Blog - Cyber Security Informer

SAST vs DAST vs SCA?

Security Boulevard

JULY 28, 2021

Learn about the differences between SAST, DAST, and SCA in our blog post here: SAST vs. DAST vs. SCA: A Comparison. Also called “Static Analysis Security Testing”. Examines an application’s custom source code or binary to find vulnerabilities such as the OWASP top ten and information leaks.

Software

Software Technology Engineering Cybersecurity

Top Takeaways From The “Knowing The Unfuzzed And Finding Bugs With Coverage Analysis” Webinar

ForAllSecure

MARCH 31, 2020

ForAllSecure security researcher, Mark Griffin, sought to identify a solution to those that struggle with these questions and points to one possible solution: automated coverage analysis. Coverage analysis can be done with tools and workflows that are uncommon among software developers and security researchers alike.

Marketing

Marketing Education Software Engineering

Top Takeaways From The “Knowing The Unfuzzed And Finding Bugs With Coverage Analysis” Webinar

ForAllSecure

MARCH 31, 2020

ForAllSecure security researcher, Mark Griffin, sought to identify a solution to those that struggle with these questions and points to one possible solution: automated coverage analysis. Coverage analysis can be done with tools and workflows that are uncommon among software developers and security researchers alike.

Marketing

Marketing Education Software Engineering

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

TOP TAKEAWAYS FROM THE “KNOWING THE UNFUZZED AND FINDING BUGS WITH COVERAGE ANALYSIS” WEBINAR

ForAllSecure

MARCH 31, 2020

ForAllSecure security researcher, Mark Griffin, sought to identify a solution to those that struggle with these questions and points to one possible solution: automated coverage analysis. Coverage analysis can be done with tools and workflows that are uncommon among software developers and security researchers alike.

Marketing

Marketing Education Software Engineering

Operation TunnelSnake

SecureList

MAY 6, 2021

With Microsoft’s introduction of Driver Signature Enforcement, it has become harder (though not impossible) to load and run new code in kernel space. More details and analysis are available to customers of our private APT reporting service. This hinders analysis and makes it difficult to trace the attacker’s footprints.

Malware

Malware Architecture Engineering Technology

Firmware Fuzzing 101

ForAllSecure

DECEMBER 16, 2020

This is a blog post for advanced users with binary analysis experience. Binary Ninja (or other disassembler) and a strong knowledge of reverse engineering. We will be looking at MIPS assembly code using Binary Ninja's high level intermediate language (HLIL). Lack of available source code or documentation.

Firmware

Firmware Architecture Engineering Authentication

Firmware Fuzzing 101

ForAllSecure

DECEMBER 15, 2020

This is a blog post for advanced users with binary analysis experience. Binary Ninja (or other disassembler) and a strong knowledge of reverse engineering. We will be looking at MIPS assembly code using Binary Ninja's high level intermediate language (HLIL). Lack of available source code or documentation.

Firmware

Firmware Architecture Engineering Authentication

Sunburst backdoor – code overlaps with Kazuar

SecureList

JANUARY 11, 2021

On December 13, 2020, FireEye published a blog post detailing a supply chain attack leveraging Orion IT, an infrastructure monitoring and management platform by SolarWinds. In a previous blog, we dissected the method used by Sunburst to communicate with its C2 server and the protocol by which victims are upgraded for further exploitation.

Malware

Malware Media Internet Internet

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump

McAfee

AUGUST 24, 2021

For a brief overview please see our summary blog here. The infusion pump industry has numerous devices which have not been researched publicly at all, and even more that only received a cursory analysis from the information security community. Table of Contents. Background. What are Infusion Pumps? Project Motivation.

Computers and Electronics

Computers and Electronics Authentication Software Risk

Behavior vs. Execution Modality

Security Boulevard

MAY 21, 2024

In his March 2018 blog post , Rohan Vazarkar (CptJesus) wrote about some of the mechanisms SharpHound uses, the data collection component of the BloodHound project, to collect the necessary data for projecting attack paths. As a result of this analysis, we have a new function call stack starting with netapi32!NetSessionEnum,

Computers and Electronics

Computers and Electronics Engineering Accountability System Administration

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

Security Affairs

FEBRUARY 16, 2021

In short, part of these trojan families are using padding to enlarge the binary; empty sections or even BPM images attached as a resource as described in this article related to the Grandoreiro trojan. In fact, legitimate applications are digitally signed with an Authenticode (code-signing) certificate.

Antivirus

Antivirus Malware Banking Internet

No Honor Among Thieves – Prynt Stealer’s Backdoor Exposed

Security Boulevard

SEPTEMBER 1, 2022

However, Zscaler ThreatLabz researchers have uncovered the Prynt Stealer builder, also attributed with WorldWind, and DarkEye, has a secret backdoor in the code that ends up in every derivative copy and variant of these malware families. AsyncRAT/StormKitty Code Comparison. Prynt Stealer Origins.

Malware

Malware Banking Marketing Cryptocurrency

Game Theory: Why System Security Is Like Poker, Not Chess

ForAllSecure

MAY 18, 2020

For example, how does a defenders’ strategy change if the cost of being exploited is $10 vs. $1 million? Suppose Blue found a new zero-day using either: A widely-available fuzzer, like AFL , after two days of analysis. Google uses open source tools in their open source fuzzing to find bugs before attackers.

Energy and Utilities

Energy and Utilities Risk Software Hacking

Game Theory: Why System Security Is Like Poker, Not Chess

ForAllSecure

MAY 18, 2020

For example, how does a defenders’ strategy change if the cost of being exploited is $10 vs. $1 million? Suppose Blue found a new zero-day using either: A widely-available fuzzer, like AFL , after two days of analysis. Google uses open source tools in their open source fuzzing to find bugs before attackers.

Energy and Utilities

Energy and Utilities Risk Software Hacking

GAME THEORY: WHY SYSTEM SECURITY IS LIKE POKER, NOT CHESS

ForAllSecure

MAY 18, 2020

For example, how does a defenders’ strategy change if the cost of being exploited is $10 vs. $1 million? Suppose Blue found a new zero-day using either: A widely-available fuzzer, like AFL , after two days of analysis. Google uses open source tools in their open source fuzzing to find bugs before attackers.

Energy and Utilities

Energy and Utilities Risk Software Hacking

Cyber Security Informer

SAST vs DAST vs SCA?

Top Takeaways From The “Knowing The Unfuzzed And Finding Bugs With Coverage Analysis” Webinar

Webinars

Trending Sources

Top Takeaways From The “Knowing The Unfuzzed And Finding Bugs With Coverage Analysis” Webinar

Webinars

TOP TAKEAWAYS FROM THE “KNOWING THE UNFUZZED AND FINDING BUGS WITH COVERAGE ANALYSIS” WEBINAR

Operation TunnelSnake

Firmware Fuzzing 101

Firmware Fuzzing 101

Sunburst backdoor – code overlaps with Kazuar

McAfee Enterprise ATR Uncovers Vulnerabilities in Globally Used B. Braun Infusion Pump

Behavior vs. Execution Modality

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

No Honor Among Thieves – Prynt Stealer’s Backdoor Exposed

Game Theory: Why System Security Is Like Poker, Not Chess

Game Theory: Why System Security Is Like Poker, Not Chess

GAME THEORY: WHY SYSTEM SECURITY IS LIKE POKER, NOT CHESS

Stay Connected