Exploitation of Vulnerabilities
On June 17, 2019 the Department of Homeland Security (DHS) issued an alert for the Microsoft Windows Remote Code Execution (RCE) vulnerability named BlueKeep and CVE-2019-0708.
Read more
Jason Bell
Web App Security
Hashcat is the world’s fastest and most advanced password recovery utility. This software on its 6.0.0 beta version can now crack an eight-character Windows NTLM password hash under 2 hours 30 minutes.
Lucho Torres
Security Vulnerabilities
Security researchers at RIPS Technologies GmbH have published research about a critical remote command execution (RCE) in WordPress 5.0. This issue affects all the previous released versions in the past 6 years.
Google Security
An innovative campaign to spread phishing was recently detected. This attack used the Google translate service to make malicious links appear legitimate when visited only on mobile browsers.
Cybersecurity
The foundation of VerSprite’s penetration testing methodology is based on emulating realistic attacks by a malicious actor through the use of PASTA (Process for Attack Simulation and Threat Analysis).
Joaquin Paredes
Privacy Risk
The recent Georgia Institute of Technology data breach exposed 1.3 million student and employee records. Tony UcedaVélez, VerSprite CEO, was interviewed by WSBTV about why such an elite university makes such an attractive target for hackers.
Tony UcedaVélez
A critical issue has been discovered in Chrome that allows malicious attackers to escape the browser’s sandbox and execute code on the underlying operating system.
Zach Varnell
InfoSec
The session will demonstrate how companies can use data in interactive simulations to drive strategies that are more than the sums of its parts, by involving employees from across the company hierarchy and creating deeper buy-in to help employees see their roles through the lens of the intersection between cyber risk management and geopolitics.
GPR VerSprite
A feature has been implemented in a recent Google Chrome release which allows Chrome to log a user into the browser automatically after they have logged into another Google service. Learn about the privacy and security risks associated with this feature.
We are an international squad of professionals working as one.
Email
Phone
