Here’s how Python allows SenseOn to implement WebSockets in a scalable, effective, and secure way for threat detection and response.
Read moreOneNote malware: A growing threat
This blog was written by Lachlan Godding, SenseOn Security Analyst. SenseOn has analysed various strains of malware using OneNote as the delivery vector. We observed these samples in attack campaigns globally throughout early 2023. This article will discuss the trends observed across these samples, and how SenseOn leveraged our state-of-the-art telemetry to gain insight into…
Read moreBitcoin miners spreading via software cracks
Software privacy comes in many forms, one way is using ‘cracks’ which can be used to bypass the licence and activation software seen in commercial software. Running any software provided by an unknown third party is a really risky thing to do. As it provides an easy method for an attacker to run malicious code…
Read moreSenseOn Advisory on the Outlook Zero Day Vulnerability
Executive Summary Product Impacted: Microsoft Outlook Criticality score: 9.8 Critical CVE-2023-23397 On the 14th March 2023, Microsoft published details of a critical Outlook vulnerability known to have been exploited by threat actors. The vulnerability, tracked under CVE-2023-23397, allows attackers to obtain NTLM hashes by sending specially crafted emails to a victim which will exploit the…
Read moreExploring the Gootkit loader infection chain
This post was authored by our Director of Technology, Brad Freeman. SenseOn’s in-depth analysis of the Gootkit malware family breaks down the Gootkit malware attack chain. With SenseOn’s advanced telemetry, our cybersecurity analyst team was able to break down the latest Gootkit attack methods. SenseOn has a wide range of threat intelligence and security analytics…
Read moreAutomating your security data pipeline using a strict data model
This post was written by SenseOn’s CTO, James Mistry.Know all about the challenges of wrestling with big datasets whose definition is unclear? Go straight to the gory details! The “More is Better” approach Security platforms collect a lot of data. A SIEM, for example, might ingest endpoint events, firewall logs, a variety of application logs…
Read moreSenseOn’s Security Engineering Squad Attends Objective by the Sea 2022!
Read all about SenseOn’s trip to Objective by the Sea v5!
Read moreAdventures in Kernel Land: Hunting a Bug in Windows Filtering Platform
Read about how our CTO discovered a bug in Windows Filtering Platform.
Read more