Collaborate Disseminate
CEO Fraud scams, a type of Business Email Compromise (BEC), have gained popularity among scammers recently. These scams use the power of the CEO’s name to try and elicit a response from a targeted employee of an organization. For more…
Continue reading Malware Authors Adopt CEO Fraud Techniques
Email scams known as “CEO Fraud” are very common right now. They are a type of “Business Email Compromise” (BEC). There have been numerous recent cases reported in the media, and we too, are seeing many reports by our customers….
Continue reading CEO Fraud Scams and How to Deal With Them at the Gateway
Email scams known as “CEO Fraud” are very common right now. They are a type of “Business Email Compromise” (BEC). There have been numerous recent cases reported in the media, and we too, are seeing many reports by our customers….
Continue reading CEO Fraud Scams and How to Deal With Them at the Email Gateway
Background As an Incident Responder I get the unique opportunity to see a lot of malware and in most cases that I investigate, the malware is of the card number stealing type. To be more specific, I deal with a…
Continue reading PoSeidon Adventures in Memory
Background As an Incident Responder I get the unique opportunity to see a lot of malware and in most cases that I investigate, the malware is of the card number stealing type. To be more specific, I deal with a…
Continue reading PoSeidon Adventures in Memory
After patching set of issues reported by Trustwave SpiderLabs last month, Lenovo released another version of its Lenovo Solution Center software to address new security holes. Specifically, we at Trustwave SpiderLabs found that the new version (3.3.002… Continue reading About Lenovo Solution Center 3.3.002 Vulnerabilities (CVE-2016-5249)
After patching set of issues reported by Trustwave SpiderLabs last month, Lenovo released another version of its Lenovo Solution Center software to address new security holes. Specifically, we at Trustwave SpiderLabs found that the new version (3.3.002… Continue reading About Lenovo Solution Center 3.3.002 Vulnerabilities (CVE-2016-5249)
After patching set of issues reported by Trustwave SpiderLabs last month, Lenovo released another version of its Lenovo Solution Center software to address new security holes. Specifically, we at Trustwave SpiderLabs found that the new version (3.3.002… Continue reading About Lenovo Solution Center 3.3.002 Vulnerabilities (CVE-2016-5249)
Introduction In Part 1 of this tutorial, we have demonstrated how to find useful ROP gadgets and build a privilege escalation ROP chain for our test system (3.13.0-32 kernel – Ubuntu 12.04.5 LTS). We have also developed a vulnerable kernel…
Continue reading Linux Kernel ROP – Ropping your way to # (Part 2)
Introduction In Part 1 of this tutorial, we have demonstrated how to find useful ROP gadgets and build a privilege escalation ROP chain for our test system (3.13.0-32 kernel – Ubuntu 12.04.5 LTS). We have also developed a vulnerable kernel…
Continue reading Linux Kernel ROP – Ropping your way to # (Part 2)