contact us

BlueKeep (CVE-2019-0708): From Rumor to Reality

Microsoft Windows Remote Desktop Protocol (RDP) is a built-in service that facilitates logging into the Windows GUI of another computer over the network, by default on TCP port 3389. On 14 May 2019, the public's attention was drawn toward patching the...

DEF CON 26 and DerbyCon 2018 Blog and Video

Demystifying MS17-010: Reverse Engineering the Eternal Exploits MS17-010 is the most important patch in the history of operating systems, fixing remote code execution vulnerabilities in the world of modern Windows. The ETERNAL exploits, written...

read more

Koadic: New Features and Video Demonstration

Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. The major difference is that Koadic does most of its operations using Windows Script Host...

read more

Questions for Executives on Cyber

By Ed Amoroso, Founder and CEO of TAG Cyber During my career, it’s been my honor to have served alongside some of the most capable and talented corporate executives in the world. One such executive, Andy Geisse, now serves as Operating Partner...

read more

Watch Those Robots

Are you worried about security for robots? I am. I worked with welding robots many, many years ago. They were not networked, and they ran on proprietary embedded systems and code. Twenty-five years later, I remember being briefed by a...

read more

Spectre Rises from the Grave

On May 21, 2018, Microsoft and Google released two new side-channel attacks called Spectre Variant 3a (CVE-2018-3640) and Variant 4 (CVE-2018-3639). These are only important to worry about if you are an operating system developer; for everyone...

read more
Prioritize Your Remediation Across a Growing Attack Surface