EUVD-2019-7595

Malware in sbrugna...

APT Trends report Q2 2017

Introduction Since 2014, Kaspersky Lab's Global Research and Analysis Team GReAT has been providing threat intelligence reports to a wide-range of customers worldwide, leading to the delivery of a full and dedicated private reporting service. Prior to the new service offering, GReAT published...

PT-2017-4163

Name of the Vulnerable Software and Affected Versions Artifex Ghostscript versions through 2017-04-26 Description The issue is related to a type confusion vulnerability in the .rsdparams operator, allowing remote command execution and bypass of the -dSAFER protection mechanism. This can be achiev...

New RAT Targets Koreans And Is Skilled At Evading Detection

Researchers have identified a stealthy new remote access tool dubbed ROKRAT that leverages a bevy of anti-detection measures. The RAT targets the Korean language Microsoft Word alternative Hangul Word Processor HWP. ROKRAT was detected several weeks ago by Cisco Talos, who said the malware is par...

Vigilant in the use of Microsoft Office EPS vulnerability-vulnerability warning-the black bar safety net

Introduction Recently, APT and early warning platform to capture to an attack sample, after analysis, the sample may wish to make use of CVE-2 0 1 5-2 5 4 5 attack, and have a higher attack level. Analysis The sample is an Encapsulated PostScript EPS filter module32bit module for EPSIMP32. FLTin ...

The EPS Awakens

On September 8, FireEye published details about an attack exploiting zero day vulnerabilities in Microsoft Office CVE-2015-2545 and Windows CVE-2015-2546. The attack was particularly notable because it leveraged PostScript to drive memory corruption in a way that had never been seen before. The...