Hotcobalt – New Cobalt Strike DoS Vulnerability That Lets You Halt Operations
CVE-2021-36798 is a vulnerability in Cobalt Strike server that could allow victims to register a fake Beacon and DoS attackers.
Read More
Purple Fox EK | New CVEs, Steganography, and Virtualization Added to Attack Flow
New research shows that the Purple Fox exploit kit has added new tricks to its attack flow and continues to target vulnerable versions of Internet Explorer.
Read More
Living Off Windows Land – A New Native File “downldr”
A newly discovered LOLBin offers an alternative to certutil for helping adversaries download files from a remote server. Meet desktopimgdownldr.exe.
Read More
The Anatomy of an APT Attack and CobaltStrike Beacon’s Encoded Configuration
Cybercrime and nation state attacks haven’t come to a stop due to COVID-19. Here we describe a recent APT attack on a global brand prevented by SentinelOne.
Read More