Today, Apple’s MacOS X 10.12.4 update includes security fixes for several open source vulnerabilities. The update includes a vulnerability fix that enSilo’s researcher, Omer Medan, disclosed to...
SCHEDULE A DEMO TODAY!
Please fill out the form below and we will help get you setup as soon as possible.
ENSILO BLOG
You are Reading:
Windows environment variables can be used to run commands and can also be used to bypass UAC, allowing an attacker with limited privileges to take complete control of the system. This code...
Even though any process is provided with variables from its environment, they are often overlooked by users, developers and sometimes even the OS itself.
TL;DR: We found 6(!) different common security issues that stem from incorrect implementation of code hooking and injection techniques. These issues were found in more than 15 different products....
Sedating the Watchdog: Abusing Security Products to Bypass Mitigations
by
Tomer Bitton, VP Research, enSilo on December 08, 2015 -
tools , av , Vulnerabilities , anti-virus , avulnerabilitychecker , Windows , enSilo Breaking Malware
TL;DR: Design issues in various security products, such as anti-virus, make it significantly easier for threat actors to bypass exploit mitigations. As part of our ongoing goal of complete...
Class Dismissed: 4 Use-After-Free Vulnerabilities in Windows
by
Udi Yavo, CTO, enSilo on July 14, 2015 -
Vulnerabilities , Windows , vulnerability , exploit , enSilo Breaking Malware
Introduction
Today, Microsoft released their latest Patch Tuesday. This Patch includes a fix for CVE-2015-2363, a complementary patch to CVE-2015-2360 from last month. The two CVEs together...
Vulnerability Patching: Learning from AVG on Doing it Right.
by
Tomer Bitton, VP Research, enSilo on March 24, 2015 -
Introduction
As part of our research, we analyze the intricate relationship between Anti-Virus and Operating Systems (OS). During this process, we came across a vulnerability in AVG Internet...
SUBSCRIBE
SANS Review
CATEGORIES
- enSilo Corporate and Product (191)
- Weekly Security News (96)
- Windows (49)
- Malware (41)
- Industry (22)
- Research (22)
- cybersecurity (22)
- enSilo Breaking Malware (20)
- Business (13)
- Ransomware (13)
- code injection (9)
- Vulnerabilities (7)
- AtomBombing (6)
- WannaCry (6)
- POS malware (5)
- RAT (5)
- NSA (4)
- exploit (4)
- APT (3)
- Endpoint Protection (3)
- Mac OS X (3)
- Moker (3)
- NotPetya (3)
- Process Doppelganging (3)
- UAC (3)
- Web Malware (3)
- documentation (3)
- hooking (3)
- vulnerability (3)
- Android (2)
- ArdBot (2)
- CFG (2)
- Control Flow Guard (2)
- Emotet Botnet (2)
- Fileless Malware (2)
- Furtim (2)
- Gartner (2)
- GlobeImposter (2)
- Injection Techniques (2)
- Windows XP (2)
- av (2)
- elevation (2)
- tools (2)
- APC (1)
- Bad Rabbit (1)
- CVS (1)
- CryFile (1)
- Detours (1)
- ESTEEMAUDIT (1)
- Equifax (1)
- FindADetour (1)
- GOZI (1)
- HIPAA (1)
- Hancitor (1)
- Linux (1)
- Lockerpin.A (1)
- MSSP (1)
- ModPOS (1)
- NtSetInformationVirtualMemory (1)
- PCI DSS (1)
- Patch (1)
- SCADA (1)
- Scarab (1)
- Unix (1)
- Verizon (1)
- Windows 10 (1)
- anti-virus (1)
- avulnerabilitychecker (1)
- bypass UAC (1)
- command injection (1)
- environment variable (1)
- excel-scriptlet (1)
- hospitality (1)
- media (1)
- meltdown (1)
- path redirect (1)
- spectre (1)
- variable expansion (1)
- variables (1)
FEATURED ARTICLES
FOLLOW US
tag cloud
- enSilo Corporate and Product (191)
- Weekly Security News (96)
- Windows (49)
- Malware (41)
- Industry (22)
- Research (22)
- cybersecurity (22)
- enSilo Breaking Malware (20)
- Business (13)
- Ransomware (13)
- code injection (9)
- Vulnerabilities (7)
- AtomBombing (6)
- WannaCry (6)
- POS malware (5)
- RAT (5)
- NSA (4)
- exploit (4)
- APT (3)
- Endpoint Protection (3)
- Mac OS X (3)
- Moker (3)