Leading information security industry expert to discuss how to most effectively exfiltrate using Google and other APIs, and more. Augusta, Georgia – May 31, 2017 – Rendition Infosec, the nation’s leading provider of information security solutions and consultation, today announced that Michael Banks, Information Security Consultant for Rendition Infosec, will be speaking at EC-Council’s […]
Archive | May, 2017
Know Normal, Find Evil: Windows 10 Edition – Rendition Infosec Founder Jake Williams Presenting At Enfuse 2017
Press ReleasesAugusta, Georgia – May 10, 2017 – Rendition Infosec, the nation’s leading provider of information security solutions and consultation, today announced that company founder Jake Williams will be presenting at Enfuse Conference (formerly CEIC) taking place at Caesar’s Palace Resort in Las Vegas, Nevada May 22 – 25, 2017. As a major part of Enfuse […]
Rendition InfoSec Uniquely Positioned To Assist In Navigating New Cybersecurity And Critical Infrastructure Executive Order
Cyber Policy / Law Press ReleasesNew Executive Order focused on the need to strengthen cybersecurity and critical infrastructure of federal networks presents opportunity for government entities and contractors to turn “We think our networks are secure” into “We know our networks are secure.” Augusta, Georgia – May 22, 2017 – Rendition Infosec, the nation’s leading provider of information security solutions […]
The problems of PUA (Potentially Unwanted Alerts)
UncategorizedRecently we had a client call us about a problem on their network. Rendition Infosec runs a 24×7 security monitoring service and had a client call about an antivirus alert for PUA (potentially unwanted application). This class of alert is often difficult to tune out since attackers and administrators often use the same software tools. […]
WanaCrypt0r worm with kill switch patched out
Malware MS17-010 Vulnerabilities WanaCryUpdate: After performing some analysis, we’ve noted that the ransomware package (resource) in the worm is corrupted. This means that even though the worm will infect, it won’t encrypt your files. This is a GOOD THING. But machines are still being exploited with this worm variant. Patching is still the order of the day. […]
WannaCry because your organization is slow to patch? Stop the tears with TearSt0pper!
Malware MS17-010 WanaCryWanaCrypt0r 2.0 has been spreading like wildfire and causing severe impact to individuals and businesses alike. Wcry not only is a crypto-ransomware variant, but packages a leaked NSA exploit with it (MS17-010), creating a self-propagating ransomware worm. To protect our clients and now the general public, Rendition Infosec has released TearSt0pper. Simply put, TearSt0pper creates […]
WanaCrypt0r malware webcast and slides
Hackers MS17-010 VulnerabilitiesLast night, I ran a special webcast for the SANS Institute on the outbreak of the WanaCrypt0r malware. One thing I love about SANS is that we always look out for our students. If huge security news breaks during the day at one of our major conferences, we designate an instructor to do impromptu night sessions. […]
Five Secret Tips For Incident Response Preparation – Rendition InfoSec Founder Jake Williams Presenting At Interop ITX 2017
UncategorizedAugusta, Georgia – May 10, 2017 – Rendition Infosec, the nation’s leading provider of information security solutions and consultation, today announced that company founder Jake Williams will be presenting at Interop ITX taking place at the MGM Grand in Las Vegas, Nevada May 15 – 19, 2017. As a major part of Interop’s Security Track, […]
Call to Microsoft to release information about MS17-010
Cyber Attribution Cyber Threat Intelligence Hackers Responsible Disclosure TechnologyAfter delaying the release of Windows updates, Microsoft mysteriously released a patch for a group of vulnerabilities addressed by MS17-010 after canceling Patch Tuesday in February. This patch was released immediately before the release of a set of Windows exploits by the Shadow Brokers hacking group. Although Shadow Brokers purports to have stolen these exploits […]
WikiLeaks’ Archimedes tool release – the breakdown for business leaders
Archimedes Malware WikiLeaksYesterday WikiLeaks released documentation on a CIA hacking tool named Archimedes, a CIA hacking tool that would allow CIA to infect computers on a local network. The tool (formerly named “Fulcrum” according to internal documentation) relies on a technique called ARP spoofing to perform Man in the Middle (MitM) attacks against victims. Is this a […]