Mapping Out a Malware Distribution Network

2019-06-10T18:54:31-07:00April 4th, 2019|Breaking News, Threats|

More than a dozen US-based web servers were used to host 10 malware families, distributed through mass phishing campaigns. Malware families include Dridex, GandCrab, Neutrino, IcedID and others. Evidence suggests the existence of distinct threat actors: one responsible for email and malware hosting, and others that operate the malware. Indications that the servers are part [...]

Tricks and COMfoolery: How Ursnif Evades Detection

2019-06-10T18:55:30-07:00March 7th, 2019|Breaking News, Threats|

Ursnif is one of the main threats that is effectively evading detection right now (at publication) The dropper uses a COM technique to hide its process parentage WMI is used to bypass a Windows Defender attack surface reduction rule Fast evolution of delivery servers means detection tools are left in the dark In February we [...]

Anatomy of Meltdown – A Technical Journey

2019-06-11T09:45:39-07:00January 15th, 2018|Breaking News, Threats|

This blog reviews the details of Meltdown and discusses the inherent immunity for end users provided by Bromium's architecture. Meltdown is an Intel CPU vulnerability leveraging speculative execution which gives an attacker-controlled process the ability to read arbitrary memory belonging to the kernel. Although it doesn't allow for an attacker to directly take control of the kernel, there [...]

Ian Pratt, Bromium Co-Founder, Speaks on Spectre and Meltdown [Video, Part 1]

2018-01-08T19:04:43-07:00January 8th, 2018|Breaking News|

The Intel chip vulnerability triggered Spectre and Meltdown - information leakage vulnerabilities. Both let attackers that have execution in some unprivileged user space to read data belonging to other processes, even more privileged ones including the kernel itself. Meltdown only effects Intel CPUs, whereas the Spectre vulnerability is present on pretty much all modern CPUs [...]

Ian Pratt, Bromium Co-Founder, Discusses an Enterprise Response to Spectre and Meltdown [Video, Part 2]

2018-01-08T19:02:10-07:00January 8th, 2018|Breaking News|

The Intel chip vulnerability triggered Spectre and Meltdown - information leakage vulnerabilities. Spectre and Meltdown require an attacker to run code on the target system. Micro-virtualization can really help mitigate the effects; even when dealing with kernel vulnerabilities. We asked our founder, Ian Pratt, to talk to us about Spectre, Meltdown and what this means [...]

Ian Pratt, Bromium Co-Founder, Why Bromium is Releasing an Upgrade [Video, Part 3]

2018-01-08T12:07:14-07:00January 8th, 2018|Breaking News|

The Intel chip vulnerability triggered Spectre and Meltdown - information leakage vulnerabilities. With the advent of the Microsoft Windows patch, it’s important to upgrade Bromium first to keep your security intact. Micro-virtualization can really help mitigate the effects; even when dealing with kernel vulnerabilities. We asked our founder, Ian Pratt, to talk to us about [...]

Bromium Response: Intel CPU Design Flaw Creates Work for Everyone

2019-06-11T09:45:52-07:00January 4th, 2018|Breaking News, Threats|

The design flaw has been in existence for the last decade. Operating system vendors are the only ones who can remediate the vulnerability. The Microsoft patch – out today - requires Bromium customers to upgrade before patching Windows. Spectre or Meltdown cannot be directly used to steal information from an unpatched machine with Bromium because [...]

Phishing Trojan Campaign Picks Up Pace, Morphing at Scale to Defeat Legacy Detection

2017-11-13T14:48:25-07:00November 13th, 2017|Breaking News, Threats|

Phishing attacks are nothing new, but we are noticing a new trend for polymorphism. Bad guys are wrapping both the document and the dropped executable. In samples that are literally minutes old, we see the control server is re-obfuscating and updating the malware faster than anti-virus programs are updating their awareness. The changes made to [...]

See Our Threat Analysis of University College London Ransomware Attack

2019-06-11T09:46:47-07:00June 16th, 2017|Breaking News, Threats|

Ransomware has hit the news again in the UK today only a few short weeks since the WannaCry outbreak crippled the National Health Service. This time University College London (UCL) was hit by a ransomware strain which has resulted in them having to take down parts of their network to stop infected machines harming key university [...]

Cybersecurity Virtualization Expert Ian Pratt Explains WannaCry Exploit

2017-05-14T15:52:21-07:00May 14th, 2017|Breaking News|

Ian Pratt, co-founder of Bromium and a virtualization expert was interviewed by Sky News. The video clip below shows how the malware arrived and how it deployed. This is the first of what will be many likely exploits in the months to come. WannaCry is likely the first of many global cybersecurity events that will [...]

See Bromium in Action

Request a demo and see how Bromium isolation will put an end to malware and attacks once and for all.

Request a Demo

By continuing to use the site, you agree to the use of cookies. More information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close