Recently, X-Force Red released a tool called Windows Feature Hunter, which identifies targets for dynamic link library (DLL) side-loading on a Windows system using Frida. To provide a defensive counter-measure…
Browsing CategoryMicrosoft Windows
Hunting for Windows “Features” with Frida: DLL Sideloading
Offensive security professionals have been using Frida for analyzing iOS and Android mobile applications. However, there has been minimal usage of Frida for desktop operating systems such as Windows. Frida…
80% of Exchange Servers Still Unpatched to Critical Remote Code Execution Vulnerability
Microsoft recently patched a remote code execution vulnerability with Microsoft Exchange Server that allows an attacker to use an Exchange user account to compromise the system completely. The bug resides…
The Curious Case of a Fileless TrickBot Infection
IBM X-Force Research actively watches the banking Trojan threat landscape and helps defenders learn more about threats as they evolve. In a recent analysis in our cybercrime research labs, we…
Mobile Device Management Evolves to Support New Device Use Cases
Mobile device management (MDM) technology has matured and is widely adopted across the enterprise. MDM now serves as a baseline management tool for organizations, supporting workers using smartphones, tablets and…
Tick APT Group Weaponize USB Drive to Spread Malware to Air-Gapped Critical Systems
Tick cyberespionage group weaponizing secure USB drive to Spread Malware to Air-Gapped Systems. The Tick group targets a specific USB drive that created by South Korean defense company. The malware…