Seven Common Microsoft Active Directory Misconfigurations that Adversaries Abuse

Sunday, February 7th, 2021

The modern IT organization has a wide variety of responsibilities and competing priorities. As a result, cybersecurity is often overlooked in favor of projects that have an immediate impact on business operations. Unfortunately, this operating model inevitably leads to unaddressed vulnerabilities and security misconfigurations in services and Active Directory. We’ll refer to ...

Expired domain names and malvertising

Tuesday, September 5th, 2017

In Q1 and Q2 of 2017, we noticed a sharp decline in drive-by downloads coming from compromised websites. The campaigns of the past are either gone (Pseudo Darkleech) or have changed focus (EITest using social engineering techniques). Malvertising – which has remained steady and is currently the main driving force behind ...

Researchers identify attack technique, all Windows versions at risk

Monday, April 13th, 2015

Researchers with Cylance have identified a new attack technique – built on a vulnerability identified nearly 20 years ago by Aaron Spangler – that can enable the theft of user credentials from PCs, tablets and servers running any version of Windows, according to a Monday post by Cylance. The “Redirect to ...

Browsing in privacy mode? Super Cookies can track you anyway

Tuesday, January 6th, 2015

For years, Chrome, Firefox, and virtually all other browsers have offered a setting that doesn't save or refer to website cookies, browsing history, or temporary files. Privacy-conscious people rely on it to help cloak their identities and prevent websites from tracking their previous steps. Now, a software consultant has devised ...

Let’s Encrypt: Delivering SSL/TLS Everywhere

Tuesday, November 18th, 2014

Vital personal and business information flows over the Internet more frequently than ever, and we don’t always know when it’s happening. It’s clear at this point that encrypting is something all of us should be doing. Then why don’t we use TLS (the successor to SSL) everywhere? Every browser in ...