On the Cyber Security of Lebanon: A Large Scale Empirical Study of Critical Vulnerabilities

Fadlallah, Yasser; Sbeiti, Mohamad; Hammoud, Mohamad Saleh; Nehme, Mohamad; Fadlallah, Ahmad

doi:10.1109/isdfs49300.2020.9116446

Cited by 4 publications

(3 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…As shown in Table 2, most of the vulnerabilities are in the network equipment generated by Chinese companies, and it also implies that the Mozi makers are familiar with the situation in China. To more clearly analyze the scope of impact of the vulnerability exploited by Mozi, we used the cyberspace search engine FOFA 28 to count the number of online users worldwide according to the characteristics of device fingerprints, as shown in the FOFA column of Table 2. Through statistical data analysis, it is found that the total number of devices with related vulnerabilities is expected to exceed one million, which means that Mozi is likely to control more than million devices.…”

Section: The Operation Of Mozimentioning

confidence: 99%

A comprehensive study of Mozi botnet

Qin

Zhang

et al. 2022

Int J of Intelligent Sys

View full text Add to dashboard Cite

With the trend of digital transformation of enterprises, the use of Internet of Things (IoT) devices is increasing. IoT devices that are not protected by security measures have gradually become targets of attackers. Attackers use weak passwords and software vulnerabilities in the device to invade the device and control it to become a node of the botnet. The Mozi botnet was discovered in December 2019, and its attention has increased day by day, and its influence once exceeded Mirai. After a preliminary reverse analysis of the Mozi samples, we have continued to track the development and changes of the Mozi botnet since February 2021. First, through the in-depth analysis of the communication principles of the Mozi botnet and the distributed sloppy hash table protocol, we have proposed an in-depth analysis of the Mozi botnet. The active detection method of Mozi, through daily and continuous tracking of the number of Mozi nodes, is infinitely close to the boundary of the Mozi network. On the basis of the collected detection data, we give our conclusions on Mozi's node size, global geographic distribution, 24-hour global activity, equipment composition, and Mozi botnet countermeasures.Through this study, we found that the security of IoT devices around the world is not optimistic, and there is an urgent need to increase the security protection

show abstract

Section: The Operation Of Mozimentioning

confidence: 99%

A comprehensive study of Mozi botnet

Qin

Zhang

et al. 2022

Int J of Intelligent Sys

View full text Add to dashboard Cite

show abstract

“…Dimana pada tahun 2018 telah ditemukan kerentanan terkait perangkat Mikrotik yaitu CVE-2018-14847 yang memungkinkan akses ke router Mikrotik. Serangan ini memberikan akses ke file dan akses di rektori, serta memperoleh kredensial akun Administrator [2], [3], [4]. Serangan berikutnya adalah DNS redirection merupakan serangan yang menargetkan cache DNS pada router.…”

Section: Pendahuluanunclassified

Analisa dan Implementasi Sistem Keamanan Router Mikrotik dari Serangan Winbox Exploitation, Brute-Force, DoS

Haeruddin

2021

mib

View full text Add to dashboard Cite

The advancement of technology development makes it easier to find and share any information using computer networks. Computer networks have been widely applied in homes and offices. The ease of exchanging data on the network makes the availability of computer networks and information security are vulnerable to attacks by threats. On a computer network, the device which has the vulnerability is a router. A router is the outermost device that connects the Local Area Network (LAN) to the internet so that it can be easily attacked by irresponsible parties. The Mikrotik router is a product that is widely used as a gateway router that connects LANs and the Internet. There are so many tools that can be used to carry out attacks on Mikrotik routers such as Hping3 (DoS), Hydra (Brute-Force), and Exploitation Script (Winbox Exploitation). To find out the security loop in Mikrotik routers, this study uses penetration testing methods and attack techniques such as Winbox Exploit, Brute-force, and DoS. After knowing the security gap, the next step is to provide and implementation recommendations so that similar attacks do not occur any more in the future.

show abstract

“…Penyebab utama yang diidentifikasi ialah kurangnya praktik keamanan inti yakni patch management. Maka perlu ada evaluasi yang perlu melibatkan berbagai pihak dari sektor publik dan swasta untuk melakukan analisis dan mitigasi resiko dengan lebih baik (Fadlallah et al, 2020).…”

Section: Strategi Lebanon Dalam Meningkatkan Keamanan Ruang Siberunclassified

Strategi Lebanon Dalam Meningkatkan Keamanan Ruang Siber

Sakunab

Silvia

2021

J. Kaji. Ilm.

View full text Add to dashboard Cite

Abstract Cybersecurity has attracted attention in the study of international relations. This issue is important because most of life is connected to cyberspace. This research analyzes Lebanon's cybersecurity strategy in its official cybersecurity documents. The theoretical framework used in this study is the Three Perspective Theory of Cyber Sovereignty. The theory is explaining the division of layers in the context of sovereignty in cyberspace. The method used in this research is quantitative research obtained through the MAXQDA and GEPHI. The applications that are used in this research are to provide evidence of data in the Lebanese national strategy document. The results of this study indicate that the Lebanese security strategy documents tend to be exclusive. The Lebanese government is more dominant in discussing matters that are administrative, theoretical, principal, and planning. Keywords: Cyber Security, Sovereignty, Strategy, Lebanon Abstrak cKeamanan siber merupakan salah satu isu yang menarik perhatian dalam studi hubungan internasional. Isu ini menjadi penting tatkala hampir sebagian besar unsur kehidupan terhubung ke ruang siber. Penelitian ini berupaya menganalisis strategi keamanan siber Lebanon dalam dokumen resmi kemananan sibernya. Kerangka teori yang digunakan dalam dalam penelitian ini menggunakan Three Perspective Theory of Cyber Sovereignity yang menjelaskan pembagian lapisan dalam konteks kedaulatan di ruang siber. Metode yang digunakan ialah metode penelitian kuantitatif yang diperoleh melalui aplikasi MAXQDA dan GEPHI untuk memberikan bukti data dalam menganalisis dokumen strategi keamanan nasional Lebanon. Hasil penelitian ini menunjukkan bahwa dokumen strategi keamanan siber Lebanon cenderung bersifat eksklusif. Pemerintah Lebanon lebih dominan membahas hal-hal yang bersifat administratif, teoretis, prinsipil dan perencanaan. Kata kunci: Keamanan Siber, Kedaulatan, Strategi, Lebanon

show abstract

On the Cyber Security of Lebanon: A Large Scale Empirical Study of Critical Vulnerabilities

Cited by 4 publications

References 0 publications

A comprehensive study of Mozi botnet

A comprehensive study of Mozi botnet

Analisa dan Implementasi Sistem Keamanan Router Mikrotik dari Serangan Winbox Exploitation, Brute-Force, DoS

Strategi Lebanon Dalam Meningkatkan Keamanan Ruang Siber

Contact Info

Product

Resources

About