The Latest in IT Security

Posts Tagged ‘forensic analysis’

Fileless attacks against enterprise networks

13
Feb
2017

This threat was originally discovered by a bank’s security team, after detecting Meterpreter code inside the physical memory of a domain controller (DC). Kaspersky Lab’s product detection names for such kinds of threat are MEM:Trojan.Win32.Cometer and MEM:Trojan.Win32.Metasploit.

Category Network security Written by Securelist 0 Comments

Read more ...

Anything you keep in your smartphone may be used against you in a court of law

12
May
2016

Smartphones usually keep way more data about you than your communications provider. For example, the built in GPS-receiver provides more accurate location than tracking your mobile phone with cell tower triangulation. Smartphone “interrogations” are automated. It works like any other forensic analysis of a computer: an expert copies all necessary data with the help of […]

Category Tracking Written by Blog 0 Comments

Read more ...

Backdoor.Tranwos Abuses EFS to Prevent Forensic Analysis

08
Jun
2013

Recently, we discovered a threat that abuses the Encrypting File System (EFS), which Symantec detects as Backdoor.Tranwos. Not only is it trivial for program code to use EFS, it’s also very effective at preventing forensic analysis from accessing the contents of the file.The threat creates the folder %Temp%\s[RANDOM ASCII CHARACTERS] and then calls the EncryptFileW […]

Category General Written by Symantec Security Response Blog 0 Comments

Read more ...

« Older Entries

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments