Blog

Blog

Cloud computing security: identity and access management

Cloud computing security: identity and access management comparison for GCP and AWS

by | 10 May 2020 | Blog-EN | 0 Comments

Cloud computing is the foundation of many digital transformation projects. Currently, enterprises see progressively more value in the ability to scale the cloud environment, being able to transfer part of the responsibility for reliability onto a cloud service...
Read more
CVE-2020-10551 – privilege escalation in QQBrowser

CVE-2020-10551 – privilege escalation in QQBrowser

08.04.2020

QQBrowser is a web browser developed by Tencent. It is one of the most popular web browsers used in China. During our tests, we have found a vulnerability which allows an unprivileged local attacker to gain code execution as NT AUTHORITY\SYSTEM. CVEID:...

read more
OT and IT department cybersecurity – linked or separate?

OT and IT department cybersecurity – linked or separate?

02.04.2020

In factories, companies and enterprises, cybersecurity for IT and OT departments should not be treated as separate issues. Historically, OT engineers have treated IT as a necessary evil, some of them even would go as far as “locking the infrastructure away”...

read more
Best practices for safe and secure remote work

Best practices for safe and secure remote work

26.03.2020

In order to ensure the cyber security of operations for staff working remotely it is vital to implement a number of appropriate procedures and technical measures. Adequate preparation of devices and systems used, as well as maintaining appropriate safety...

read more
CVE-2019-14326 – privilege escalation in Andy

CVE-2019-14326 – privilege escalation in Andy

23.03.2020

Andy is an Android emulator for Windows and Mac. During our tests, we have found open local TCP ports which could be exploited to escalate privileges from user to root. CVEID: CVE-2019-14326 Name of the affected product(s) and version(s): Andy (all versions...

read more
CVE-2019-14514 – remote code execution in MEmu

CVE-2019-14514 – remote code execution in MEmu

04.02.2020

MEmu is an Android emulator for Windows. During our tests, we have found an open TCP port which could be exploited to gain code execution with root privileges. CVEID: CVE-2019-14514 Name of the affected product(s) and version(s): Microvirt MEmu (all versions...

read more
How to safely use removable media in ICS networks?

How to safely use removable media in ICS networks?

09.01.2020

It's been 10 years since the alert issued by Cybersecurity and Infrastructure Security Agency (CISA) indicating the risks associated with using USB media as one of the sources of threat to control systems. Despite the passage of years, these threats still...

read more
Ransomware – when data becomes hostage

Ransomware – when data becomes hostage

15.12.2019

You sit down to your computer, drink your morning coffee, and ... a multi-colored window is displayed on the monitor informing that your data has been encrypted, and only a cryptocurrency deposit on the given account will allow you to recover it. All photos,...

read more

About our blog

As a team of highly experienced professionals, we aim to share our knowledge and expertise in a variety of subjects related to cybersecurity. Our goal is to help solve problems, but most importantly, we intend to assist our readers in securing themselves against cyber threats.