Collaborate Disseminate
Back in 2017, Microsoft announced a vulnerability in their Equation Editor, dubbed CVE-2017-11882. This memory corruption vulnerability allowed attackers to execute malicious code in the context of the exploited user. Here we are in 2020 and the vulner… Continue reading Phish Fryday – Phishing with the Microsoft Equation Editor Vulnerability
2019 saw an increase in ransomware attacks against public organizations, as we witnessed numerous headlines reporting outages and ransom demands. With ransom payments being made, should we expect to see these attacks increase? In this episode we speak … Continue reading Phish Fryday – Ransomware Trends
2019 saw an increase in ransomware attacks against public organizations, as we witnessed numerous headlines reporting outages and ransom demands. With ransom payments being made, should we expect to see these attacks increase? In this episode we speak … Continue reading Phish Fryday – Ransomware Trends
URL Scanners are a great way to investigate potentially malicious websites in a low-risk way. Attackers, however, are adapting to these tools to escape detection and keep the pressure on defenders. In this episode, we speak with Cofense Security Consul… Continue reading Phish Fryday – URL Scanners as Part of Phishing Defense
Automation with macros in Microsoft Office documents has been with us for decades. The abuse of these macros has been with us for almost as long, as attackers leverage the functionality – and the common permissions needed to run them – to … Continue reading Phish Fryday – Office Macros in Phishing Attacks
Automation with macros in Microsoft Office documents has been with us for decades. The abuse of these macros has been with us for almost as long, as attackers leverage the functionality – and the common permissions needed to run them – to … Continue reading Phish Fryday – Office Macros in Phishing Attacks
Automation with macros in Microsoft Office documents has been with us for decades. The abuse of these macros has been with us for almost as long, as attackers leverage the functionality – and the common permissions needed to run them – to … Continue reading Phish Fryday – Office Macros in Phishing Attacks
Cloud platforms, such as Google Docs, Microsoft OneDrive, and Dropbox provide tremendous value to organizations looking to collaborate. Unfortunately, there are plenty of attackers willing to leverage our trust in these platforms for their own gain. On… Continue reading Phish Fryday – Cloud Services in Phishing Attacks
Cloud platforms, such as Google Docs, Microsoft OneDrive, and Dropbox provide tremendous value to organizations looking to collaborate. Unfortunately, there are plenty of attackers willing to leverage our trust in these platforms for their own gain. On… Continue reading Phish Fryday – Cloud Services in Phishing Attacks
As the situation between Iran and the United States escalates, there has been considerable speculation as to how Iran might respond to the recent actions of the US. In this episode, we speak with Mollie MacDougall, an expert on cyber and international … Continue reading Phish Fryday – Tension between Iran and the US Increases Cyber Threat