What are Jump Lists? Jump Lists are windows features introduced with Windows 7, and they contain information about recently accessed...

Let's talk about remote assistance tools! As you would expect, a remote assistance tool is used to assist end-users from a remote...

We have recently observed threat actors evolving their procedures in light of Microsoft disabling macros by default in office documents....

What are Profile Lists? Windows keeps track of user-profiles and their locations in the registry. The profile location is stored under...

CVE-2022-1388 is a critical CVE (CVSS 9.8) in F5 Networks’ BIG-IP solution management interface. This CVE will allow threat actors to...

What is Windows Prefetch? Windows Prefetch creates files when a user opens an application on a Windows host. The Windows Operating system...

Phishing attacks remain the number one technique used in cyberattacks. Some of the most common phishing attacks leveraged attachments to...

As we look across the landscape, we see that cyberattacks continue to succeed in all business sectors. In the cases we have observed, the...

QBot, also known as Qakbot or pinkslipbot, is an information stealer that has been active since 2007. It is malware software that can...

Pandora ransomware came into the spotlight in March of 2022 after posting some high-profile victims on its leak site. The ransomware...

Incident response is a method for dealing with various forms of security events, cyber threats, and data breaches in an organized manner....

In Microsoft Exchange, the three known vulnerabilities that threat actors use to get initial access are often referred to collectively as...

Despite the depth of implemented protection measures, cyber incidents are bound to happen at some time. An incident analysis process...