Blog

Blog

Can Building Management Systems be Potential Attack Vectors for Industrial Control Systems?

by | 4 May 2020 | Blog-EN | 0 Comments

For many enterprises, working with advanced industrial systems the simultaneous implementation and use of Building Management Systems (BMS) is necessary. However, because their functionality is not seen as crucial for the realisation of the enterprise’s main goal, BMS...
Read more
Best practices for safe and secure remote work

Best practices for safe and secure remote work

25.04.2020

In order to ensure the cyber security of operations for staff working remotely it is vital to implement a number of appropriate procedures and technical measures. Adequate preparation of devices and systems used, as well as maintaining appropriate safety...

read more
CVE-2020-10551 – privilege escalation in QQBrowser

CVE-2020-10551 – privilege escalation in QQBrowser

08.04.2020

QQBrowser is a web browser developed by Tencent. It is one of the most popular web browsers used in China. During our tests, we have found a vulnerability which allows an unprivileged local attacker to gain code execution as NT AUTHORITY\SYSTEM. CVEID:...

read more
CVE-2019-14326 – privilege escalation in Andy

CVE-2019-14326 – privilege escalation in Andy

23.03.2020

Andy is an Android emulator for Windows and Mac. During our tests, we have found open local TCP ports which could be exploited to escalate privileges from user to root. CVEID: CVE-2019-14326 Name of the affected product(s) and version(s): Andy (all versions...

read more
CVE-2019-14514 – remote code execution in MEmu

CVE-2019-14514 – remote code execution in MEmu

04.02.2020

MEmu is an Android emulator for Windows. During our tests, we have found an open TCP port which could be exploited to gain code execution with root privileges. CVEID: CVE-2019-14514 Name of the affected product(s) and version(s): Microvirt MEmu (all versions...

read more
How to safely use removable media in ICS networks?

How to safely use removable media in ICS networks?

09.01.2020

It's been 10 years since the alert issued by Cybersecurity and Infrastructure Security Agency (CISA) indicating the risks associated with using USB media as one of the sources of threat to control systems. Despite the passage of years, these threats still...

read more
Ransomware – when data becomes hostage

Ransomware – when data becomes hostage

15.12.2019

You sit down to your computer, drink your morning coffee, and ... a multi-colored window is displayed on the monitor informing that your data has been encrypted, and only a cryptocurrency deposit on the given account will allow you to recover it. All photos,...

read more
Universal Hack and Play

Universal Hack and Play

15.12.2019

UPnP (Universal Plug and Play – plug it in and it works) is a protocol that allows direct communication between computers and network devices. It is used in dozens of home appliances and enables devices such as computers, printers, TV sets, WiFi routers,...

read more
Fuzzing the GuruxDLMS.c library with AFL

Fuzzing the GuruxDLMS.c library with AFL

02.12.2019

Fuzzing - methods of looking for security-related bugs Fuzzing (fuzz testing) is one of the most popular methods of looking for security-related bugs, especially the ones related to memory access (e.g. buffer overflow, use after free). Those are the...

read more

About our blog

As a team of highly experienced professionals, we aim to share our knowledge and expertise in a variety of subjects related to cybersecurity. Our goal is to help solve problems, but most importantly, we intend to assist our readers in securing themselves against cyber threats.