Cybersecurity

Cybersecurity Technical Corner

iOS Wi-Fi Demon: From iOS Format String to Zero-Click RCE

You might have seen the recent bug in iOS 14.0 to 14.4, that crashed the Wi-Fi service by naming an access point a specific way. Apple tagged this bug as a Denial of Service on the Wi-Fi service, but the Zecops [1] Research Team has shown proofs that it could be exploited, causing an RCE, and more precisely a Zero-Click RCE.

Read this article

Published on

07 September 2021

Cybersecurity Technical Corner

Anatomy of a Red-Team exercise - Chapter 3

As discussed in previous scenario, we prepared several raspberry devices with a 4G modem, allowing us to remotely control the device without requiring being in proximity for operation.

Read this article

Published on

29 June 2021

Cybersecurity Technical Corner

Anatomy of a Red-Team exercise - Chapter 2

Prior any actions, we focused on the payload crafting that will be used with our attack scenarios. We decided to go for PowerShell stageless reverse HTTPS payload that will be delivered using HTA dropper and then executed on the target machine.

Read this article

Published on

20 April 2021

Contact us

Do you have any questions about an article? Do you need help solving your IT issues? 

Contact an expert

Our experts answer your questions

Do you have any questions about an article? Do you need help solving your IT issues?

Contact an expert