Intrusion Prevention System

Understanding the Ransomware Attack Lifecycle: From Initial Access to Data Encryption

Understanding the Ransomware Attack Lifecycle: From Initial Access to Data Encryption

Defensive, Development
In recent years, ransomware has become one of the most serious threats in the cybersecurity landscape. It no longer targets large enterprises only; cybercriminals now also target SMEs, educational institutions, and even the healthcare sector. The impact can be severe, ranging from operational disruption and loss of critical data to financial losses due to ransom payments. Readers can see continuously updated ransomware victims on Ransomware Live. From there, we can observe that ransomware …
Read more…
Harderning Server with Fail2ban and Reporting to Telegram

Harderning Server with Fail2ban and Reporting to Telegram

Defensive
After being busy enough that I didn’t have time to create challenges and write down how to complete these challenges on this blog, this time we will discuss a little about fail2ban and how to configure it. Generally fail2ban is used to ban IPs that fail to authenticate up to the maximum limit stated in the configuration and this IPS is very effective in preventing attacks that will occur on the server, such as bruteforce attacks on SSH ports (22), FTP (21), SMTP (25), etc., even other …
Read more…