So, I’m pushing the envelope here just a bit with this Call Papers for the 2018 Kaspersky Security Analyst Summit taking place in Mexico City, March 7-11. I’d be interested to hear your feedback. Over the top? Too Microsoft? Offensive already and I haven’t even […]
UPDATE 20:51 GMT-6 Looks like I was off on which file but we have a killswitch (temp measure) for the time being: #StopPetya Мы нашли локальный “kill switch” для #Petya: создать файл “C:\Windows\perfc” Zero-byte “perfc” in c:\windows UPDATE 16:18 GMT-6 Please see Kaspersky Labs update […]
Duncan McAlynn, Principal Security Engineer/Evangelist, Ivanti If your organization is like most, you likely have clearly defined processes in place for deploying newly released Microsoft security updates each month. If not, you should. We’ve only had 15 years to hone the process, dating back to […]
Duncan McAlynn, Principal Security Engineer/Evangelist, Ivanti The audio driver installed on some HP laptops includes a feature that could best be described as a keylogger, which records all the user’s keystrokes and saves the information to a local file, accessible to anyone or any third-party […]
Duncan McAlynn, Principal Security Engineer/Evangelist, Ivanti
Unless you’ve been completely off the grid for the past week, you’re likely aware of the huge vulnerability in the Microsoft anti-malware engine (mpengine.dll) found in many of the software giant’s security products.
If you find this useful, please let me know by leaving a comment below & sharing with others. Thank you!
Duncan McAlynn, Principal Security Engineer/Evangelist, Ivanti We have a new, albeit amateurish, ransomware variant on the loose. This one haphazardly begins deleting files every hour until the ransom is paid. Foolish, since it could take 2-3 days for the victims in question to get setup […]
Duncan McAlynn, Principal Security Engineer/Evangelist, Ivanti (Reposted with permission from Eric Holzhueter. Thank you!) If someone needs a SCCM DCM script or another method to report on vPro vulnerability, you can use this as a base for your solution. You’ll need to distribute and run […]