Introducing Lavi Lazarovitz, Head of Research at CyberArk Labs, to share research on vulnerabilities on conference applications such as Microsoft Teams as an attack vector to an entire organization and other research & tools published by CyberArk Labs; KubiScan, SkyArk, SkyWrapper etc. Read CyberArk Labs research blog at http://www.cyberark.com/resources/threat-research.
Recommended for You
Can You Stop a Cyberborg Attack? Get Inside a Biohacker’s Mind at RSA 2021
With a consuming curiosity, obsession with lock picking – both physical and abstract – and sharp technical mind, Len Noe has been breaking and building things nearly all of his life. Hacking, as...
Kubesploit: A New Offensive Tool for Testing Containerized Environments
In this blog post, we will introduce a new open-source tool we developed, named Kubesploit, for testing Kubernetes environments. This is a full framework, dedicated to Kubernetes, to assist...
The Mysterious Realm of JavaScriptCore
TL;DR JavaScriptCore (JSC) is the JavaScript engine used by Safari, Mail, App Store and many other apps in MacOs. The JSC engine is responsible for executing every line of JavaScript (JS) that...
Kinsing: The Malware with Two Faces
Lately, we’ve been busy researching the developing field of cloud and container threats. Why focus here? Because, as this technology becomes more popular and continues to evolve, attackers are...
The Strange Case of How We Escaped the Docker Default Container
TL;DR During an internal container-based Red Team engagement, the Docker default container spontaneously and silently changed cgroups overnight, which allowed us to escalate privileges and gain...
The Anatomy of the SolarWinds Attack Chain
Imagine there’s an attacker lurking inside your network right now. Do you have the ability to find out and respond before they can cause harm? Now imagine your adversary has privileged access to...
Hunting Azure Blobs Exposes Millions of Sensitive Files
We hear about it all the time – data breaches that expose a company’s sensitive information. Nearly all of us have been warned that our passwords, email addresses or even credit cards have...
Breach of Trust: How Cyber-Espionage Thrives On Human Nature
With so much of daily life tethered to digital communication and most of our important information residing in data clouds, we’ve all got a lot riding in this virtual atmosphere. So naturally, the...
Analyzing Ransomware and Potential Mitigation Strategies
Ransomware, one of the most pervasive and dangerous threats facing organizations today is everywhere. Read more to find out how CyberArk helps mitigate ransomware threats.
Meet Oski Stealer: An In-depth Analysis of the Popular Credential Stealer
Meet Oski Stealer: An In-depth Analysis of the Popular Credential Stealer Credential theft malware continues to be one of the most prevalent types of malware used in cyber attacks. The main...
Golden SAML Revisited: The Solorigate Connection
In the past few weeks, we’ve been witnessing one of the most elaborate supply-chain attacks unfold with a threat actor that infected SolarWinds Orion source code and used the update process to get...
Accessing and Dumping Firmware Through UART
Introduction In the first part of my hardware hacking series, we discussed dumping firmware through the SPI flash chip. In this post, we will review the process of accessing and dumping the...
A Modern Exploration of Windows Memory Corruption Exploits – Part I: Stack Overflows
Introduction The topic of memory corruption exploits can be a difficult one to initially break in to. When I first began to explore this topic on the Windows OS I was immediately struck by the...
2021 Cybersecurity Trends: The Emergence of the Personalized Attack Chain
It’s hard to look forward to 2021 without considering the trends that shaped the generally unfavorite year known as #2020. History books will, of course, remember this year mostly for two major...
Intel, Please Stop Assisting Me
This post focuses on two vulnerabilities the CyberArk Labs team uncovered in the Intel Support Assistant that affected the millions of Windows machines that run this software. The first...
Attacking Kubernetes Clusters Through Your Network Plumbing: Part 1
Have you ever wondered how the water supply gets into your home and to the taps? Honestly it may not be something you ever thought about. When receiving a system that works “out of the...
Five Attack Scenarios That Could Alter the U.S. Election
On October 21, the FBI held a press conference alerting U.S. citizens about new details concerning nation-state interference with the upcoming U.S. elections. According to news reports attackers...
LoRaWAN & MQTT: What to Know When Securing Your IoT Network
The LoRaWAN protocol wirelessly connects battery-powered devices to the internet. Because of its ability to communicate long-range with little battery consumption, it is likely to be the network...
4:57An Introduction to CyberArk Labs
CyberArk is the only Identity Security Vendor with dedicated research labs. This video provides an introduction to the labs team, and how their research benefits the broader security community.
Anti-Virus Vulnerabilities: Who’s Guarding the Watch Tower?
This blog entry is a special anti-malware edition showcasing how the most common bugs security products suffer from can allow a standard user to escalate into a privileged user. What we found...