Kowatek Solar LTD
Who are the companies commercialising large-scale thermal energy storage technologies today
04:32
Who are the companies commercialising large-scale thermal energy storage technologies today
16 Utah Cities Choose to Opt-in to Groundbreaking Clean Energy Program to Bring 100% Clean Energy to Grid
17:51
16 Utah Cities Choose to Opt-in to Groundbreaking Clean Energy Program to Bring 100% Clean Energy to Grid
Themis Powder2Power particle-based CSP begins commissioning in France
18:00
Themis Powder2Power particle-based CSP begins commissioning in France
3 Hours Of Free Power Explained
17:53
3 Hours Of Free Power Explained
Father of Modern Solar Approaches the Next Frontier
17:51
Father of Modern Solar Approaches the Next Frontier
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far
14:40
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far
The optimal internal receiver geometry for high temperature solar fuels
17:59
The optimal internal receiver geometry for high temperature solar fuels
Rolls-Royce to build four BESS facilities for Sunly in Latvia
17:52
Rolls-Royce to build four BESS facilities for Sunly in Latvia
Engie to build 155MW solar PV at gas plant in Spain 
17:51
Engie to build 155MW solar PV at gas plant in Spain 
Supreme Court of Ohio reverses permit for Oak Run Solar site
14:28
Supreme Court of Ohio reverses permit for Oak Run Solar site

Hackers Fake Emsisoft Certificate to Hide Attack

A security vendor has warned network security teams to use extreme caution when reviewing code-signing certificates after discovering an attempt to spoof one of their certificates to disguise a cyberattack.

In a new blog post, Emsisoft claims that after gaining initial access to a customer’s network, the attackers installed a dual-purpose remote access product called MeshCentral.

It was signed with a certificate named “Emsisoft Server Trusted Network CA” to trick security teams into believing it was legitimately there, the AV vendor said.

“We believe this was done to make the detection of the application appear to be a false positive,” it said. “As it turned out, one of our products was installed and running on a compromised endpoint, so we thought the application supposedly signed by the Emsisoft certificate was safe and allowed-listed. may be taken.”

Emsisoft said the incident demonstrates the need for organizations to be extra vigilant when deciding whether to allow new applications flagged by security tools.

“If an organization approves an application that should not be allowed, an attacker could disable antivirus protection, move laterally within a network, steal data, and ultimately deploy ransomware. I have.

Emsisoft says that if the issuer of a certificate is unknown, the application should be inspected in isolation and only if conclusively proven to be safe and legally installed by an organization. advises.

Kevin Bocek, VP ecosystem and community at Venafi, explained that threat actors are increasingly targeting machine identities due to their high level of trust within networks.

“An attacker understands that being granted trusted access to a company’s systems via a fake machine identity is like being ushered through a digital gateway. , spoofed identities were detected and flagged, but could easily have been overlooked,” he added.

“The continued adoption of cloud-native technologies has introduced a tremendous level of complexity around machine identity management. is more difficult than ever.”

Editorial Credit Icon Image: Piotr Swat / Shutterstock.com

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Address:
 091, Peace Plaza, Asaba, Delta State.
216 DBS Road, Asaba, Delta State.
Start a conversation:

Follow Us Social Media

Facebook Twitter Youtube Instagram

All Rights Reserved. Kowatek Blog by IWUCHI

Home | About Us | Disclaimer | Privacy Policy | Contact Us