Author Archives for Richard Clayton

NTLM Credentials Theft via PDF Files

April 26, 2018 7:00 am Published by Comments Off on NTLM Credentials Theft via PDF Files

Just a few days after it was reported that malicious actors can exploit a vulnerability in MS outlook using OLE to steal a Windows user’s NTLM hashes, the Check Point research team can... Click to Read More


A New Phishing Kit on the Dark Net

April 24, 2018 5:54 am Published by Comments Off on A New Phishing Kit on the Dark Net

Check Point Research and the cyber intelligence company, CyberInt, have collaborated to discover the next generation in phishing kits, currently being advertised on the Dark Net. Unlike previous kits which are primarily composed... Click to Read More


Check Point’s 2018 Security Report

April 15, 2018 1:13 am Published by Comments Off on Check Point’s 2018 Security Report

2017 was a pivotal year that surprised many in the IT security industry. From the resurgence of destructive ransomware, IoT botnets, data breaches and mobile malware to full scale nation state attacks, it is... Click to Read More


Uncovering Drupalgeddon 2

April 12, 2018 6:18 am Published by Comments Off on Uncovering Drupalgeddon 2

By Eyal Shalev, Rotem Reiss and Eran Vaknin Abstract Two weeks ago, a highly critical (25/25 NIST rank) vulnerability, nicknamed Drupalgeddon 2 (SA-CORE-2018-002 / CVE-2018-7600), was disclosed by the Drupal security team. This vulnerability... Click to Read More


Return of the Festi Rootkit

April 3, 2018 12:26 pm Published by Comments Off on Return of the Festi Rootkit

Festi, a once popular rootkit is back in the wild, distributed mainly by the RIG exploit kit. A long known Windows rootkit, Festi dates back to 2009 where at that time it served... Click to Read More


Tribute to Kris Kaspersky

March 29, 2018 3:03 am Published by Comments Off on Tribute to Kris Kaspersky

Just over a year ago one of the greatest minds in the cyber research world sadly passed away. Born in the small Russian village of Uspenskoye, Kris Kaspersky, originally named Nikolay Likhachev, suffered... Click to Read More


Check Point Responds to AMD Flaws

March 19, 2018 6:12 am Published by Comments Off on Check Point Responds to AMD Flaws

Following recent heated attention over possible flaws in AMD processor chips, Check Point Research was privately approached by the source of these controversial findings, CTS Labs, and was asked to verify their existence.... Click to Read More


RottenSys: Not a Secure Wi-Fi Service At All

March 14, 2018 9:24 am Published by Comments Off on RottenSys: Not a Secure Wi-Fi Service At All

Research By: Feixiang He, Bohdan Melnykov, Elena Root Key Findings: RottenSys, a mobile adware, has infected nearly 5 million devices since 2016. Indications show the malware could have entered earlier in the supplier... Click to Read More


The GandCrab Ransomware Mindset

March 13, 2018 7:54 am Published by Comments Off on The GandCrab Ransomware Mindset

Key Points: In 2018 even ransomware is agile. Learn about the mindset of the GandCrab ransomware developers. Take a deep dive into the inner workings of GandCrab’s operation. Get an overview of two... Click to Read More