Enterprise software remains one of the most common threat vectors for cyber criminals to deliver malicious content. Whether exploiting browsers to deploy malware and ransomware, or targeting server side software used for industry applications, attackers look to leverage the most popular and widely deployed software across industry for financial gain, disruption, political motivations and much more. McAfee Advanced Threat Research analyzes both zero-day and known enterprise software vulnerabilities that affect users across all industries.
Blogs
- Hunting for Blues in Windows Subsystem for Linux (WSL) – July 2020
- Understanding SMBGhost – March 2020
- CurveBall – An Unimaginative Pun but a Devastating Bug – January 2020
- Apple iOS Attack Underscores Importance of Threat Research – September 2019
- In NTDLL I Trust – Process Reimaging and Endpoint Security Solution Bypass – June 2019
- RDP Stands for “Really DO Patch!” – Understanding the Wormable RDP Vulnerability CVE-2019-0708 – May 2019
- Microsoft Cortana Allows Browser Navigation Without Login: CVE-2018-8253 – August 2018
- New Cortana Vulnerability Could Allow Cybercriminals to Bypass Lock Screen On Windows 10 Devices – June 2018
- Want to Break Into a Locked Windows 10 Device? Ask Cortana (CVE-2018-8140) – June 2018
- Unintended Clipboard Paste Function in Windows 10 Leads to Information Leak in RS1 – June 2018
Videos & Demos
- Windows 10 Cortana
– January 2020 - Windows Defender
– June 2019 - Windows Cortana
– June 2018