ITCSecurityMaster

adopted for - ISO/IEC/IEEE FDIS 32675:2022

📌full life cycle of systems, products, and services (conception, , , utilization, support, and retirement).

📌involvement of stakeholders

📌ultimate goal of achieving customer satisfaction.

The guidelines can be used for:

✏️ by an organisation

✏️ by a project

✏️ by an acquirer or supplier

Increased targeting of



Frequent use of Linux as the basis for cloud services, hosts, and container-based infrastructure, attackers have increasingly targeted Linux environments with sophisticated and , with emphasis on and .

📌 Examples:

✏️ ransomware - that was used against petrochemical distribution network

✏️ - was originally a Windows-based version that expanded into the Linux world



📌 tools used:

✏️ CobaltStrike is becoming more prevalent because it is the most mature and formalized [ ] infrastructure



More details about OS security in the course of the IT&C Security Master

Linux Malware on the Rise Ransomware, cryptojacking, and a cracked version of the penetration-testing tool Cobalt Strike have increasingly targeted Linux in multicloud infrastructure, report states.

targets poorly protected or Windows containers

Siloscape - is capable of:
👉compromising a single
👉escaping and then moving laterally
👉end goal - accessing an entire

📌Step 1: Obtain capability inside a Windows container using a known
📌Step 2: Executes Siloscape by impersonating CExecSvc.exe to obtain trusted user rights (SeTcbPrivilege)
📌Step 3: Check privileges in order to escape the container – i.e. to create new Kubernetes deployments
📌Step 4: connects to the Tor network to commence the command and control phase

Siloscape Malware Reportedly Targeting Windows Containers Researchers believe that a malware variant that specifically targets poorly protected or misconfigured Windows containers has been uncovered for the first time,

: : Best Practices for Preventing from Ransomware include:

📌 implementing robust between IT and OT networks;

📌 regularly testing manual ; and

📌 ensuring that are implemented, regularly tested, and isolated from network connections



Read the entire list of best practices here: 👉

DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks | CISA This Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques.