Introduction In February 2021, the company Dbappsecurity discovered a sample in the wild that exploited a zero-day vulnerability on Windows…
The post Technical Analysis of CVE-2021-1732 appeared first on McAfee Blogs.
Your Cybersecurity Comic Relief Why am I here? If you’re reading these words, CONGRATULATIONS! You’ve made it to 2022! And even better,…
The post The Bug Report – December 2021 appeared first on McAfee Blogs.
Overview: On December 9th, a vulnerability (CVE-2021-44228) was released on Twitter along with a POC on Github for the Apache…
The post Log4Shell Vulnerability is the Coal in our Stocking for 2021 appeared first on McAfee Blogs.
Your Cybersecurity Comic Relief CVE-2021-20322: Of all the words of mice and men, the saddest are, “it was DNS again.” …
The post The Bug Report – November Edition appeared first on McAfee Blogs.
The time to repurpose vulnerabilities into working exploits will be measured in hours and there’s nothing you can do about…
The post Zero Care About Zero Days appeared first on McAfee Blogs.
McAfee Enterprise and FireEye recently teamed to release their 2022 Threat Predictions. In this blog, we take a deeper dive…
The post Cloud API Services, Apps and Containers Will Be Targeted in 2022 appeared first on McAfee Blogs.
This month brings us yet another critical RCE (Remote Code Execution) bug found in the RDP (Remote Desktop Protocol) Client…
The post Windows RDP Client Porting Critical Vulnerabilities to Hyper-V Manager appeared first on McAfee Blogs.
The holiday season is upon us, and many are preparing to celebrate with family and friends both near and far….
The post ‘Tis The Season for Holiday Cyber Threats Targeting Enterprises in a Pandemic World appeared first on McAfee Blogs.
McAfee Enterprise and FireEye recently released its 2022 Threat Predictions. In this blog, we take a deeper dive into a…
The post Who Will Bend the Knee in RaaS Game of Thrones in 2022? appeared first on McAfee Blogs.
Your Cyber Security Comic Relief Apache server version 2.4.50 (CVE-2021-42013) Why am I here? Regardless of the origins, you’ve arrived…
The post The Bug Report – October Edition appeared first on McAfee Blogs.
McAfee Enterprise and FireEye recently released its 2022 Threat Predictions. In this blog, we take a deeper dive into the…
The post Nation States Will Weaponize Social and Recruit Bad Guys with Benefits in 2022 appeared first on McAfee Blogs.
What cyber security threats should enterprises look out for in 2022? Ransomware, nation states, social media and the shifting reliance…
The post McAfee Enterprise & FireEye 2022 Threat Predictions appeared first on McAfee Blogs.
Introduction Going by recent headlines you could be forgiven for thinking all ransomware operators are raking in millions of ill-gotten…
The post Is There Really Such a Thing as a Low-Paid Ransomware Operator? appeared first on McAfee Blogs.
The increasing prevalence of ransomware tops the findings of the McAfee Enterprise Advanced Threat Research Report: October 2021 released today….
The post McAfee Enterprise Advanced Threat Research Report: Ransomware’s Increasing Prevalence appeared first on McAfee Blogs.
Overview On March 21st, 2021, the McAfee Enterprise Advanced Threat Research (ATR) team released several vulnerabilities it discovered in the…
The post Finding 0-days with Jackalope appeared first on McAfee Blogs.
Executive Summary Today, enterprises tend to use multiple layers of security defenses, ranging from perimeter defense on network entry points…
The post Detecting Credential Stealing Attacks Through Active In-Network Defense appeared first on McAfee Blogs.
Why am I here? There’s a lot of information out there on critical vulnerabilities; this short bug report contains an…
The post The Bug Report | September 2021: CVE-2021-40444 appeared first on McAfee Blogs.
A special thanks to our Professional Services’ IR team, ShadowServer, for historical context on C2 domains, and Thomas Roccia/Leandro Velasco…
The post Operation ‘Harvest’: A Deep Dive into a Long-term Campaign appeared first on McAfee Blogs.
Summary McAfee Enterprise’s Advanced Threat Research (ATR) team provided deep insight into a long-term campaign Operation Harvest. In the blog,…
The post McAfee Defender’s Blog: Operation Harvest appeared first on McAfee Blogs.
Co-authored with Intel471 and McAfee Enterprise Advanced Threat Research (ATR) would also like to thank Coveware for its contribution. Executive…
The post How Groove Gang is Shaking up the Ransomware-as-a-Service Market to Empower Affiliates appeared first on McAfee Blogs.
Overview As part of our continued goal to provide safer products for enterprises and consumers, we at McAfee Advanced Threat…
The post McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump appeared first on McAfee Blogs.
Cyberattacks on medical centers are one of the most despicable forms of cyber threat there is. For instance, on October…
The post Overmedicated: Breaking the Security Barrier of a Globally Deployed Infusion Pump appeared first on McAfee Blogs.
This month’s Patch Tuesday brings us a relatively small number of CVEs being patched, but an abnormally high percentage of…
The post Critical RDP Vulnerabilities Continue to Proliferate appeared first on McAfee Blogs.
Introduction The DotNet based CyaX-Sharp loader, also known as ReZer0, is known to spread commodity malware, such as AgentTesla. In…
The post See Ya Sharp: A Loader’s Tale appeared first on McAfee Blogs.