A Zebrocy Go Downloader
Last year at SAS2018 in Cancun, Mexico, “Masha and these Bears” included discussion of a subset of Sofacy activity and malware that we call...
The world’s southernmost security conference
When asked about his best race, Ayrton Senna replied that it was when he raced karting cars. For him it was the best because...
Dynamic Content Acceleration in Imperva CDN Improves Enterprise Website Performance
Today we introduced a new dynamic content acceleration network enhancement feature designed to improve response times to the origin server by up to 30%.
Clients...
The State of Web Application Vulnerabilities in 2018
(Jan. 12 update: Due to a data transfer error, some of the 2017 figures were incorrectly reported; this version of the blog has been corrected....
Scapy-sploit: Python Network Tool is Vulnerable to Denial of Service (DoS) Attack CVE pending
We recently discovered that the latest version of Scapy, a powerful packet manipulation tool used by cybersecurity researchers and network engineers, is susceptible to...
Lessons from Gemalto’s 2018 Breach Report
Lessons from Gemalto's 2018 Breach Report #outlook a{ padding:0; } body{ width:100%...
The State of Cyber Security in Healthcare
The privacy and security concerns associated with digital patient records make the healthcare industry one of the most regulated industries in the United States....
Cybersecurity Is Everyone’s Job
Cybersecurity Is Everyone's Job #outlook a{ padding:0; } body{ width:100% !important; }...
Latest article
Hackers Use Six-Layer Persistence to Maintain Access on Compromised FreePBX Systems
A hacker group known as INJ3CTOR3 has been running an active campaign against FreePBX systems, deploying a newly discovered PHP webshell called JOMANGY that...
Metasploit Wrap Up 05/22/2026
Another week, another authentication bypassOur humble Metasploit weekly(ish) blog has been blessed with a new network component vulnerability. The dynamic duo of @sfewer-r7 and...
FBI warns of Kali Oauth stealers
The FBI has warned of the danger from a new wave of phishing attacks generated by a tool called Kali365....
Microsoft Warns: Windows Zero-Day ‘YellowKey’ Can Bypass BitLocker
Microsoft has released a temporary mitigation for YellowKey, a Windows zero-day that can reportedly bypass BitLocker protections.
The post Microsoft Warns: Windows Zero-Day ‘YellowKey’ Can...
