Posts tagged with: microsoft

As part of Unit 42’s ongoing threat research, we can now disclose that Palo Alto Networks Unit 42 threat researchers have discovered 23 new vulnerabilities addressed by the Adobe Product Security Incident Response Team (PSIRT) as part of their February 2019 APSB19-07 security update release and 2 vulnerabilities addressed by the Microsoft Security Response Center (MSRC) as part of their February 2019 security update release.  Severity ratings ranged from Important to Critical for each of these vulnerabilities.

Palo Alto Networks is proud to announce that four Unit 42 researchers were named to the Microsoft Security Response Center “Top 100 Security Researchers List” for 2018.

Unit 42 examines CVE-2017-11882 and how Traps advanced endpoint protection protects against this threat.

Palo Alto Networks Unit 42 researchers have discovered one vulnerability (CVE-2018-0762) addressed by the Microsoft Security Response Center (MSRC) as part of their January 2018 security update release.

Get an overview of the Meltdown and Spectre vulnerabilities including a risk assessment and calls to action.

Palo Alto Networks Unit 42 vulnerability disclosures: December 2017.

Unit 42 analyses multiple instances of threat actors exploiting critical vulnerability CVE-2017-11882.

Palo Alto Networks Unit 42 vulnerability research November 2017 disclosures.

Palo Alto Networks Unit 42 researchers have discovered one remote code execution vulnerabilities affecting Microsoft Internet Explorer 9 and 10

New research from Palo Alto Networks Unit 42: the curious case of Notepad and Chthonic: exposing a malicious infrastructure.

Microsoft honors 5 Unit 42 researchers for vulnerability research.

A note to readers: The code samples included within this blog post may trigger alerts from your security software. Please note that this does not indicate an infection or an attack; rather, it is a notification that the code could be malicious if it were live. PowerShell has continued to gain in popularity over the

(This blog post is also available in Japanese.) Palo Alto Networks has identified a malware family known as ‘Aveo’ that is being used to target Japanese speaking users. The ‘Aveo’ malware name comes from an embedded debug string within the binary file. The Aveo malware family has close ties to the previously discussed FormerFirstRAT malware

Four Palo Alto Networks threat intelligence researchers were recently recognized in the Microsoft Security Response Center (MSRC) Bounty Program Top 100 list announced at Black Hat USA 2016. Congratulations to Bo Qu, Tao Yan, Hui Gao,  and Tongbo Luo!

Threat actors tend to reuse certain tools, a trend we observed during recent Unit 42 research published on MNKit. In this post, we will discuss a fresh toolkit, which on the surface, appeared similar to MNKit, but functionally was found to be quite different. This toolkit, which we named “HOMEKit”, is similar to MNKit in