Collaborate Disseminate
Home routers are the first and sometimes last line of defense for a network. Despite this fact, many manufacturers of home routers fail to properly audit their devices for security issues before releasing them to the market. As security researchers,…
Continue reading CVE-2017-5521: Bypassing Authentication on NETGEAR Routers
Bad guys are getting quite creative trying to evade spam filters and antivirus scanners. Last week, we have observed an influx of spam campaign targeting a Japanese audience. Translated to English: Subject: Photo We always appreciate your regards. (Thi… Continue reading SVG Files Are Not As Benign As It May Seem
A note from the Trustwave Spiderlabs ModSecurity team: The following blog was written at the culmination of the Google Summer Of Code (GSOC) program by Akhil Koul. The ModSecurity team mentored Akhil to help enhance the open source ModSecurity project…
Continue reading Creating the ModSecurity v3 IDS connector as part of Google Summer of Code
This post will discuss two separate Local Privilege Escalation vulnerabilities in the McAfee Security Scan Plus product. You’ve probably seen it coming with Adobe Flash installer for Windows as an add-on. This product installs as a Windows Service runn… Continue reading Two Privilege Escalation Vulnerabilities in McAfee Security Scan Plus
Have you ever seen a rule for ModSecurity? They may look similar to the following: SecRule REQUEST_URI “@endswith example.com/index.html” “id:1,log,deny,redirect:http://modsecurity.org” This rule may look complicated, but it is extremely basic. It says… Continue reading Is ModSecurity’s SecRules Turing Complete?
The Trustwave SpiderLabs team has been actively tracking a malicious campaign conducted by the well-known Carbanak Cybercrime group for the latter part of 2016 and into 2017. Carbanak is one of the most prolific organized Russian cybercrime groups and … Continue reading Operation Grand Mars: a comprehensive profile of Carbanak activity in 2016/17
The Trustwave SpiderLabs team has been actively tracking a malicious campaign conducted by the well-known Carbanak Cybercrime group for the latter part of 2016 and into 2017. Carbanak is one of the most prolific organized Russian cybercrime groups and … Continue reading Operation Grand Mars: a comprehensive profile of Carbanak activity in 2016/17
Release Summary We have just released Corsigs version 4.45 for users of Trustwave Web Application Firewall (WAF) 7.0 and 8.0. These new rules help protect users’ Web applications against malicious traffic targeting the vulnerabilities listed below. Slow Client Attacks –… Continue reading Trustwave Web Application Firewall Signature Update 4.45 Now Available
Mars The Trustwave SpiderLabs Incident Response team has been actively tracking a malicious campaign conducted by the well-known Carbanak Cybercrime group for the latter part of 2016 and into 2017. Carbanak is one of the most prolific organized Russian… Continue reading Operation Grand Mars: a comprehensive profile of Carbanak activity in 2016/17
The Trustwave SpiderLabs team has been actively tracking a malicious campaign conducted by the well-known Carbanak Cybercrime group for the latter part of 2016 and into 2017. Carbanak is one of the most prolific organized Russian cybercrime groups and … Continue reading Operation Grand Mars: a comprehensive profile of Carbanak activity in 2016/17