Encrypted exploit delivery – #IRONSQUIRREL
This research deals with the delivery of encrypted browser exploits to a victim’s browser. It is a follow-up post to some research I did 2 …
Read moreCurrent state of malicious Powershell script blocking
The current state of malicious Powershell script blocking is bad, very bad. There is room for improvement … Only two products (among the tested ones) …
Read moreWebroot SecureAnywhere Android AV coordinated disclosure
Researchers of MRG Effitas tested the Webroot SecureAnywhere Android application. During use, we came across implementation details, which might undermine the Vendor’s efforts to provide …
Read moreEternalRomance vs Internet Security Suites and nextgen protections
This blog post is an auxiliary post to our Eternalblue test. If you have not read that, please read it, and go back when it …
Read moreETERNALBLUE vs Internet Security Suites and nextgen protections
Due to the recent #wannacry ransomware events, we initiated a quick test in our lab. Most vendors claim to protect against the WannaDecrypt ransomware, and …
Read moreTestMyAV – an independent next-gen testing vendor?
There is a new cat in town – TestMyAV. Instead of my words, let’s introduce TestMyAV by the words from Tom Wright, from http://www.channelweb.co.uk/crn-uk/news/3001315/msp-launches-av-testing-website-to-stamp-out-misleading-reports . “Security MSP Cognition …
Read moreUninstall your AV today! Or maybe not?
This week was popcorn-time on Twitter. The good old debate started again. On one side, browser developers, penetration testers and AV bug hunters, on the …
Read moreHow your VPN can be a front door access to your system
Tld;dr: double check your local software firewall settings while using commercial VPN! Introduction VPNs are used by different people for different purposes. Some use it …
Read more