banner-blog.jpg

BLOG

Emotet attacks— a spike to start the year...

The Emotet malware is a very destructive banking Trojan that was first identified in 2014. Over the years it has evolved with new capabilities and functionalities, prompting cybersecurity agencies like the Australian Cyber Security Centre and US-CERT to issue advisories. Emotet malware generally spreads via malicious documents that drop a modular Trojan bot, which is used to download and install additional remote access tools. We wrote a blog post in January 2019 about how the malware had changed tactics, leading to a spike in the number of Emotet malware attacks. In the last week, we have observed a spike in the number of Emotet malware transactions across our customer base. US-CERT has also issued a fresh advisory regarding the recent spate of attacks. 

Read More

Tags: Web Security, CVE, emotet

IE and FIREFOX-Patching nightmare begins in 2020...

Posted by Vinay Pidathala on Jan 27, 2020

Not all vulnerabilities are created equal. It’s true. In a perfect world, organizations should be able to patch every vulnerability on every client immediately. But we don’t live in a perfect world. Some vulnerabilities pose a much greater risk to the organization than others and should be prioritized.

Read More

Tags: Web Security, ZeroTrust, Internet Isolation, CVE

Isolation protects you from threats that haven’t even been discovered

Posted by Mehul Patel on Nov 8, 2019

Another day, another validation that Internet isolation really is the best cybersecurity protection out there.

Last week, Google released an urgent Chrome update to patch an actively exploited zero-day known as CVE-2019-13720, a memory corruption bug that uses a use-after-free vulnerability in audio that allows a threat actor to access memory after it has been freed. This allows anyone to cause a program to crash, execute arbitrary code, or even enable full remote code execution scenarios. Pretty serious stuff that should worry even the most secure enterprises.

Read More

Tags: Web Security, ZeroTrust, Internet Isolation, CVE

Why ANY Web Browser Is Still Not Safe

Posted by Vinay Pidathala on Sep 25, 2019

Menlo Security customers are 100 percent protected against a recent zero-day exploits in Internet Explorer. The exploits CVE-2019-1367 and CVE-2019-1255 are being actively used in limited attacks.

Read More

Tags: vulnerability, browser-based attacks, Web Security, Internet Isolation, CVE

Connect with us

Lists by Topic

see all

Recent Posts