EternalRomance vs Internet Security Suites and nextgen protections
This blog post is an auxiliary post to our Eternalblue test. If you have not read that, please read it, and go back when it …
Read moreETERNALBLUE vs Internet Security Suites and nextgen protections
Due to the recent #wannacry ransomware events, we initiated a quick test in our lab. Most vendors claim to protect against the WannaDecrypt ransomware, and …
Read moreTestMyAV – an independent next-gen testing vendor?
There is a new cat in town – TestMyAV. Instead of my words, let’s introduce TestMyAV by the words from Tom Wright, from http://www.channelweb.co.uk/crn-uk/news/3001315/msp-launches-av-testing-website-to-stamp-out-misleading-reports . “Security MSP Cognition …
Read moreUninstall your AV today! Or maybe not?
This week was popcorn-time on Twitter. The good old debate started again. On one side, browser developers, penetration testers and AV bug hunters, on the …
Read moreVulnerability found and fixed in macOS and iOS kernels
Our Research Director, Balazs Bucsay made an exhaustive research on the topic of chroot bypass techniques early last year. The chroot system call is used …
Read moreHow your VPN can be a front door access to your system
Tld;dr: double check your local software firewall settings while using commercial VPN! Introduction VPNs are used by different people for different purposes. Some use it …
Read moreHow companies can stop most RAT attacks – spoiler alert, enforce HTTP proxy
RATs (Remote Admin Tools a.k.a Remote Access Trojans) are mainly used by two groups. Script kiddies and nation state attackers. Script kitties love RATs because of …
Read moreGeneric bypass of next-gen intrusion / threat / breach detection systems
The focus of this blog post is to bypass network monitoring tools, e.g. good-old IDS or next-generation threat detection systems in a generic way. The focus is …
Read more