Blog

The release of the final Star Wars movie this month has been accompanied by a surge in fake download sites offering early or free access to the film while really depositing malware onto fans computers. For organisations that allow employees to take laptops home for the holidays, this may pose an additional risk if theRead more

Researchers have identified new attack vectors which leverage the RDP drive sharing feature to perform fileless attacks and plant malware. A standard feature of the Microsoft RDP implementation is the ability to share a drive from the client machine.  This appears as a network share to the server device at \\tsclient.  An attacker who wasRead more

Fileless malware attacks have increased over 300% in 2019. What is fileless malware and how does it work? According to their mid-year Cybersecurity report, Trend Micro asserts that fileless malware attacks have increased 365% over the same period the previous year.  In order to understand why this is increasing and how fileless malware works, weRead more

A novel attack vector has been seen in the wild: using OAuth permissions to compromise Office365 Accounts Reported by anti-phishing security firm PhishLabs, the new attack leverages the persistent permissions of OAuth authentication to get access to the target Office365 accounts without ever compromising the login credentials. The attack starts with a phishing email whichRead more

The North Korean Lazarus hacker group is targeting crypto-exchanges with innovative fileless Mac malware. Security researcher Patrick Wardle describes this new fileless Mac malware strain in a recent blog post. The malware infects the machine in a fairly standard two stage approach.  The victim is first tricked into downloading an application for a new cyptocurrencyRead more

New versions have been released for the four popular implementations of VNC after Kaspersky discovered thirty-seven vulnerabilities in the software VNC (or Virtual Network Computing) is a system that allows one device to access the screen and control the keyboard and mouse of another device.  Using the Remote Frame Buffer (RFB) protocol, VNC has beenRead more

HP has issued a critical firmware update for a large number of their SSD drives which will fail after 32768 hours of operation. The defect in the firmware for the SSD drives will cause them to fail and all data on the drive to be permanently lost after 32,768 hours of operation. That’s 3 years,Read more

As professionals in the technical discipline of Information Technology, it can be easy to forget that the risks that we need to guard against are more than purely technical.  While it is true that patches need to be applied, security baselines followed, and firewalls configured – the job does not end there.  For many organisations,Read more