analysis

July Patch Tuesday 2022: Updates and Analysis

Jul 23, 2022 by iHash Leave a Comment

Microsoft has released 84 security patches for its July 2022 Patch Tuesday rollout. Four vulnerabilities are rated Critical in severity and the rest are classified as Important, with one (CVE-2022-22047) under active exploitation. In this blog, the CrowdStrike Falcon Spotlight™ team offers an analysis of this month’s vulnerabilities, as well as insights into the vulnerabilities … [Read more...] about July Patch Tuesday 2022: Updates and Analysis

Researchers Share In-Depth Analysis of PYSA Ransomware Group

Apr 18, 2022 by iHash Leave a Comment

An 18-month-long analysis of the PYSA ransomware operation has revealed that the cybercrime cartel followed a five-stage software development cycle from August 2020, with the malware authors prioritizing features to improve the efficiency of its workflows. This included a user-friendly tool like a full-text search engine to facilitate the extraction of metadata and enable the … [Read more...] about Researchers Share In-Depth Analysis of PYSA Ransomware Group

March 2022 Patch Tuesday: Updates and Analysis

Mar 28, 2022 by iHash Leave a Comment

Microsoft has released 71 security patches for its March Patch Tuesday rollout. Of the 71 CVEs addressed, three are ranked as Important zero-days. This month the quantity of patches for Critical vulnerabilities remains low; however, the total number of updates is nearly double what was offered in February 2022. As vulnerabilities and patches continue to be released, and as … [Read more...] about March 2022 Patch Tuesday: Updates and Analysis

February 2022 Patch Tuesday: Updates and Analysis

Feb 10, 2022 by iHash Leave a Comment

Microsoft has released 48 security patches for its February Patch Tuesday rollout. None are considered Critical or known to have been actively exploited. CVE-2022-21989, a publicly known zero-day vulnerability in the Windows Kernel, should be closely monitored as the situation continues to unfold. Separate from the patches offered this month, Microsoft has strongly suggested an … [Read more...] about February 2022 Patch Tuesday: Updates and Analysis

Technical Analysis of the WhisperGate Malicious Bootloader

Jan 19, 2022 by iHash Leave a Comment

On Jan. 15, 2022, a set of malware dubbed WhisperGate was reported to have been deployed against Ukrainian targets. The incident is widely reported to contain three individual components deployed by the same adversary, including a malicious bootloader that corrupts detected local disks, a Discord-based downloader and a file wiper. The activity occurred at approximately the same … [Read more...] about Technical Analysis of the WhisperGate Malicious Bootloader

January 2022 Patch Tuesday: Updates and Analysis

Jan 15, 2022 by iHash Leave a Comment

Kicking off the first Patch Tuesday of 2022, CrowdStrike continues to provide research and analysis regarding critically rated vulnerabilities and the subsequent patches offered by Microsoft. In this month’s updates we see the lion’s share of updates directed at Microsoft’s Windows and Extended Security Update (ESU) products, while other patches target lesser-known components … [Read more...] about January 2022 Patch Tuesday: Updates and Analysis

TellYouThePass Ransomware Analysis Reveals Modern Reinterpretation Using Golang

Jan 11, 2022 by iHash Leave a Comment

TellYouThePass ransomware, discovered in 2019, recently re-emerged compiled using Golang Golang’s popularity among malware developers makes cross-platform development more accessible TellYouThePass ransomware was recently associated with Log4Shell post-exploitation, targeting Windows and Linux The CrowdStrike Falcon® platform protects customers from Golang-written … [Read more...] about TellYouThePass Ransomware Analysis Reveals Modern Reinterpretation Using Golang

December 2021 Patch Tuesday: Updates and Analysis

Dec 18, 2021 by iHash Leave a Comment

It’s the last Patch Tuesday update of 2021, and as with many other updates this year, this month’s list includes important ones — among them a zero-day (CVE-2021-43890 in AppX installer), multiple critical vulnerabilities and a variety of attack types utilized in several Microsoft product families — highlighting once again that patching and prioritization are prominent programs … [Read more...] about December 2021 Patch Tuesday: Updates and Analysis

Everything You Need To Know About Log Analysis

Nov 17, 2021 by iHash Leave a Comment

Log analysis is typically done within a log management system, a software solution that gathers, sorts and stores log data and event logs from a variety of sources. Log management platforms allow the IT team and security professionals to establish a single point from which to access all relevant endpoint, network and application data. Typically, logs are searchable, which means … [Read more...] about Everything You Need To Know About Log Analysis

November 2021 Patch Tuesday: Updates and Analysis

Nov 15, 2021 by iHash Leave a Comment

As the year draws to a close, the active exploitation of Microsoft vulnerabilities continues unabated. Once again, a broad range of Microsoft products are included in this month’s Patch Tuesday update as the aging Microsoft ship is springing security leaks everywhere. Two vulnerabilities, CVE-2021-42292 and CVE-2021-42321, have seen in-the-wild exploitation, and four other … [Read more...] about November 2021 Patch Tuesday: Updates and Analysis

« Previous Page

Apple Mac mini M2 (Early 2023) 8GB RAM 256GB SSD (Refurbished) for $359

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99