Khalil Sehnaoui, a hacker based in Beirut, Lebanon, said he expected a lot of security experts across the Middle East to switch from cooperative to hostile as a result of Trump's move. "If anything it's going to make people with more skills pissed. Wouldn’t you be more pissed because it’s a senseless ban on people?" Khalil said.
This malware runs in multiple stages, Khalil Sehnaoui, a Middle East-based cybersecurity specialist and founder of Krypton Security, told CyberScoop. “The exploit code is usually small and after successful exploitation it runs a dropper code which will in turn download new applications/malware in order to get more control of the system by escalating privileges.”
This data could also be used by large organizations to target people of interest (that never asked to be targeted) for let’s say political contributions (if they are known to contribute), same with religious organization, etc. Or to target [people] with negative campaigns as well”. Khalil Sehnaoui.
Il faut bien avoir à l’esprit que quelles que soient les parades trouvées, les pirates redoubleront d’ingéniosité pour trouver la faille et qu’aucun système aussi perfectionné soit-il n’est invulnérable », affirme le cofondateur de Krypton, Khalil Sehnaoui
La croissance régulière des cyberattaques au niveau mondial se fait de plus en plus au détriment des entreprises. Celles-ci, et en particulier les plus petites d’entre elles, commencent à prendre la mesure de la menace et doivent faire face à des attaques toujours plus diversifiées et perfectionnées. Focus sur un phénomène qui risque de frapper de plein fouet le secteur privé libanais.
“ExtraBacon targets a particular firewall, Cisco ASA, running a particular version (8.x, up to 8.4), and you must have SNMP read access to it,” Khalil Sehnaoui, a Middle East-based cybersecurity specialist and founder of Krypton Security, explained to the Daily Dot. “If run successfully, the exploit will enable the attacker to access the firewall without a valid username or password.”
One file contained a list of usernames and passwords for various devices and systems, allowing unfettered access to the airport's internal network. Khalil Sehnaoui, founder of Krypton Security, and Brad Haines, a hacker and security researcher, analyzed the password file and a network schematic found among the files to determine the reach of a potential attacker.
"The password file would give us full access to every component of the internal network," said Sehnaoui.
Clad in black converse emblazoned with the Batman emblem, jeans and a bracelet reading “HACKERS,” Jayson Street approached a Beirut bank last week. “I’m the IT guy from headquarters,” he told employees, in a thick American accent.Despite his manifest tech savvy, Street is not an IT guy, per se, and he wasn’t sent from headquarters.
Information Security is one of the main challenges of the 21st Century; albeit more intensely for wealthy and developed countries, when it comes to privacy, safety of personal and professional data and infrastructure integrity. The IoT (Internet of Things) phenomenon is filling our homes and workplaces with inter-connected devices that lack proper security hardening.
When recently faced with “loud and rude” people sitting next to him at a coffee shop in Paris, information security consultant Khalil Sehnaoui didn’t get mad. He got even. “I could see the waiters were really annoyed but you know with a job on the line they can’t do much.”