EyePyramid: I forgot to do my homework!

Posted on January 11, 2017 in Blog • Tagged with malware, botnet, EyePyramid • 2 min read

Today Italian news were surrounded by the story of brother and sister arrested in Italy for spying on top public officials, institutions and high profile VIPs.

The EyePyramid story has been widely reported and probably it is going to monopolise Italian media for the next week. So I do not want to write about it.

The only official information available (right now) are in the subpoena / arrest warrant (sorry, in Italian). It is filled of operational details about how the bad guys were running their business.

Technically speaking, they wrote a VB.NET malware with RAT / spyware features. They infected ...

Continue reading

Few word on TR-069

Posted on November 27, 2016 in Blog • Tagged with router, botnet, Mirai • 1 min read

It is all over the news, about 900,000 Deutsche Telekom DSL customers have been hit by a wide cyber attack related to the**Mirai botnet** and went offline for quite a while.

There are many analyses around, so I do not want to spend more words about Internet of Things (IoT), the malware and the exploit used, or about the attribution dice.

So what?

How was the reaction? It is always time for a meme.

panic attacks

What really happened?

  • In november an exploit for a router was published. Carriers are used to send management commands to home routers using a ...

Continue reading