ChannelBuzz.ca

What MSPs need to know about Ghostredirector

Listen Later
Tony Anscombe, global security evangelist at ESET

ESET’s theat intelligence team has discovered a new threat actor it has dubbed GhostRedirector, that takes advantage of unpatched versions of IIS to offer manipulated Google search results as a service.

While its targets are largely in Brazil, Thailand, and Vietnam, it includes servers that are hosted by third parties in North America.

In this edition of the podcast, Tony Anscombe, security evangelist at ESET, joins us to discuss the new attack, and what MSPs need to be thinking about when they’re hosting or administering servers on behalf of customers.

We discuss: 

  • the nature of the attacks and how they targeted;
  • who was behind the attacks;
  • the motivations behind the attacks;
  • how the attackers went after servers running MSPs’ and hosters’ environments;
  • what MSPs and hosters can learn from these attacks, and how they can make sure their infrastructure isn’t used in attacks like this;
  • how ESET makes the determination of a new attack group;
  • how ESET finds new attacks, and
  • what it does with the information once it’s discovered a new attack.

    • All this and much more in this edition of the ChannelBuzz.ca Podcast.

       

    ...more
    View all episodesView all episodes
    Download on the App Store
    ChannelBuzz.caBy ChannelBuzz.ca