Kernel Parameter Tuning for MongoDB

  • skeeved's picture
  • Posted on: 18 September 2017
  • By: skeeved

MongoDB, like most database systems, prefers to handle memory allocation itself rather than relying on the underlying kernel's memory handling processes. To run MongoDB efficiently, the kernel parameter transparent_hugepages and transparent_hugepages/defrag should be set to 'never'.

To complicate matters slightly, since CentOS 6, a service named tuned runs by default and sets various kernel parameters periodically. To keep our custom configurations, we'll create a new tuned profile and have it override the OS supplied defaults.

Setting tuned Parameters

Fileless Attack Vector

  • skeeved's picture
  • Posted on: 13 June 2017
  • By: skeeved

A new malware vector, using a sophisticated fileless method of infecting machines, has been documented by Morphisec.

This new attack is targeting restaurants and begins with a phishing email containing an .rtf file attachment. When the attachment is opened and double-clicked a convoluted series of steps is taken:

Samsung Galaxy S8 Iris Scanner Hacked

  • skeeved's picture
  • Posted on: 24 May 2017
  • By: skeeved

Samsung's newest flagship phone, the Galaxy S8, comes with a new security feature that allows the phone to be unlocked using iris based authentication.

The feature has already been circumvented by printing a picture of the owner's face.

Recommendation: keep using the PIN to lock/unlock your phone.

Jaff - Newest Ransomware Enters the Fray

  • skeeved's picture
  • Posted on: 12 May 2017
  • By: skeeved

The newest ransomware malware threat has begun appearing as massive numbers of emails spew from the Necurs botnet.

Jaff is currently being sent as a PDF attachment with an embedded Microsoft Word document. The Word document is launched when the PDF is opened by a JavaScript script in the PDF. Once the Word document is opened, a VBScript script is executed which begins the malware download.

As is usual with email distributed malware, end-user education goes a long way toward stopping this threat in it's tracks. There are a lot of hoops to jump through to become infected.

The French Election and How Macron's Campaign Thwarted the Hackers

  • skeeved's picture
  • Posted on: 10 May 2017
  • By: skeeved

Russian hacking and interference in other country's elections seems to be quite common place these days.

As reported by the New York Times (and others), French president-elect Emmanuel Macron's campaign staff became aware of attempts to sway the election by, among other things, a warning from the American NSA.