Salvatore Lombardo

Funzionario informatico, Esperto ICT, Socio Clusit e autore

Articoli dell'autore



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-768x432.jpg" class="card-responsive-img fit-img" alt="Malware Graphite" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Graphite-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

TECNICA MOUSEOVER
Il malware Graphite si diffonde sfruttando file PowerPoint senza macro malevole: i dettagli
28 Set 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-768x432.jpg" class="card-responsive-img fit-img" alt="Emotet, la botnet da 2,5 miliardi di dollari per il cybercrime" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/01/Malware-Emotet-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
La botnet Emotet trampolino di lancio per i ransomware Quantum e BlackCat: come difendersi
20 Set 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-768x432.jpg" class="card-responsive-img fit-img" alt="Ransomware BianLian" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/BianLian-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
BianLian, il ransomware multipiattaforma che “offre” diverse modalità di attacco
14 Set 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-768x432.jpg" class="card-responsive-img fit-img" alt="EvilProxy Phishing as a Service" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/EvilProxy-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
EvilProxy, il phishing as a service per bypassare la doppia autenticazione: i dettagli
07 Set 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-768x432.jpg" class="card-responsive-img fit-img" alt="Attacco Etherled" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/09/Etherled-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

ATTACCO A PC AIR-GAPPED
ETHERLED, rubare dati “leggendo” i LED della scheda di rete: ecco la nuova tecnica di attacco
01 Set 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-768x432.jpg" class="card-responsive-img fit-img" alt="Attacco Gairoscope" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/08/Gairoscope-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

ATTACCO A PC AIR-GAPPED
Gairoscope, esfiltrare dati da un PC usando uno smartphone per “catturare” le onde sonore: i dettagli
29 Ago 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-768x432.jpg" class="card-responsive-img fit-img" alt="Attacco air-gapped SATAn" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/SATAn-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

ATTACCO AIR-GAP
SATAn, così il cavo SATA si trasforma in antenna Wi-Fi per rubare dati riservati
22 Lug 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-768x432.jpg" class="card-responsive-img fit-img" alt="GTPdoor, forse Italia nel mirino: come proteggere le reti mobili dalla backdoor Linux" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2021/04/Backdoor-Office-Photoshop-CC-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
Vulnerabilità Follina sfruttata per distribuire la backdoor Rozena: come mitigare il rischio
12 Lug 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-768x432.jpg" class="card-responsive-img fit-img" alt="RedAlert ransomware" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/07/RedAlert-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
RedAlert, il ransomware che prende di mira i server Windows e Linux virtualizzati: come difendersi
07 Lug 2022
di Salvatore Lombardo
Condividi il post
Condividi



<img width="768" height="432" src="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-768x432.jpg" class="card-responsive-img fit-img" alt="Quantum Builder malware" decoding="async" srcset="https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-768x432.jpg 768w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-1280x720.jpg 1280w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder.jpg 1920w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-156x88.jpg 156w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-1536x864.jpg 1536w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-640x360.jpg 640w, https://dnewpydm90vfx.cloudfront.net/wp-content/uploads/2022/06/Quantum-Builder-lq.jpg 30w" sizes="(max-width: 768px) 100vw, 768px" data-eio="l" />

L'ANALISI TECNICA
Quantum Builder, ecco il tool “facile” per creare file usati per diffondere malware
24 Giu 2022
di Salvatore Lombardo
Condividi il post
Condividi