Category Archives: Security Research

Are you an adrenaline junkie who takes risks with security?

Posted on August 29, 2017 by Kim Crawley

How much of a link is there between risky online behavior and taking care with your security? A researcher has been trying to find out Continue reading Are you an adrenaline junkie who takes risks with security?→

Marcus Hutchins’ Only Certainty is Uncertainty

Posted on August 7, 2017 by Michael Mimoso

WannaCry hero Marcus Hutchins pleaded not guilty last week could be freed today on $30,000 bond before the case moves to Wisconsin. Continue reading Marcus Hutchins’ Only Certainty is Uncertainty→

Hacker Says He Broke Through Samsung’s Secure Smartphone Platform

Posted on July 26, 2017 by Joseph Cox

When his rooting exploit worked on plenty of Android devices but failed on the Samsung Galaxy S7 Edge, researcher Di Shen decided to dig into KNOX. Continue reading Hacker Says He Broke Through Samsung’s Secure Smartphone Platform→

Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability

Posted on July 24, 2017 by Michael Mimoso

Researcher Paulos Yibelo said that Dashlane elected not to patch a vulnerability he disclosed more than a year ago in all versions of the password manager application. Continue reading Dashlane, Researcher at Odds Over Potential Privilege Escalation Vulnerability→

The Limits of Linguistic Analysis for Security Attribution

Posted on July 14, 2017 by David Strom

Linguistic analysis can provide clues to help security analysts trace the source of a cyberattack, but the method is inconclusive on its own.

The post The Limits of Linguistic Analysis for Security Attribution appeared first on Security Intelligence.

Continue reading The Limits of Linguistic Analysis for Security Attribution→

Platinum APT First to Abuse Intel Chip Management Feature

Posted on June 9, 2017 by Michael Mimoso

Microsoft has found a file-transfer tool used by the Platinum APT that leverages Intel Active Management Technology to stealthily load malware onto networked computers. Continue reading Platinum APT First to Abuse Intel Chip Management Feature→

NSA’s EternalBlue Exploit Ported to Windows 10

Posted on June 6, 2017 by Michael Mimoso

Researchers have ported the EternalBlue exploit to Windows 10, meaning that any unpatched version of Windows can be affected by the NSA attack. Continue reading NSA’s EternalBlue Exploit Ported to Windows 10→

40,000 Subdomains Tied to RIG Exploit Kit Shut Down

Posted on June 5, 2017 by Michael Mimoso

GoDaddy, along with researchers from RSA Security and other companies, shut down tens of thousands of illegal established subdomains tied to the RIG Exploit Kit. Continue reading 40,000 Subdomains Tied to RIG Exploit Kit Shut Down→

WannaCry Development Errors Enable File Recovery

Posted on June 1, 2017 by Michael Mimoso

Researchers at Kaspersky Lab have found a number of programming errors in the WannaCry ransomware code that put file recovery within reach of sysadmins. Continue reading WannaCry Development Errors Enable File Recovery→

ShadowBrokers Put Price on Monthly Zero Day Leaks

Posted on May 30, 2017 by Michael Mimoso

The ShadowBrokers announced details on how to subscribe to its Monthly Dump Service, which is available for 100 Zcash. Continue reading ShadowBrokers Put Price on Monthly Zero Day Leaks→