vulnerabilities - real cases and statistics from...
Similar to Simjacker: how to protect your network from the latest hot vulnerability
Positive approach to security of Core networks
Mobile operators across the globe have already started to roll out their 5G. It is here to stay and so security should be kept it mind ensuring the industry learns from the lessons of previous generous networks.
In 2020 our PT Telecom Attack Discovery (PT TAD) 5G-ready next-generation signaling firewall scored no. 1 on the security market.* Want to find out the reasons behind this accolade, then watch the record of our webinar to learn about an effective approach towards signaling security in the era of 5G.
During the live session Positive Technologies’ experts - Kirill Puzankov, Product Manager and Jimmy Jones, security telecoms expert:
explained how to implement security for Core networks quickly, efficiently and with fewer efforts
showed a demo on how telecom operators could withstand an attack or malicious actions using our next-generation Telecom Attack Discovery signaling Firewall
provided statistics and key trends in signaling security.
* According to ROCCO Signalling Firewall Vendor Performance Report 2020. https://positive-tech.com/research/rocco-report-2020/
Follow us on LinkedIn to keep up with our upcoming webinars and events: https://www.linkedin.com/company/positive-tech/
introduction to Embedded System Security
The document provides an introduction to embedded system security. It defines an embedded system and gives examples. Embedded system security is defined as protecting resources an embedded system is responsible for. The document discusses why security is important for embedded systems and types of attacks, including embedded software attacks and embedded hardware attacks. It covers topics like firmware vs operating systems, and types of hardware attacks such as probing, side-channel attacks, and fault induction.
[Hitcon 2019] Some things about recent Internet IoT/ICS attacks - a perspecti...
The document discusses a honeypot analysis of recent IoT and ICS attacks. It finds that the top usernames and passwords target known IoT device credentials. Unknown malware samples are also collected from attack traffic, including samples targeting vulnerabilities in Drupal, Mikrotik devices, and Android Debug Bridge exploits. The distribution of IoT exploits is analyzed over time, finding that newly published exploits are often used rapidly. Finally, the document compares IT and OT environments and notes that traditional OT devices often lack security protections now that they increasingly connect to outside networks.
Towards Security Software Engineering the Smart Grid as a System of Systems
Presentation at the 10th Annual System of Systems Engineering Conference (SoSE), 2015.05, San Antonio, USA. More details about the paper at https://sites.google.com/site/vaneachiprianov/papers .
Submit Your Research Articles - International Journal of Network Security & I...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
Practical analysis of the cybersecurity of European smart grids
This paper summarizes the experience gained during a series of
practical cybersecurity assessments of various components of Europe’s
smart electrical grids.
Submit Your Research Articles - International Journal of Network Security & I...
The International Journal of Network Security & Its Applications (IJNSA) is a bi-monthly peer-reviewed journal that publishes articles on computer network security and its applications. Topics covered include artificial intelligence, blockchain, cloud/edge security, cryptographic protocols, cyber physical systems, and internet of things security. The journal aims to bring together researchers and practitioners to address modern security threats and foster new collaborations. Authors are invited to submit papers through email or the online submission system.
Ijmsn
International Journal of Mobile ad hoc and sensor networks(IJMSN) is a open access journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. Authors are solicited to contribute to this journal by submitting articles that illustrate research results, projects, surveying works and industrial experiences that describe significant advances in the Computer Networks & Communications.
Ijmsn
International Journal of Mobile ad hoc and sensor networks(IJMSN) is a open access journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. Authors are solicited to contribute to this journal by submitting articles that illustrate research results, projects, surveying works and industrial experiences that describe significant advances in the Computer Networks & Communications.
Ijmsn
International Journal of Mobile ad hoc and sensor networks(IJMSN) is a open access journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. Authors are solicited to contribute to this journal by submitting articles that illustrate research results, projects, surveying works and industrial experiences that describe significant advances in the Computer Networks & Communications.
Telecom incidents investigation: daily work behind the scenes
Telecom providers build, operate, and manage integrated voice and data networks, transmitting and storing vast amounts of sensitive data. With 5G bringing eMBB and expanding the service portfolio of businesses, this volume is set to see a manifold increase, making them a golden goose for hackers.
Active work on the cyberattack prevention side is an absolute must for operators, and threat intelligence is one of the important pillars of robust security.
In this webinar we have an interactive discussion of the most common weaknesses and threats in 4G and 5G networks, plus:
How to implement a smart «risk-driven» approach to security
How to detect traces of cybercrime in signaling networks and prevent suspicious activities in telecom networks
How to make your SOC telecom-oriented
CSIRT and CERT: when it’s time to bring in outside expertise
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
- The document discusses challenges facing utilities such as aging infrastructure, workforce transitions, reliability pressures, and increasing cyber security threats. It also covers opportunities from digital substation technologies including process bus, cyber security features, teleprotection, phasor measurement units, and wireless communication.
- The presentation discusses definitions of cyber security for utilities and common vulnerabilities in protection and control systems like default passwords, heterogeneous networks, and penetration testing tools. It also summarizes Abb Power Grid's approach to cyber security including secure architectures, product hardening, and lifecycle security services.
- Specific cyber security features for Abb's digital substations are explained including protocol hardening, role-based access control, security event logging, and configuration guidelines for hardening
Submit Your Research Articles - International Journal of Network Security & I...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
Security aspect of IOT.pptx
This document contains a student assignment on the topic of "Security aspects in IoT". It includes the student's name, roll number, department, year of study, and subject name. It then covers various security aspects of IoT like access control, privacy, policy enforcement, and secure middleware. It discusses common security issues in IoT like unpatched vulnerabilities, weak authentication, and vulnerable APIs. Finally, it outlines some strategies for Internet of Things security management like notifying users about outdated devices, enforcing password management, and protecting command and control centers.
Ijmsn
The International Journal of Mobile ad hoc and sensor networks (IJMSN) is an open access journal that publishes articles on new research in the areas of computer networks and communications. The journal focuses on technical and practical aspects of these fields, including architectures, protocols, algorithms, routing, resource management, and more for mobile, wireless, ad hoc and sensor networks. Authors are invited to submit original papers through the journal's online submission system by the listed important dates, with publication determined by the Editor-in-Chief.
Submit Your Research Articles - International Journal of Network Security & I...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
Submit Your Research Papers - International Journal of Network Security & Its...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
Submit Your Research Papers - International Journal of Network Security & Its...
The International Journal of Network Security & Its Applications (IJNSA) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of the computer Network Security & its applications. The journal focuses on all technical and practical aspects of security and its applications for wired and wireless networks. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on understanding Modern security threats and countermeasures, and establishing new collaborations in these areas.
Similar to Simjacker: how to protect your network from the latest hot vulnerability (20)
[Hitcon 2019] Some things about recent Internet IoT/ICS attacks - a perspecti...
[Hitcon 2019] Some things about recent Internet IoT/ICS attacks - a perspecti...
Towards Security Software Engineering the Smart Grid as a System of Systems
Towards Security Software Engineering the Smart Grid as a System of Systems
Submit Your Research Articles - International Journal of Network Security & I...
Submit Your Research Articles - International Journal of Network Security & I...
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
Practical analysis of the cybersecurity of European smart grids
Practical analysis of the cybersecurity of European smart grids
Submit Your Research Articles - International Journal of Network Security & I...
Submit Your Research Articles - International Journal of Network Security & I...
Telecom incidents investigation: daily work behind the scenes
Telecom incidents investigation: daily work behind the scenes
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
CLASS 2018 - Palestra de Julio Oliveira (Gerente de Tecnologia, Power Grids G...
Submit Your Research Articles - International Journal of Network Security & I...
Submit Your Research Articles - International Journal of Network Security & I...
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
International Journal of Network Security & Its Applications (IJNSA) - ERA, W...
Submit Your Research Articles - International Journal of Network Security & I...
Submit Your Research Articles - International Journal of Network Security & I...
Submit Your Research Papers - International Journal of Network Security & Its...
Submit Your Research Papers - International Journal of Network Security & Its...
Submit Your Research Papers - International Journal of Network Security & Its...
Submit Your Research Papers - International Journal of Network Security & Its...
Recently uploaded
Main news related to the CCS TSI 2023 (2023/1695)
An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers.
The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 .
The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .
Presentation of the OECD Artificial Intelligence Review of Germany
Consult the full report at https://www.oecd.org/digital/oecd-artificial-intelligence-review-of-germany-609808d6-en.htm
Digital Marketing Trends in 2024 | Guide for Staying Ahead
https://www.wask.co/ebooks/digital-marketing-trends-in-2024
Feeling lost in the digital marketing whirlwind of 2024? Technology is changing, consumer habits are evolving, and staying ahead of the curve feels like a never-ending pursuit. This e-book is your compass. Dive into actionable insights to handle the complexities of modern marketing. From hyper-personalization to the power of user-generated content, learn how to build long-term relationships with your audience and unlock the secrets to success in the ever-shifting digital landscape.
OpenID AuthZEN Interop Read Out - Authorization
During Identiverse 2024 and EIC 2024, members of the OpenID AuthZEN WG got together and demoed their authorization endpoints conforming to the AuthZEN API
Webinar: Designing a schema for a Data Warehouse
Are you new to data warehouses (DWH)? Do you need to check whether your data warehouse follows the best practices for a good design? In both cases, this webinar is for you.
A data warehouse is a central relational database that contains all measurements about a business or an organisation. This data comes from a variety of heterogeneous data sources, which includes databases of any type that back the applications used by the company, data files exported by some applications, or APIs provided by internal or external services.
But designing a data warehouse correctly is a hard task, which requires gathering information about the business processes that need to be analysed in the first place. These processes must be translated into so-called star schemas, which means, denormalised databases where each table represents a dimension or facts.
We will discuss these topics:
- How to gather information about a business;
- Understanding dictionaries and how to identify business entities;
- Dimensions and facts;
- Setting a table granularity;
- Types of facts;
- Types of dimensions;
- Snowflakes and how to avoid them;
- Expanding existing dimensions and facts.
Taking AI to the Next Level in Manufacturing.pdf
Read Taking AI to the Next Level in Manufacturing to gain insights on AI adoption in the manufacturing industry, such as:
1. How quickly AI is being implemented in manufacturing.
2. Which barriers stand in the way of AI adoption.
3. How data quality and governance form the backbone of AI.
4. Organizational processes and structures that may inhibit effective AI adoption.
6. Ideas and approaches to help build your organization's AI strategy.
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Discover the seamless integration of RPA (Robotic Process Automation), COMPOSER, and APM with AWS IDP enhanced with Slack notifications. Explore how these technologies converge to streamline workflows, optimize performance, and ensure secure access, all while leveraging the power of AWS IDP and real-time communication via Slack notifications.
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...Edge AI and Vision Alliance
For the full video of this presentation, please visit: https://www.edge-ai-vision.com/2024/06/building-and-scaling-ai-applications-with-the-nx-ai-manager-a-presentation-from-network-optix/
Robin van Emden, Senior Director of Data Science at Network Optix, presents the “Building and Scaling AI Applications with the Nx AI Manager,” tutorial at the May 2024 Embedded Vision Summit.
In this presentation, van Emden covers the basics of scaling edge AI solutions using the Nx tool kit. He emphasizes the process of developing AI models and deploying them globally. He also showcases the conversion of AI models and the creation of effective edge AI pipelines, with a focus on pre-processing, model conversion, selecting the appropriate inference engine for the target hardware and post-processing.
van Emden shows how Nx can simplify the developer’s life and facilitate a rapid transition from concept to production-ready applications.He provides valuable insights into developing scalable and efficient edge AI solutions, with a strong focus on practical implementation.How to Get CNIC Information System with Paksim Ga.pptx
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Skybuffer SAM4U tool for SAP license adoption
Manage and optimize your license adoption and consumption with SAM4U, an SAP free customer software asset management tool.
SAM4U, an SAP complimentary software asset management tool for customers, delivers a detailed and well-structured overview of license inventory and usage with a user-friendly interface. We offer a hosted, cost-effective, and performance-optimized SAM4U setup in the Skybuffer Cloud environment. You retain ownership of the system and data, while we manage the ABAP 7.58 infrastructure, ensuring fixed Total Cost of Ownership (TCO) and exceptional services through the SAP Fiori interface.
Programming Foundation Models with DSPy - Meetup Slides
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
A Mix Chart displays historical data of numbers in a graphical or tabular form. The Kalyan Rajdhani Mix Chart specifically shows the results of a sequence of numbers over different periods.
National Security Agency - NSA mobile device best practices
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-und-domino-lizenzkostenreduzierung-in-der-welt-von-dlau/
DLAU und die Lizenzen nach dem CCB- und CCX-Modell sind für viele in der HCL-Community seit letztem Jahr ein heißes Thema. Als Notes- oder Domino-Kunde haben Sie vielleicht mit unerwartet hohen Benutzerzahlen und Lizenzgebühren zu kämpfen. Sie fragen sich vielleicht, wie diese neue Art der Lizenzierung funktioniert und welchen Nutzen sie Ihnen bringt. Vor allem wollen Sie sicherlich Ihr Budget einhalten und Kosten sparen, wo immer möglich. Das verstehen wir und wir möchten Ihnen dabei helfen!
Wir erklären Ihnen, wie Sie häufige Konfigurationsprobleme lösen können, die dazu führen können, dass mehr Benutzer gezählt werden als nötig, und wie Sie überflüssige oder ungenutzte Konten identifizieren und entfernen können, um Geld zu sparen. Es gibt auch einige Ansätze, die zu unnötigen Ausgaben führen können, z. B. wenn ein Personendokument anstelle eines Mail-Ins für geteilte Mailboxen verwendet wird. Wir zeigen Ihnen solche Fälle und deren Lösungen. Und natürlich erklären wir Ihnen das neue Lizenzmodell.
Nehmen Sie an diesem Webinar teil, bei dem HCL-Ambassador Marc Thomas und Gastredner Franz Walder Ihnen diese neue Welt näherbringen. Es vermittelt Ihnen die Tools und das Know-how, um den Überblick zu bewahren. Sie werden in der Lage sein, Ihre Kosten durch eine optimierte Domino-Konfiguration zu reduzieren und auch in Zukunft gering zu halten.
Diese Themen werden behandelt
- Reduzierung der Lizenzkosten durch Auffinden und Beheben von Fehlkonfigurationen und überflüssigen Konten
- Wie funktionieren CCB- und CCX-Lizenzen wirklich?
- Verstehen des DLAU-Tools und wie man es am besten nutzt
- Tipps für häufige Problembereiche, wie z. B. Team-Postfächer, Funktions-/Testbenutzer usw.
- Praxisbeispiele und Best Practices zum sofortigen Umsetzen
Choosing The Best AWS Service For Your Website + API.pptx
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
20240607 QFM018 Elixir Reading List May 2024
Everything I found interesting about the Elixir programming ecosystem in May 2024
Recently uploaded (20)
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
“Building and Scaling AI Applications with the Nx AI Manager,” a Presentation...
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Programming Foundation Models with DSPy - Meetup Slides
Programming Foundation Models with DSPy - Meetup Slides
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
National Security Agency - NSA mobile device best practices
National Security Agency - NSA mobile device best practices
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Simjacker: how to protect your network from the latest hot vulnerability
- 1. Simjacker: how to protect your network from the latest hot vulnerability Sergey Puzankov Lead Security Researcher |
- 2. Ongoing security research Responsible disclosure – responsible attitude 2014 Signaling System 7 (SS7) security report 2014 Vulnerabilities of mobile Internet (GPRS) 2016 Primary security threats to SS7 cellular networks 2017 Threats to packet core security of 4G network 2017 Next-generation networks, next-level cybersecurity problems (Diameter vulnerabilities) 2018 SS7 Vulnerabilities and Attack Exposure Report 2018 Diameter Vulnerabilities Exposure Report 2019 5G security issues
- 4. V V V History of the technology VSIM Application Toolkit (STK) implements an SMS-based menu STK menus customized by MNOs SIM card providers try to unify their solutions: S@T Browser is just one of the unifications Typical STK operations: Send location data Send an SMS to a particular number Make a call Initiate a packet data session Send internal IDs Beep loudspeaker
- 6. Short message service SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers
- 7. Simjacker malefactor SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers
- 8. Mitigation SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers Prohibit P2P STK SMS messages Prohibit STK SMS messages from unauthorized platforms SMS-C Prohibit STK SMS messages from external connections to home subscribers SMS router
- 9. Mitigation VMT SMS message with SIM STK command VMO SMS message with SIM STK command
- 10. Advanced hacker SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers
- 11. Assess your network SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers ? ?
- 12. Assessment statistics 2017 2018 2019
- 13. Protect SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers
- 14. Add monitoring SMS-CMSC MSC SS7 STK platformSMS router SMS-CSTP VAS providers TAD TAD
- 15. Assess Monitor Protect Auditing provides the essential visibility to fully understand your ever changing network risks. Continual real time monitoring is essential to measure network security efficiency and provide rapid detection and mitigation. Completely secure your network by addressing both generic vulnerabilities (GSMA) and the threats that actually effect you as an ongoing process. Delivering Signalling Security With Positive Technologies
- 16. Scheme of the demo MSC SS7 STK platformSMS router SMS-CSTP
- 17. Thank you