September 24, 2024 at 04:12PM CrowdStrike has overhauled its testing and update processes to avoid a recurrence of the disruptive July outage on Windows systems. Vice President Adam Meyers outlined new protocols, such as controlled software rollouts, improved code validation, and expanded testing to cover various scenarios. The changes aim to prevent similar system failures … Read more
August 20, 2024 at 01:56PM Attackers deployed a new backdoor, Msupedge, on a Taiwan university’s Windows systems, possibly through a recently patched PHP vulnerability (CVE-2024-4577). Based on the meeting notes, it appears that unknown attackers have deployed a newly discovered backdoor called Msupedge on a university’s Windows systems in Taiwan, likely by exploiting a recently … Read more
December 11, 2023 at 01:18AM A new set of process injection techniques called PoolParty was presented at Black Hat Europe 2023. These techniques allow code execution in Windows while evading endpoint detection and response systems. SafeBreach researcher Alon Leviev highlighted their capability to work across all processes, making them more flexible than existing techniques. PoolParty … Read more