McAfee Labs
Read McAfee Labs blogs for the latest threat research, threat intelligence, and thought leadership from the Threat Research team.
‘BadRabbit’ Ransomware Burrows Into Russia, Ukraine
This post was researched and written by Christiaan Beek, Tim Hux, David Marcus, Charles McFarland, Douglas McKee,...KRACKs: Five Observations on WPA Authentication Vulnerability
KRACKs are in the news. McAfee has already discussed these key reinstallation attacks that affect Wi-Fi setups...ROCA: Which Key-Pair Attacks Are Credible?
This blog was co-written by Brook Schoenfield. In the past two weeks, we have seen two big...KRACKs Against Wi-Fi Serious But Not End of the World
On October 12, researcher Mathy Vanhoef announced a set of Wi-Fi attacks that he named KRACKs, for key reinstallation attacks.Tips for Effective Threat Hunting
McAfee surveyed more than 700 IT and security professionals to better understand how threat hunting is used in organizations.Taiwan Bank Heist and the Role of Pseudo Ransomware
Widespread reports claim the Far Eastern International Bank in Taiwan has become a victim of hacking. The...Staying Anonymous on the Blockchain: Concerns and Techniques
Because a blockchain ledger is public, maintaining anonymity is hard, especially in the case of Bitcoin.Linux Kernel Vulnerability Can Lead to Privilege Escalation: Analyzing CVE-2017-1000112
A memory corruption bug in UDP fragmentation offload (UFO) code inside the Linux kernel can lead to local privilege escalation.McAfee Labs: Faceliker Surge Manipulates Facebook “Likes” to Promote News, Other Content
The McAfee Labs Threats Report, released today, identifies a notable surge in similar activity by the Faceliker malware.Apache Struts at REST: Analyzing Remote Code Execution Vulnerability CVE-2017-9805
Apache Struts, an open-source web development framework, is prone to vulnerabilities. The latest is CVE-2017-9805.Microsoft Kills Potential Remote Code Execution Vulnerability in Office (CVE-2017-8630)
Recently the McAfee IPS Research Team informed Microsoft about a potential remote code execution vulnerability in Office 2016.Android Click-Fraud App Repurposed as DDoS Botnet
The McAfee Mobile Research Team tracks the behavior of Android click-fraud apps. We have detected multiple implementations.
