Tag: Software Vulnerabilities
-
X-Force releases detection & response framework for managed file transfer software
How AI can help defenders scale detection guidance for enterprise software tools If we look back at mass exploitation events that shook the …
-
MSMQ QueueJumper (RCE Vulnerability): An In-Depth Technical Analysis
The security updates released by Microsoft on April 11, 2023, addressed over 90 individual vulnerabilities. Of particular note was …
-
BGP Software Vulnerabilities Under the Microscope in Black Hat Session
In a nod to its centrality in IP networking, a Forescout researcher will parse overlooked vulnerabilities in the Border Gateway Protocol at …
-
Key Pro Tips For Managing Software Vulnerabilities
A vulnerability refers to a security flaw in a system. An attacker may exploit a vulnerability to gain unauthorized access to resources, …
-
Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”
September’s Patch Tuesday unveiled a critical remote vulnerability in tcpip.sys, CVE-2022-34718. The advisory from Microsoft …
-
The Dangerous Flaws of Web3 Security, According To a Former Hacker
The Dangerous Flaws of Web3 Security, According To a Former Hacker “New and improved” is the refrain of progress, but new technology …
-
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1
Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1 Command & Control (C2) frameworks are a very sensitive …
-
Does Follina Mean It’s Time to Abandon Microsoft Office?
Does Follina Mean It’s Time to Abandon Microsoft Office? As a freelance writer, I spend most of my day working in Microsoft …
-
Controlling the Source: Abusing Source Code Management Systems
Controlling the Source: Abusing Source Code Management Systems For full details on this research, see the X-Force Red whitepaper …
-
X-Force Research Update: Top 10 Cybersecurity Vulnerabilities of 2021
X-Force Research Update: Top 10 Cybersecurity Vulnerabilities of 2021 From 2020 to 2021, there was a 33% increase in the number of reported …
-
Top 5 Cybersecurity Podcasts to Follow in 2022
One of my favorite parts about talking to cybersecurity professionals is asking how they landed in the industry. Few tell me about a …
●●●