Zerologon: Unauthenticated Domain Controller Compromise by Subverting Netlogon Cryptography (CVE-2020-1472)
This whitepaper explains a new vulnerability in Windows Server that is highly exploitable.
Go Nuclear: Breaking Radiation Monitoring Devices
The purpose of this research is to provide a comprehensive description of the technical details and approach IOActive used to discover vulnerabilities affecting widely deployed radiation monitoring devices. (more available)
KRACK Attack: WPA2 Wi-Fi Vulnerability
This report takes a look at the “Key Reinstallation Attack” VULN that works against all modern protected Wi-Fi- networks.
A SaaS Provider Survival Guide
This report covers performance, security, and encryption essentials for online applications.
Definitive Guide To Secure Remote Access
The purpose of this document is to provide answers to what to look for when choosing a security tool for remote access to internal applications. (more available)
Mobile Wi-Fi Security Report
This report is designed to inform you of the many dangers of Wi-Fi, and how to deal with them.
TPM Genie: Interposer Attacks Against the Trusted Platform Module Serial Bus
This report provides an analysis of TPM Genie. TPM Genie is a serial bus interposer which has been designed to aid in the security research of Trusted Platform Module hardware. (more available)
Mobile Data Report
This report looks at data from the mobile estates of global asset management and investment firms; providing analysis, benchmarking and best practice guidance on keeping mobile devices secure and managing data consumption. (more available)
Evaluation Guide For Mobile App Security Testing
This book provides some good guidance for app security testing. It seeks to assist enterprises with solving the issues surrounding app security. (more available)
Threat Advisory: CBS mobile apps & website
This is a threat advisory for CBS mobile apps & website