Information Security Resources & Cybersecurity Blog | VerSprite Security Information Security Resources & Cybersecurity Blog | VerSprite Security

VerSprite Security Resources

Literary Antidotes for Today's Security Snake Oil

Search Resources:

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Microsoft Outlook for Android Vulnerable to Cross-Site Scripting

Blog Post

Windows Security Vulnerabilities

Microsoft published an advisory on a critical vulnerability found in the Microsoft Outlook Android application. The attack happens when an email is sent to the victim with an embedded hidden code.

Learn more

arrow right
Mozilla Firefox Patches Multiple Zero Days

Mozilla Firefox Patches Multiple Zero Days

Blog Post

Security Vulnerabilities

Mozilla Firefox has patched multiple zero days that could lead to arbitrary code being executed remotely. The first vulnerability that was patched was a Universal Cross-site Scripting (UXSS) attack and worked on any Windows, MacOS and Linux device.

Learn more

arrow right
6 Ways to Strengthen Security Posture & Reduce Risk

How to Minimize Data Risk & Strengthen Your Security Posture

Ebook

Security Awareness Training

This guide offers a perspective gained from research and experience into incidents and their causes. Nothing will stop all cyber incidents, but attention to these areas can reduce the chances of a successful attack.

Learn more

arrow right
waves-vulnerability

Waves MaxxAudio

Advisory

Security Vulnerabilities

WavesSysSvc in Waves MAXXAudio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0.

Learn more

arrow right
Any time you swipe a card to make a purchase or utilize a self-checkout kiosk, a POS (point of sale) system is responsible for handling the intricacies of your transaction in the background.

OH The POSsibilities: Point of Sale System Security

Blog Post

Exploitation of Vulnerabilities

Any time you swipe a card to make a purchase or utilize a self-checkout kiosk, a Point-Of-Sale system is responsible for handling the intricacies of your transaction in the background.

Learn more

arrow right
product vs custom managed services in vendor risk

Vendor Risk: Product vs. Custom Managed Services

Ebook

Vendor Risk

When it comes to vendor risk, what are the pros and cons of product and custom managed services? Which is better for your organization? Download the guide to learn what to consider in your decision process.

Learn more

arrow right
Risk-Centric-Application Threat-Modeling

Shifting Your Cyber Security Program Left

Presentation

Continuous Integration & Continuous Delivery (CI/CD)

The latest talk in managing security programs is the ability to make “shift left” in terms of implementing controls. Learn how DevSecOps efforts are changing how we govern security controls via greater automation tools that are readily available to leverage.

Learn more

arrow right
GDPR is an encompassing regulation and policy change that affects people, organizations, and governance. The basis of GDPR is that individuals have a several fundamental rights when it comes to their data, but who is actually in scope for GDPR?

The General Data Protection Regulation (GDPR): A Quick Guide for Organizations

Blog Post

General Data Protection Regulation (GDPR)

GDPR is an encompassing regulation and policy change that affects people, organizations, and governance. The basis of GDPR is that individuals have a several fundamental rights when it comes to their data, but who is actually in scope for GDPR?

Learn more

arrow right
Digging up the Past: OS X File Versioning

Digging up the Past: OS X File Versioning

Blog Post

Privacy Risk

In this case study of OS X digital forensics, we were tasked to recover the version history of documents created using Apple’s TextEdit application. It began with a request for us to recover the version history of documents created using Apple’s TextEdit application.

Learn more

arrow right
Airmail 3 Amazon Web Services (AWS) Android Vulnerabilities and Exploits Attack Surface Benchmark Testing & Security Control Frameworks Cloud Infrastructure Continuous Integration & Continuous Delivery (CI/CD) Cybersecurity Data Encryption Data Security Breach Enterprise Data Security Exploitation of Vulnerabilities Exploit Development General Data Protection Regulation (GDPR) Global Threats Google Security InfoSec JavaScript JEA Just-Enough-Administration MacOS Malware Protection & Detection Man-in-The-Middle (MiTM) Attacks Multi-Factor Authentication Password Management PCI DSS Compliance Phishing Attacks Point-of-Sale Security Privacy Risk Remote Attack Reputational Risk Reverse Engineering Risk Analysis Security Awareness Training Security Controls Security Vulnerabilities Social Engineering Statistical Findings & Security Metrics Threat Intelligence Threat Library Threat Modeling Transport Layer Security (TLS) Vendor Risk Web Application Security Windows Security Vulnerabilities XPC Services API

@VerSprite

We are an international squad of professionals working as one.

logos

Copyright 2019 VerSprite - All Rights Reserved