SimBad: A Rogue Adware Campaign On Google Play

March 13, 2019 6:22 am

Research by: Elena Root and Andrey Polkovnichenko   Check Point researchers from the Mobile Threat Team have discovered a new adware campaign on the Google Play Store. This particular strain of Adware was... Click to Read More

Operation Sheep: Pilfer-Analytics SDK in Action

March 13, 2019 6:22 am

Research by: Feixiang He, Andrey Polkovnichenko   Check Point Research has recently discovered a group of Android applications massively harvesting contact information on mobile phones without the user’s consent. The data stealing logic... Click to Read More

Cuckoo SandBox on AWS

March 11, 2019 6:23 am

  Cuckoo Sandbox: An Introduction From software vulnerabilities to APT groups, there are many areas of cyber research that Check Point Research is involved with. Arguably, one of the most challenging areas of... Click to Read More

PXE Dust: Finding a Vulnerability in Windows Servers Deployment Services

March 6, 2019 6:00 am

Research By: Omer Gull   Introduction Many large organizations use Windows Deployment Services (WDS) to install customized operating systems on new machines in the network. The Windows Deployment Services is usually, by its... Click to Read More

Jmail Breaker: Profiting from Joomla’s Mail Service

March 5, 2019 7:09 am

  Research By: Asaf G. and Adi I. Joomla! is one of the most popular CMS platforms and is used by hundreds of thousands of organizations worldwide. Over the years, many vulnerabilities were... Click to Read More

MacOS Malware Pedia

March 4, 2019 5:59 am

A New InfoStealer Campaign Targets APAC Windows Servers

March 3, 2019 6:16 am

Research by: Arie Olshtein, Moshe Hayun, Arnold Osipov As time goes by, malware writers invent new methods to bypass security products. During our research, we came across an attack targeting Windows servers in... Click to Read More

Vol.3 – 2019 Security Report

February 20, 2019 6:01 am

  In the first installment of this 2019 Security Report we reviewed the latest trends and threats facing the IT security industry today. In the second we took a deeper look at the... Click to Read More

Extracting a 19 Year Old Code Execution from WinRAR

February 20, 2019 6:00 am

Research by: Nadav Grossman Introduction In this article, we tell the story of how we found a logical bug using the WinAFL fuzzer and exploited it in WinRAR to gain full control over... Click to Read More

North Korea Turns Against New Targets?!

February 19, 2019 6:00 am

  Introduction Over the past few weeks, we have been monitoring suspicious activity directed against Russian-based companies that exposed a predator-prey relationship that we had not seen before. For the first time we... Click to Read More