Thought Leadership

BinaryLab Blog

Thought Leadership2021-12-28T16:29:55+00:00
8Nov, 2022

Report: Ransomware Attacks Doubled Between 2020, 2021

A recent analysis from the U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN) found that ransomware attacks doubled between 2020 and 2021, including a disproportionately large spike coming from Russia. Ransomware is malicious software that encrypts a victim’s files and holds the data hostage until a ransom is paid, typically through cryptocurrency.

30Sep, 2022

Microsoft Discloses Two New Active MS Exchange Zero-Day Bugs, No Immediate Fix

On Thursday, September 29th, Microsoft publicly disclosed two unpatched vulnerabilities impacting on-premises Microsoft Exchange servers that were capable of granting remote access to threat actors. These zero-day vulnerabilities have been identified as CVE-2022-41040, which is a Server-Side Request Forgery (SSRF) vulnerability, and CVE-2022-41082, which allows remote code execution (RCE) when PowerShell is accessible to the attacker.

28Sep, 2022

How The Defense in Depth Strategy Protects Organizations

Contrary to the promises of the various security appliance providers, there is no single solution in information security to defend against the various attack vectors available to threat actors (TAs). However, we recommend that businesses adopt Defense in Depth, a strategy of applying multiple layers of defensive mechanisms to better protect an organizations’ valuable

26Jul, 2022

Why Social Media Data Will Play A Bigger Role in Digital Forensic Investigations

As a digital forensics and incident response (DFIR) firm, BinaryLab has conducted numerous investigations to provide stakeholders with timeline and root cause analysis for issues ranging from business email compromise up to ransomware attacks. An oft-forgotten area of concern, however, is social media. Social media channels can be a stand-alone area of investigation

3Jun, 2022

Hackers Exploit Critical Atlassian Confluence Flaw

Researchers have discovered an unauthenticated Remote Code Execution (RCE) flaw, which is being tracked as CVE-2022-26134 and can compromise even the most up-to-date, patched version of Atlassian’s Confluence Server solution. On June 2nd, Atlassian released an advisory stating that versions of Confluence Server and Data Center 7.4.0 and higher are potentially vulnerable. Security

Archives

Go to Top