anti-hacking

🛡️ anti-hacking: Comprehensive Defensive Security Knowledge Ba...

New BYOVD loader behind DeadLock ransomware attack

While tracking ransomware activities, Cisco Talos uncovered new tactics, techniques, and procedures TTPs linked to a financially motivated threat actor targeting victims with DeadLock ransomware. The actor used the Bring Your Own Vulnerable Driver BYOVD technique with a previously unknown loader ...

WatchGuard EPDR Security Vulnerability

WatchGuard EPDR is an application from WatchGuard USA, Inc. prevents, detects and responds to any type of known and unknown malware as well as fileless and malware-free attacks. A security vulnerability exists in WatchGuard EPDR version 8.0.21.0002, which stems from the fact that an attacker can...

Maze Ransomware Adopts Ragnar Locker Virtual-Machine Approach

The operators of the Maze ransomware have added a fresh trick to their bag of badness: Distributing ransomware payloads via virtual machines VM. It’s a “radical” approach, according to researchers, meant to help the ransomware get around endpoint defense. That’s according to researchers with Soph...

CB Customer Spotlight: Q&A with University of Tennessee Health Science Center’s Ammar Ammar

For years, Ammar Ammar had been working his way across the IT landscape in various roles, but it was an interest in security that made him take a different step in his career path. That change led him to his current role as an IT Security Analyst at the University of Tennessee Health Science Cent...

Partner Perspectives: The Speed of Prevention – eSentire + Carbon Black

Editor's Note: This blog originally appeared on eSentire.com. Let’s start with a brief history lesson. In September 2016, eSentire and Carbon Black™ announced a strategic partnership in conjunction with launching esENDPOINT built on CB Response to augment our market-leading Managed Detection and...

Sophos Endpoint Protection Anti-tamper Protection Mechanism Bypass Vulnerability

Sophos Endpoint Protection helps protect your workstation by adding prevention, detection and response technologies to your operating system. A tamper protection mechanism bypass vulnerability exists in Sophos Endpoint Protection 10.7. A local user can exploit this vulnerability to bypass the...

Sophos Endpoint Protection 10.7 Tamper Protection Bypass

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SOPHOS-ENDPOINT-PROTECTION-v10.7-TAMPER-PROTECTION-BYPASS-CVE-2018-4863.txt + ISR: Apparition Security Vendor: ============= www.sophos.com Product: =========== Sophos...

Sophos Endpoint Protection 10.7 Tamper Protection Bypass Vulnerability

Sophos Endpoint Protection version 10.7 suffers from a tamper protection bypass vulnerability. + Credits: John Page aka hyp3rlinx Vendor: ============= www.sophos.com Product: =========== Sophos Endpoint Protection v10.7 Sophos Endpoint Protection helps secure your workstation by adding preventio...