Blog
Find all the latest cybersecurity news decrypted and analyzed by Gatewatcher experts!

Tags

CVE JunOS SRX/EX Vulnerability chains to RCE
JunOS SRX/EX Series : Vulnerability chains to RCE CVE-2023-36844 CVE -2023-36845 CVE -2023-36846

Healthcare and Cybersecurity – How to protect hospitals with NDR technologies ?
Last July, ENISA published its first report on cybersecurity in healthcare. A total

CVE 2023-3519 : Citrix ADC / Gateway Remote Code Execution
On July 18, 2023, Citrix issued a security warning concerning the Netscaler ADC

ZIP files, make it bigger to avoid EDR detection
Our Purple Team analysts have spotted a number of anomalies concerning zip files.

Benefits of a UEBA approach
Dealing with cybersecurity within an organization is no longer the same as it

Security advisory – Volt Typhoon on the rise due to “living-off-the-land” attacks
U.S. and international cybersecurity authorities jointly issued a cybersecurity advisory on May 24

The essential of a CISO for 2023
Today, cybersecurity is an essential component to take into account in a risk

Cryptominer : Detecting a growing source of revenue for cyber attackers
In a context of securizing its digital environment, the increase in the price

Which way to go for machine learning in cybersecurity anomaly detection?
Introduction In a previous article (Artificial Intelligence and Cybersecurity: the role of machine

CVE-2021-21974 – VMware ESXi OpenSLP heap-overflow vulnerability
WHY RETURN TO A 2021 VULNERABILITY? After the return of the CVE-2021-35394 vulnerability

Better detect CVE-2021-35394 Realtek Jungle SDK with Gatewatcher’s Purple Team
CVE-2021-35394 : Realtek Jungle SDK version v2.x up to v3.4.14B multiple memory corruption

Malware Analysis: RecordBreaker
1 Introduction RecordBreaker is the successor of Raccoon Stealer and is often referred

My traffic is encrypted, an NDR won’t see anything… Wanna bet?
In this world of permanent and increasingly sophisticated cyber-attacks, it seems essential to

Everything can be bought on the Dark web
For several months, we have seen an increase in the number of cyber-attacks

Hunting Advanced BotNets with NDR Solutions
Botnets are everywhere and play a crucial part in the kill-chain process in

Malware Analysis Lyceum
Lyceum is an APT group mostly active in the middle east, targeting energy

Building a Debian rootfs from an unprivileged user with debootstrap
At Gatewatcher, we put efforts in making our building system reproducible and working

Security operations : New terminologies for old problems ?
6 EASY STEPS DECISION-MAKERS SHOULD EMPHASIZE IN THE ORIENTATION & DECISION-MAKING PROCESS The

Time for vacation? Check out our Summer Cyber Tips
Because cybercriminals do not take a break even during the summer, Gatewatcher gives

Reasons why organizations are choosing a new breed of NDR
It’s noteworthy. In just seven years, our self-funded cyber security company has managed