Blog
2021 Cybersecurity Predictions: Our Experts Weigh In
To say that 2020 was an unusual year would be an understatement. Business, government, healthcare, and education drastically changed with many organizations making massive digital transformations that were completely unplanned in many ...
CVE-2020-29395: XSS in WordPress plugin EventON
Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1 Vulnerability Summary The EventON plugin through ...
Hunting for SolarWinds Orion Compromises
Infocyte has published an official Infocyte extension which scans servers for all reported host-based indicators of compromise related to the Solarwinds Orion compromise. The post Hunting for SolarWinds Orion Compromises appeared first ...
Using Qiling Framework to Unpack TA505 packed samples
Table of Contents Introduction TA505 Packer Qiling Framework Proof of Concept IOC Conclusion References Introduction Threat Actors make use of packers when distributing their malware as they remain an effective ...
Winding down 2020
From a creative perspective, 2020 hasn’t been a bad year for me. I ended up writing, 80 blog posts (most of which were published elsewhere) created 54 videos, 48 podcasts, and 48 ...
CVE-2020-27660: SQL injection vulnerability in request.cgi in Synology SafeAccess- 9.8
Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1 Vulnerability Summary SQL injection vulnerability in ...
The Wild Ride of 2020 and its Impact on Cloud Security
As 2020 comes to a close, we can only look back and marvel at how we managed to keep it all together. And not just keep it all together, but to move ...
Feature Release 20.7
As 2020 draws to a close, we are pleased to announce our last major release of the year, 20.7. We think of each release as an opportunity to give back to our ...
MixMode in the Real World: Customers Turn to MixMode Frustrated and in Search of a Viable SIEM Alternative
SIEM has failed to meet the needs of enterprises in the modern threatscape. One huge reason for this is that over time, most organizations will come to the sad realization that they ...
CVE-2020-28578: Trend Micro InterScan Web Security Virtal appliance (CMDI)
Virsec Security Research Lab Vulnerability Report The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities. 1.1 Vulnerability Summary The flaw exists in ...
