Case Study: A Cryptomining Attack — With an Assist From Advanced Malware Techniques

In Carbon Black's Quarterly Incident Response Threat Report QIRTR, some of the world’s leading incident response IR professionals reported seeing an uptick in lateral movement, counter incident response, and island-hopping attacks from motivated nation-states. In the case study below, Kroll notes...

THULAC Null Pointer Dereference Vulnerability

THULAC is a Chinese lexical analysis toolkit introduced by the Natural Language Processing and Social Humanities Computing Laboratory of Tsinghua University, which supports Chinese word segmentation and lexical annotation functions. A null pointer dereference vulnerability exists in the...

SC Media Awards Cb Defense, Cb ThreatSight 5 Out of 5 Stars

"During testing, Cb Defense performed as a top-quality endpoint security program…Great intuitive cloud platform with an armament of modern security technologies with a quick implementation into your business environment." - SC Media "Carbon Black also offers Cb ThreatSight as an add-on, which is...

Cb ThreatSight Investigation Reveals RETADUP Worm Leverages AutoIt to Launch Monero Cryptomining Campaign

While monitoring a customer’s environment, the Carbon Black ThreatSight team discovered a series of unusual alerts. Further investigation of the suspect processes revealed these alerts were related to an attacker leveraging the open-source Monero framework to launch a crypto-mining campaign. Afte...

CVE-2018-10407

An issue was discovered in Carbon Black Cb Response. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicio...

Code injection

An issue was discovered in Carbon Black Cb Response. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicio...

CVE-2018-10407

CVE-2018-10407 affects Carbon Black Cb Response. A maliciously crafted Universal/Fat binary can bypass third‑party code signing checks, causing the unsigned payload to execute while the signed Apple image is treated as legitimate. Exploitation relies on embedding unsigned Mach‑O binaries inside a...

CVE-2018-10407

An issue was discovered in Carbon Black Cb Response. A maliciously crafted Universal/fat binary can evade third-party code signing checks. By not completing full inspection of the Universal/fat binary, the user of the third-party tool will believe that the code is signed by Apple, but the malicio...

cb-content.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-617610 Description| Value ---|--- Affected Website:| cb-content.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

cb-downloads.com Improper Access Control vulnerability

Open Bug Bounty ID: OBB-617609 Description| Value ---|--- Affected Website:| cb-downloads.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| IAC Improper Access Control / CWE-284 CVSSv3 Score:| 6.5...

Turning the Tables on Cyber Attackers

Today, Carbon Black joins the community of public companies NASDAQ: CBLK. While we are humbled and excited by this milestone, we also acknowledge there’s plenty of progress still to be made. For Carbon Black as a company and the industry as a whole, that progress starts with shifting the balance ...

Carbon Black’s Predictive Security Cloud (PSC) To Help Power Newly Launched IBM X-Force Threat Management Services

Today is another exciting day for Carbon Black and IBM! This morning we announced Carbon Black has expanded its relationship with IBM Security as the Cb Predictive Security Cloud PSC™ will be part of the newly launched IBM X-Force Threat Management Services to further combat advanced threats acro...

Carbon Black Strengthens Relationship with VMware, Supports Workspace ONE Trust Network

As organizations continue to move toward digital transformation, the digital workspace ecosystem of users, apps, endpoints, and networks continues to grow and evolve beyond the traditional perimeter. While the traditional perimeter dissolves, cyber threats evolve and new ones emerge. Security...

Carbon Black Denial of Service Vulnerability

Carbon Black is a suite of endpoint security solutions from US-based Carbon Black. The solution provides features such as threat monitoring, threat alerts and malicious domain lists. A security vulnerability exists in the cb.exe file in Carbon Black version 5.1.1.60603. An attacker could exploit...

Cloud & Big Data: The Future of Security – Carbon Black & VMware’s 15-City Tour “Cloud Force Security” Kicks Off Feb. 20!

Endpoint Security is Broken Attackers are innovating faster than traditional defenses can keep up. In response, the security stack has become too complicated as more products that don’t work together are introduced to fill the gaps. There is a better way. Organizations are moving their endpoint a...

Excerpts from Risk & Response: Defending Financial Institutions with Cb Response

Carbon Black recently published a guide on combating the most advanced threats that financial institutions are facing today using the marketing-leading endpoint detection and response solution, Cb Response. For more information on securing large-scale financial enterprises, including how to...

Carbon Black Wins Two Cybersecurity Excellence Awards – Best Company and Best Endpoint Security

We’re excited to announce the 2018 Cybersecurity Excellence Awards have recognized Carbon Black as the silver winner for the “Best Cybersecurity Company ” and Cb Defense with Streaming Prevention as the silver winner for the “Best Endpoint Security Product.” The 2018 Cybersecurity Excellence Awar...

Carbon Black Named a Visionary in Gartner’s 2018 Magic Quadrant for Endpoint Protection Platforms

For the second consecutive year, Carbon Black has been named a “Visionary” in Gartner’s Magic Quadrant for Endpoint Protection Platforms. For this year’s edition of the MQ, Gartner evaluated Cb Defense, our flagship solution built on the Cb Predictive Security Cloud ™ PSC. Our vision for the PSC ...

Update on Apple Security Updates for MacOS Impacting Cb Response and Cb Protection Customers

Carbon Black has now made generally available releases to Cb Protection and Cb Response to support the latest OS versions and security update Security Update 2018-001 from Apple for the following Mac sensor/agent releases: Cb Protection: Cb Protection Announcing the Release of Cb Protection 7.2.3...

January Release Brings Improved Enterprise Management to Cb Defense

As a network of computers gets larger, the challenges and risks of keep systems consistently protected and in compliance increases. This means that, with a huge number of dispersed endpoints to keep watch over, security administrators at enterprise organizations often spend too much time deployin...