ABOUT
CVE DATABASE
CONTACT
VISIT SENTINELONE.COM

Labs

Another Brick In The Wall Uncovering SMM Vulnerabilities In HP Firmware 1
Security Research

Another Brick in the Wall: Uncovering SMM Vulnerabilities in HP Firmware
Assaf Carlsbad /

How we used Brick to discover six different vulnerabilities affecting HP laptops' firmware

Read More
Zen And The Art Of SMM Bug Hunting 5
Security Research

Zen and the Art of SMM Bug Hunting | Finding, Mitigating and Detecting UEFI Vulnerabilities
Assaf Carlsbad /

In Part 5 of our ongoing series on UEFI security research, we dive into the fascinating world of hunting and exploiting SMM vulnerabilities.

Read More
Hermetic Wiper Ukraine Is Under Attack 4
Advanced Persistent Threat

HermeticWiper | New Destructive Malware Used In Cyber Attacks on Ukraine
Juan Andrés Guerrero-Saade /

A new malware is attacking Ukrainian organizations and erasing Windows devices. In this early analysis, we provide technical details, IOCS and hunting rules.

Read More
SanctionsBeDamnedFromDridexToMacawTheEvolutionOfEvilCorp 3
Crimeware

Sanctions Be Damned | From Dridex to Macaw, The Evolution of Evil Corp
Antonio Pirozzi /

What really happened to Evil Corp after the OFAC sanctions? Did they cut and run, or are they still operating with impunity?

Read More
Log4j2 In The Wild Iranian Aligned Threat Actor TunnelVision Actively Exploiting VMware Horizon 10
Adversary

Log4j2 In The Wild | Iranian-Aligned Threat Actor “TunnelVision” Actively Exploiting VMware Horizon
Amitai Ben Shushan Ehrlich /

Threat actor exploits Log4j2 vulnerabilities to drop PowerShell backdoors, harvest credentials, and communicate via legitimate services.

Read More
ModifiedElephant APT And The Decade Of Fabricating Terrorism 5
Adversary

ModifiedElephant APT and a Decade of Fabricating Evidence
Tom Hegel /

A previously unreported threat actor has been targeting civil society for over a decade. Read about how it operates and its relationships to other threats.

Read More
Firefox JIT Use After Frees Exploiting CVE 2020 26950 6
Security Research

Firefox JIT Use-After-Frees | Exploiting CVE-2020-26950
Max Van Amerongen /

Learn how to dive into JIT compilers in JavaScript engines and follow along as we find a new set of exploit primitives in this previously patched bug.

Read More
Hacktivism And State Sponsored Knock Offs Attributing Deceptive Hack And Leak Operations 3
Advanced Persistent Threat

Hacktivism and State-Sponsored Knock-Offs | Attributing Deceptive Hack-and-Leak Operations
Juan Andrés Guerrero-Saade /

Are there still real hacktivists out there or are they all a cover for state-sponsored operations?

Read More
BlackCat Ransomware Highly Configurable Rust Driven RaaS On The Prowl For Victims 6
Crimeware

BlackCat Ransomware | Highly-Configurable, Rust-Driven RaaS On The Prowl For Victims
Jim Walter /

With victims in the US, Australia and India, BlackCat is a new RaaS making a big impact. Learn more about this unique ransomware's behavior and IoCs.

Read More
Wading Through Muddy Waters Recent Activity Of An Iranian State Sponsored Threat Actor 6
Advanced Persistent Threat

Wading Through Muddy Waters | Recent Activity of an Iranian State-Sponsored Threat Actor
Amitai Ben Shushan Ehrlich /

MuddyWater APT's updated toolkit: an evolution of PowGoop malware, abuse of tunneling tools, and targeting of Exchange servers. MuddyWater's activities are attributed to the Iranian Ministry of Intelligence by U.S. Cyber Command.

Read More
1 10 11 12 13 14 24