OPEN SOURCE
RANSOMWARE: Vortex and Bugware Ransomware Use Open Source Tools to Target .NET Users. A pair of ransomware variants called Vortex and Bugware are encrypting victims’ files by using open source repositories and targeting .NET users, researchers warned. Based on an investigation published by Zscaler, those affected by the two families are being hit with demands that, in the case of Vortex, start at $100 and double within less than a week. The researchers discovered live instances of the attacks using spam emails and links laden with malware. While Vortex was designed with open source encryption tool AESxWin, Bugware makes use of Hidden Tear code, a ransomware-like crypter sample. Read more
[SECURITYINTELLIGENCE.COM]
MOZILLA: Releases Open Source Speech Recognition Engine and Voice Dataset. After launching Firefox Quantum, Mozilla continues its upward trend and releases its Open Source Speech Recognition Model and Voice Dataset. Read more.
[DESIGNMODO.COM]
PROJECTS: OpenStack Foundation Announces New Open Source Container Project. The OpenStack Foundation has announced a new open source project called Kata Containers. Kata Containers aims to unite the security benefits of virtual machines and the speed and manageability of container technologies. Find out more
[SDTIMES.COM]
DEVELOPMENT: Five Open Source Tools for Developing IoT Applications. The Internet of Things is growing at a staggeringly fast pace, and is quickly coming to revolutionise virtually every aspect of modern life. Aspiring developers hoping to hop on board and profit off the growing phenomenon are constantly looking for the right tools to use. So what are the open source tools best suited for working with the IoT, and where can developers find them? According to www.networkworld.com, a plethora of open source tools lay at the disposal of any would-be developer eager and wise enough to use them. By utilising these five, you will find yourself tackling challenges and developing successful applications in no time. Read more
[PUNCHNG.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems November 2017 https://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-november-2017.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========
