News

A new report prepared by CERT Polska was published by ENISA (European Network and Information Security Agency) today: “Actionable Information for Security Incident Response”. This publication is aimed at members of the incident response teams and everyone that collects, analyzes and shares security-related information. Exchange of information can be an …

iBanking malware was already described on our blog in connection with the attacks targeting Polish e-banking users at the end of 2013. This malware posed as a mobile antivirus application, while in reality it was use to steal one time passwords that were sent via text message. The attack scenario …

CERT Polska along with 19 other partners from 11 countries have joined forces for CyberROAD – a 7FP project aimed to identify current and future issues in the fight against cyber-crime and cyber-terrorism in order to draw a strategic roadmap for cyber security research. A detailed snapshot of the technological, social …

oday we released an important part of the n6 platform on an open source licence (GPL). The released library implements the REST API provided by the new version of n6 and it comes with mechanisms that facilitate fetching information from databases of any type. We hope that the project will …

Of all of the Polish malware families that we have seen last year, Banatrix seems to be the most technologically advanced one. This malware was used to replace the bank account number in the browser memory, however its implementation allowed an attacker to execute any arbitrary code on the victim …

In the last two weeks, the CERT team received multiple reports describing suspicious e-mail messages supposedly coming from the Warszawa Wola (a Warsaw district) Bailiff office. The message contents do not describe the alleged due in detail, thus encouraging the recipient of the message to click on the link described …

In participation with the ECSM initiative we have announced a HackMe challenge. This challenge proved not to be too difficult for our readers and the five fastest Polish winners are: Mateusz Rek albercik Michał Celiński-Mysław Piotr Kaźmierczak Łukasz Odzioba Congratulations! Below is the solution for the challenge. While they are …

We already have the winners of SECURE2014-CTF. Fastest person sent a full set of flags in less than three hours! The competition attracted a lot of interest. The CTF server handled over 200,000 queries (including 1200 attack attempts on the poor index.php ). The tasks …

    Have fun with our SECURE-2014/CTF! You can win a free pass for a SECURE 2014 conference and amazing packs full of gadgets! If you don’t know what’s the deal with all the flags, you can read more at ctftime.org or at DragonSector presentation at Confidence.   Tasks …

October is a month designated by the European Commision and ENISA as a European Cyber Security Month. NASK and CERT Polska are one of the partners in this endeavor. Third week of October is dedicated to students and application security. For this reason we have prepared a HackMe challenge that …