High Performance Network Security, Enterprise and Data-Center Firewall

High Performance Network Security, Enterprise and Data-Center Firewall

by RSS Axelle Apvrille  |  August 25, 2015  |  Category: Security Research
Update Aug 28, 2015: Typos in the final table: CVE-2015-3864 does not concern covr but tx3g. CVE-2015-3828 does not occur for yrrc. Detecting the PoCs published by Zimperium is not difficult: you can fingerprint the PoCs, for example. Det...
by RSS Axelle Apvrille  |  August 14, 2015  |  Category: Security Research
You've heard about StageFright, right? Where a malicious MMS compromises an Android handset by exploiting vulnerabilities on the phone's mediaserver. Are you aware that StageFright is not an MMS issue, but an issue with anything that will tr...
by RSS Axelle Apvrille  |  August 11, 2015  |  Category: Security Research
There are already a couple of Android ransomware, but Android/Locker.CB!tr certainly is an interesting one. Smile! The malware is taking a picture of you   The malware claims it has detected "forbidden pornographic" pictures on your...
by RSS Axelle Apvrille  |  April 17, 2015  |  Category: Industry Trends & News
If you haven't had time to read Google's 44 page Android security report, this is a quick recap of what they say, and what we think about it. Globally, their report is consistent with our data, apart from a few glitches and a (not so surpris...
by RSS Axelle Apvrille  |  April 04, 2015  |  Category: Security Research
Insomni'hack's CTF included iOS challenges, but also an Android challenge in two parts. The write-up of part 1 of the Android challenge can be found on SCRT's blog. It is quite complicated, but in the end, we get a decrypted filesystem wi...
by RSS David Maciejak  |  April 02, 2015  |  Category: Industry Trends & News
For the second year in a row, BlackHat Asia was held in Singapore, at the end of March, in the luxury Marina Bay Sands hotel. As usual, the 2 days briefings were fully loaded of plenty of topics. 3 distinct tracks were offered, plus the business t...
by RSS Axelle Apvrille  |  January 12, 2015  |  Category: Security Research
As malware continues to grow on Android (900K malicious samples and 1,300 new per day), we sometimes forget attacks can also affect other devices... like Amazon's Kindle. The Kindle indeed runs Fire OS, a fork of Android. Thus, in several cases,...
by RSS Axelle Apvrille  |  October 30, 2014  |  Category: Security Research
This is a follow up post on Operation Emmental. If you are not aware of Emmental, please read this white paper, and our previous blog post. I wouldn't deserve to sign my posts as 'the Crypto Girl' if I didn't mention crypto in Android's Emmental mal...
by RSS Axelle Apvrille  |  October 29, 2014  |  Category: Security Research
The conference started with Adi Shamir's keynote. As it was covered at length by rootshell, I won't be discussing it in this post - apart from the fact that I was really happy to listen to such a brilliant mind like Adi Shamir. I also appreciated his...
by RSS Michael Perna  |  October 24, 2014  |  Category: Industry Trends & News
by RSS Axelle Apvrille  |  October 21, 2014  |  Category: Security Research
A long time ago, I posted a video showing how to control Zitmo (the mobile component of ZeuS). It turns out you can (nearly) do exactly the same with Emmental. If you are not aware of Operation Emmental, please jump to this excellent white paper. So...
by RSS Axelle Apvrille  |  October 09, 2014  |  Category: Security Research
If you have any interest in Android packers, or how to reverse mobile malware that use such packers, please don't miss Ruchna's upcoming talk at Hacktivity . Android Packers: Separating from the Pack - 11. October 2014. 11:20 - 12:05 If you feel li...
by RSS Michael Perna  |  September 19, 2014  |  Category: Industry Trends & News
by RSS Ruchna Nigam  |  September 15, 2014  |  Category: Security Research
A recent news article described email as the undying "cockroach of the Internet". To validate this statement, seeing some of the Android malware samples I've analyzed recently, malware authors might share that sentiment. In 2013, we saw the first An...

FortiGuard Labs on the Web

search results hidden links