Jake Williams – WindowsTechs.com

Hunter Biden emails that Trump allies shared contain signs of possible ‘tampering,’ analysis suggests

Posted on May 24, 2022 by AJ Vicens

Researchers shared the data to provide a more complete context about the data and questions surrounding it, they said.

The post Hunter Biden emails that Trump allies shared contain signs of possible ‘tampering,’ analysis suggests appeared first on CyberScoop.

Continue reading Hunter Biden emails that Trump allies shared contain signs of possible ‘tampering,’ analysis suggests→

After remote-code test, DHS sounds the alarm on BlueKeep

Posted on June 17, 2019 by Sean Lyngaas

The Department of Homeland Security has added its voice to a chorus of government and corporate cybersecurity professionals urging users to patch their systems for BlueKeep, a critical vulnerability recently reported in old Microsoft Windows operating systems. DHS’s Cybersecurity and Infrastructure Security Agency said Monday said it had used the BlueKeep vulnerability to execute remote code on a test machine operating Windows 2000. The agency released an advisory reiterating that, like the famed WannaCry ransomware, BlueKeep is “wormable,” in that malware exploiting the vulnerability could spread to other systems. The BlueKeep vulnerability, for which Microsoft published an advisory on May 14, could allow a hacker to abuse the popular Remote Desktop Protocol, which grants remote access to computers for administrative purposes, to delete data or install new programs on a system. When it was disclosed, security experts immediately warned of BlueKeep’s severity, and as of last week, close to 1 million internet-exposed machines were still vulnerable […]

The post After remote-code test, DHS sounds the alarm on BlueKeep appeared first on CyberScoop.

Continue reading After remote-code test, DHS sounds the alarm on BlueKeep→

Jake Williams, SANS – Paul’s Security Weekly #543

Posted on January 15, 2018 by Paul Asadoorian

Jake Williams is the founder of Rendition Infosec and is a Senior Instructor at the SANS Institute. MalwareJake clears last weeks news story with the latest news on Meltdown and Spectre. He joins us this week for an interview! Full Show Notes Subscribe… Continue reading Jake Williams, SANS – Paul’s Security Weekly #543→

Super-stealthy attackers used NSA exploit weeks before WannaCry

Posted on May 19, 2017 by Shaun Waterman

Weeks before the WannaCry ransomware spread like wildfire through unpatched Windows systems, a more sophisticated, stealthier attacker used the same NSA-engineered cyberweapon to infiltrate the IT networks of companies across the world, including at least one publicly traded in the U.S., according to new research. So stealthy was the fileless, in-memory attack, which hides itself inside the activity of a legitimate application, that it evaded five different security products running on the infected system, Gil Barak, CTO of Israeli cybersecurity firm Secdo told CyberScoop. Those products included so-called “next generation” filters that don’t rely on known signatures, he said. “Not only did they not stop the attack, they couldn’t even see it,” he said. Attackers using the technique “can pretty much do what they want, unnoticed — and then vanish.” Barak wrote a blog post on the attack and appeared with noted security researcher Jake Williams on a webcast this week where the two discussed the […]

The post Super-stealthy attackers used NSA exploit weeks before WannaCry appeared first on Cyberscoop.

Continue reading Super-stealthy attackers used NSA exploit weeks before WannaCry→

NSA’s DoublePulsar Kernel Exploit In Use Internet-Wide

Posted on April 24, 2017 by Michael Mimoso

Scans show tens of thousands of Windows servers infected with the DoublePulsar kernel exploit leaked by the ShadowBrokers two weeks ago. Continue reading NSA’s DoublePulsar Kernel Exploit In Use Internet-Wide→