Sayers Blog

Subscribe 
updated_default_header
    August 02, 2019

    Avoiding the Capital One Breach: Defense in Depth

    With the release of the criminal complaint in the recent Capital one breach we now have a better understanding of how Paige A. Thompson exfiltrated data from their cloud vendor. We don’t know all the details and can only make inferences based upon the information available.

    Read More
    July 30, 2019

    VxWorks Vulnerabilities: More Exposure Than You Think

    "When you start a sentence with '200 million' in the Cybersecurity world it's likely to end with 'records exposed' but today it's ending with something much scarier, 'devices exposed'." - Nigel Smithson, Sr. Cybersecurity Solutions Engineer @ Sayers  

    Read More
    March 05, 2018

    Did you order all these large packets?

    This week GitHub became the victim of the largest DDOS attack ever recorded due to a new amplification attack being observed in the wild.  This attack, which did not require building a botnet or compromising any servers, was able to generate 1.35TBps of data against the target.  It leveraged UDP ...

    Read More
    October 24, 2017

    What’s KRACKing at HPE Aruba

    Everything you need to know about KRACK(Key Reinstallation Attacks) What is it? Mathy Vanhoef, a technical security researcher, found what we are now calling “KRACK” to be a devastating security flaw in the relatively “secure” standard for wireless networks WPA. KRACK allows for attackers to ...

    Read More
    October 20, 2017

    You’ve undoubtedly heard of KRACK by now...

      News outlets cannot resist commenting on anything Cybersecurity related, especially when it sounds like something out of a mid-90’s TV hacker dictionary. We’re quickly on pace to break a record in 2017. At least with KRACK, it is a particularly interesting example of ingenuity and an unexpected ...

    Read More
    May 16, 2017

    A CYBERSECURITY ENGINEER’S PERSPECTIVE ON WANNACRY

    When an otherwise routine crypto cash-grab becomes international news, it can make the most seasoned of us pause momentarily in reflection. At its core – WannaCry isn’t anything special. It has your usual components of a ransomware attack – the Bitcoin buy, scary pop-ups and flutter. It has the ...

    Read More