Think, Talk, Hack
A vulnerability has recently been discovered by Orlando Barrera II of Rapid7. The vulnerability is present in the Workspaces component of Biscom Secure File Transfer (SFT) version 5.1.1015. The SFT version is vulnerable to stored...
Towards the end of March 2017 news broke that attackers were targeting open source developers who used GitHub with an advance version of the Dimnie Trojan malware. The Trojan has been dormant for some time, and...
Back at the start of April 2017 Rapid7 unveiled two new solutions on its Rapid7 Insight platform: InsightVM for vulnerability management and InsightAppSec for application security testing. InsightVM uses live monitoring to gather continuous data...
“It provides very useful insights into how the threat landscape is evolving. It also demonstrates why proactive, robust information sharing is a critical element of mitigating cyber vulnerabilities in such a rapidly evolving threat...
The zero-day vulnerability discovered within Apple’s iOS has sparked up in the news recently. Guillaume Ross, Senior Security Consultant from Rapid7, has commented. Though Apple iOS enjoys a well-deserved reputation for being an operating...
In light of the news that the Russian seller, who goes by the name of Tessa88, claimed in an encrypted chat to have obtained Twitter’s database. This includes email addresses, usernames and plain-text passwords. Tod...
Following reports that Instagram holes have left accounts open to hijack Tod Beardsley, Security Research Manager at Rapid7, has commented: “The authentication issues found and reported by Arne Swinnen highlight the success of Facebook’s bug...
In light of recent news Wendy’s announced that malicious software affected POS devices in around 300 of the company’s 5,500 franchised stores, about 5% of all company restaurants. Tod Beardsley, Security Research Manager at Rapid7,...
Recently news have been uncovered regarding the Petya ransomware decryption tool. Tim Stiller, Senior Systems Engineer at Rapid7 has commented: “What is unique about Petya ransomware and this new decryption tool is the ability to recover files without paying...
Monday April the 11th was a busy day for the cybersecurity community, with Microsoft announcing their April patches as well as the patch for Badlock. Tod Beardsley, Rapid7 Security Researcher Manager, commented on this and specifically their...
