Early this morning I received an email about my Netflix payment not going through. Scams often come in the form of payment requests, so I normally ignore these emails. However, yesterday my wife subscribed to Netflix and I wasn't sure which email she used. While on the bus I looked over the email, but I couldn't look at the email source since I'm using my phone. I had no way to … [Read more...]
Vulnerabilities in Multiple Vendors’ VPN Solutions
On October 2, 2019, the UK’s National Cyber Security Centre (NCSC) released a notice stating that Pulse Secure, Palo Alto, and Fortinet’s SSL VPN solutions are vulnerable. These vulnerabilities consist of retrieving arbitrary files, some including authentication credentials, as well as post-auth command injection. Unauthorized access into any network is a huge alarm and could … [Read more...]
Ransomware Hits The Top Three Most Concerning Risks For CEOs
In a recent report by Marsh (an insurance consultancy) and Microsoft, 79% of CEOs list cyber attacks in the top five risks in their company, overtaking economic concerns between 2017 and today by a wide margin. We consistently see the results of cyber attacks and data dumps, and couldn’t agree more. One only needs to look at the cost for a ransomware attack to understand why … [Read more...]
Android APK Reverse Engineering: Using JADX
In continuation of the Android APK Reverse Engineering series, this post will cover how to actually start digging into an APK’s programming logic. My last blog post detailed how to unzip an APK archive and what contents are within. While it’s useful to an extent, it’s not helpful in reading and understanding the programming logic. Remember the code itself is in binary format … [Read more...]
5 Steps to Mitigating Security Tool Sprawl
According to a Forrester survey of IT decision-makers, more than half of businesses use 20 or more tools between security and operations, and 70% say these tools lack full integration. This is a prime example of tool sprawl, or adoption of too many one-off specialized solutions. Unfortunately, tool sprawl is a growing issue for many organizations – a trap that’s been made … [Read more...]
