Featured Articles

More than two thousand people were injured, and eight were killed following the explosion of pagers, also know as beepers, used by Hezbollah members on Tuesday afternoon. This is Beirut spoke with cybersecurity expert Khalil Sehnaoui to better understand the incident.

Khalil Sehnaoui, a hacker based in Beirut, Lebanon, said he expected a lot of security experts across the Middle East to switch from cooperative to hostile as a result of Trump's move. "If anything it's going to make people with more skills pissed. Wouldn’t you be more pissed because it’s a senseless ban on people?" Khalil said.

This malware runs in multiple stages, Khalil Sehnaoui, a Middle East-based cybersecurity specialist and founder of Krypton Security, told CyberScoop. “The exploit code is usually small and after successful exploitation it runs a dropper code which will in turn download new applications/malware in order to get more control of the system by escalating privileges.”

This data could also be used by large organizations to target people of interest (that never asked to be targeted) for let’s say political contributions (if they are known to contribute), same with religious organization, etc. Or to target [people] with negative campaigns as well”. Khalil Sehnaoui.

Il faut bien avoir à l’esprit que quelles que soient les parades trouvées, les pirates redoubleront d’ingéniosité pour trouver la faille et qu’aucun système aussi perfectionné soit-il n’est invulnérable », affirme le cofondateur de Krypton, Khalil Sehnaoui

La croissance régulière des cyberattaques au niveau mondial se fait de plus en plus au détriment des entreprises. Celles-ci, et en particulier les plus petites d’entre elles, commencent à prendre la mesure de la menace et doivent faire face à des attaques toujours plus diversifiées et perfectionnées. Focus sur un phénomène qui risque de frapper de plein fouet le secteur privé libanais.

“ExtraBacon targets a particular firewall, Cisco ASA, running a particular version (8.x, up to 8.4), and you must have SNMP read access to it,” Khalil Sehnaoui, a Middle East-based cybersecurity specialist and founder of Krypton Security, explained to the Daily Dot. “If run successfully, the exploit will enable the attacker to access the firewall without a valid username or password.”

One file contained a list of usernames and passwords for various devices and systems, allowing unfettered access to the airport's internal network. Khalil Sehnaoui, founder of Krypton Security, and Brad Haines, a hacker and security researcher, analyzed the password file and a network schematic found among the files to determine the reach of a potential attacker. 

"The password file would give us full access to every component of the internal network," said Sehnaoui.

Clad in black converse emblazoned with the Batman emblem, jeans and a bracelet reading “HACKERS,” Jayson Street approached a Beirut bank last week. “I’m the IT guy from headquarters,” he told employees, in a thick American accent.Despite his manifest tech savvy, Street is not an IT guy, per se, and he wasn’t sent from headquarters.