ShieldFS Can Detect Ransomware, Recover Files
At Black Hat last week, an add-on Windows driver and filesystem called ShieldFS was unveiled that detects ransomware and recovers files. Continue reading ShieldFS Can Detect Ransomware, Recover Files
Author Archives: Michael Mimoso
Microsoft Releases Outlook and Office Click-to-Run Patches
Microsoft patched three new Outlook vulnerabilities and re-released updates from a broken June update. Continue reading Microsoft Releases Outlook and Office Click-to-Run Patches
ShadowBrokers Remain an Enigma
As we approach the first anniversary of the ShadowBrokers, their true identity and source of their stolen NSA exploits remains a mystery. Continue reading ShadowBrokers Remain an Enigma
Vulnerable Radiation Monitoring Devices Won’t Be Patched
Three radiation monitoring device vendors will not patch a handful of vulnerabilities that could be abused by hackers, including a backdoor that affords high privileges on one device. Continue reading Vulnerable Radiation Monitoring Devices Won’t Be Patched
Facebook Security Boss: Empathy, Inclusion Must Come to Security
At Black Hat, Facebook CSO Alex Stamos’ keynote message was one of bringing empathy and inclusion to security, and that it’s time to stop being insular. Continue reading Facebook Security Boss: Empathy, Inclusion Must Come to Security
Windows SMB Zero Day to Be Disclosed During DEF CON
Microsoft has said it will not patch a two-decade-old Windows SMB vulnerability, called SMBloris because it behaves comparably to the Slowloris attacks. The flaw will be disclosed and demonstrated during DEF CON. Continue reading Windows SMB Zero Day to Be Disclosed During DEF CON
Academia’s Role in Security Skills Gap Examined
At Black Hat, two RIT professors are expected to deliver a talk about the professional skills gap in security and how academic programs are falling short. Continue reading Academia’s Role in Security Skills Gap Examined
Black Hat USA 2017 Preview
Mike Mimoso and Tom Spring preview Black Hat, which starts tomorrow in Las Vegas. Continue reading Black Hat USA 2017 Preview
Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability
Researcher Paulos Yibelo said that Dashlane elected not to patch a vulnerability he disclosed more than a year ago in all versions of the password manager application. Continue reading Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability
macOS Fruitfly Backdoor Analysis Renders New Spying Capabilities
This week at Black Hat, Mac malware expert Patrick Wardle will describe how he used a custom-built command and control server to analyze new spying capabilities in a variant of the FruitFly backdoor. Continue reading macOS Fruitfly Backdoor Analysis Renders New Spying Capabilities