Our Blog

DoubleAgent: Zero-Day Code Injection and Persistence Technique

by Michael Engstler | Mar 22, 2017 | 73 Comments

See how Cybellum uses dynamic analysis to detect ulnerabilities in C/C++ closed binaries. Get a free demo. Overview We’d like to introduce a new Zero-Day technique for injecting code and maintaining persistency on a machine (i.e. auto-run) dubbed DoubleAgent....

From Heartbleed to Cloudbleed: How The Landscape of Overflow Vulnerabilities Is Unable to Evolve

by Michael Engstler | Mar 9, 2017 | 0 Comments

In 2014, the Heartbleed bug made the data of millions of web-users publicly available to unauthorized third party access. When Cloudbleed leaked user info late last month, it seemed to some like deja-vu. Once again, private information like passwords, chats, hotel...

Be Ready for 2017: The Threat of Ransomware will be Overwhelming

by cybellum | Jan 3, 2017 | 1 Comment

The cyber world has become a dominant entity throughout the world and with it, cyber threats have also increased significantly. Reports suggest that in 2016, Ransomware became a major headache for thousands of people and businesses affecting individuals both at a...

The Zero-Day Kill Chain

by cybellum | Dec 19, 2016 | 1 Comment

The term ‘kill chain’ was originally used as a military concept related to the structure of an attack. In 2011 Lockheed Martin adopted the term for cyber security, modeling network intrusion. In this post we zoom in, model and simplify the Zero-Day kill chain, a chain...

Next Entries »

BE THE FIRST TO KNOW

Subscribe to get our vulnerability analysis posts, new blog content and very infrequent special announcements. We won't spam you, and will never sell your data.