e92plus Blog

How a data breach left two Equifax executives jobless and eroded public trust overnight

Sep 20, 2017, 08:58 AM Ben Gane

One of the biggest consumer credit reporting agencies in the United States is learning a harsh lesson. A massive breach that affected personal information of 143 million U.S. consumers has led to the forced retirement of Equifax’s...


Read More

Spotting fake invoice scams – think twice before you pay that invoice!

Sep 19, 2017, 09:55 AM Ben Gane

CEO Fraud is a scam where cybercriminals spoof company email accounts and impersonate executives to try to get an employee in accounting or finance to authorize wire transfers, or send out confidential tax information...


Read More

Introducing Burplay, A Burp Extension for Detection Privilege Escalations

Sep 19, 2017, 09:46 AM Ben Gane

The seventh entry on the most recent OWASP Top 10 release (from 2013, due to the 2017 release candidate being rejected!) is "Missing Function Level Access Control", which is essentially what leads to Privilege Escalation issues. This common...


Read More

Ransomware attacks increase 300% in 2016

Sep 18, 2017, 15:08 PM Jenna Clements

In 2016, the number of ransomware attacks increased 300 percent from 2015, with over 4,000 attacks detected per day, according to US government statistics...


Read More

RAMNIT: The Comeback Story of 2016

Sep 18, 2017, 15:08 PM Ben Gane

Earlier this year, Action Fraud, the UK’s fraud and cybercrime reporting center, issued a warning that cyber criminals were taking advantage of generous individuals by sending phishing emails purportedly from Migrant Helpline, a charity organization dedicated to assisting migrants...


Read More

Ransomware targets US SMBs due to weaker protection and greater willingness to pay up

Sep 18, 2017, 15:07 PM Ben Gane

Attackers are now targeting small and medium businesses to extort higher fees, a Bitdefender survey shows, meeting the company’s predictions for 2017. One in five small and medium businesses (SMBs) in the US reported a ransomware...


Read More

Ransomware & Advanced Attacks: Servers are Different

Sep 18, 2017, 15:07 PM Ben Gane

Ransomware and other advanced attacks are the scourge of the modern IT security team. If allowed to gain access to your IT environment, these attacks could shut down the organization, denying access to mission critical...


Read More

Ransomware targeting embedded systems? Not that far-fetched

Sep 18, 2017, 15:07 PM Ben Gane

The Internet of Things may consist mostly of new technology, but these new products aren’t the only members of the IoT family. Embedded systems, some created before IoT was even a thing, are often equipped with add-ons for remote access...


Read More

PsExec & WMIC – Admin Tools, Techniques, and ProceduresPSEXEC & WMIC – ADMIN TOOLS, TECHNIQUES, AND PROCEDURES

Sep 18, 2017, 15:07 PM Ben Gane

The June 2017 Petya (Petna, Petrwrap, etc.) outbreak injected some much un-needed excitement into an IT sector just starting to come to terms with the implications of the WannaCry outbreak a few weeks beforehand...


Read More

PsExec & WMIC - admin tools, techniques & procedures

Sep 18, 2017, 15:06 PM Ben Gane

As with WannaCry, the what and where parts of the analysis have been thoroughly covered by this point, albeit with some tug-of-war over semantics: whether the malware was released in an unfinished state or what...


Read More
Back
to Top