Welcome to 2020, network defenders!

With the arrival of the new year comes the inevitable surfeit of predictions for 2020. As noted in many journals and articles, we humans are notoriously poor at making accurate predictions. The nature of complex systems coupled with our tendency to break problems into component parts makes it all but inevitable that most of our... Continue Reading →

Coping with Scanners

It can be argued that there is no unwanted traffic on the Internet; even scans and DDoS are wanted, usually outbound, by the miscreants running them.  However there is a lot of Internet traffic we good folks don't want, either because it consumes our links, or it shows up in query results and clouds our... Continue Reading →

Unmasking AVE_MARIA

Several public reports[1][2] of a malware family often referred to as AVE_MARIA were made in January 2019. Yoroi, an Internet research company, says the malware sample analyzed for their report[2] contains “AVE_MARIA”, and uses that string as a "hello message” for the malware controller. Also, in a Twitter thread[3] about similar malware, a researcher asked... Continue Reading →

Up ↑