menu

Contact Us

1 (800) 723-1166 |

All Blogs

Forcepoint Security Labs have recently observed a peculiar email campaign distributing a variant of the Dridex banking trojan. The campaign used compromised FTP sites instead of the more usual HTTP link as download locations for malicious documents, exposing the credentials of the compromised FTP sites in the process.

The malicious emails were distributed just before 12:00 UTC on 17 January 2018 and remained active for approximately seven hours. The emails were sent primarily to... Read More

The year 2018 has gotten off to a tough start with the news of the Meltdown and Spectre (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754) vulnerabilities. This is a broad industry problem that affects almost everyone, everywhere. Processors from Intel, AMD, and ARM are all potentially vulnerable to at least one variant of Spectre or Meltdown which can be implemented within Apple, Linux and Windows environments. However, currently we are unaware of active exploits of this in the wild.... Read More

It has been just over a week since the Spectre and Meltdown vulnerabilities were released, shaking everyone out of their post-holiday daze. Our previous blog post on the topic discussed the viability of these attacks in the real world – what have we learned since then?

Note: Forcepoint customers should refer to the Knowledge Base article at https://support.forcepoint.com/KBArticle?id=000014933 for Spectre/Meltdown mitigation and patching advice for all Forcepoint products. New... Read More

Welcome 2018! 

While it was great to have a little downtime over the last couple of weeks, we are ready to begin 2018 with energy and excitement that comes from a successful previous year. As I read through the list of Forcepoint CASB new customers I am increasingly confident that providing Cloud Application Security as part of the Human Point System is the right strategy for large enterprise organizations looking to secure cloud use and their existing technology investments as... Read More

Editor's Note: 

For the latest Security Labs research, see Spectre & Meltdown -- A Week (and a bit) On

For the latest information on how this issue affects Forcepoint security products, please see the technical bulletin: Meltdown and Spectre Vulnerability

 

Update

2018 has gotten off to a tough start with the news of the Meltdown and Spectre (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754) vulnerabilities. This is a broad industry problem... Read More

As I write this, I’m sitting on an aircraft flying back from London to Austin, thinking about what I’ve learned on my most recent trip. It’s always interesting visiting another country, and so it was with some excitement that I traded the wonderful weirdness of Austin for the formality and deep history of London.

The purpose of my trip to the UK was to meet with customers, catch up with Forcepoint researchers, and to take part in an event we were hosting – a round table dinner... Read More

We normally try to protect the things most valuable to us, hence the proliferation of different locks and keys for our cars, houses, etc. These keys in the material world are analogous to our passwords in the digital one. However even an average user likely has more passwords for the devices and services they use than keys for any other group of assets. 

We recently wrote about the Quant malware coming with pre-packaged password stealing capabilities. We all understand that... Read More

Overview

In October of 2017 Forcepoint’s initial application to the U.S. General Services Administration was accepted into the Continuous Diagnostics and Mitigation (CDM) program, which enables agencies to quickly acquire cybersecurity products.

The products Forcepoint NGFW, Forcepoint Email Security, Forcepoint Web Security and Forcepoint DLP were all part of the initial application approved and available on the CDM Approved Product List for Phase Three.

The... Read More

Forcepoint Security Labs researchers have just returned from a successful Black Hat Europe 2017 hosted in London, UK.  We had an enjoyable time presenting, networking and expanding our own knowledge. Thank you to all those who attended our Briefings Talk on Wednesday and who met us on our booth in the Business Hall.

 

Forcepoint Briefing - and Evader

Forcepoint researchers, Antti Levomäki & Olli-Pekka Niemi, delivered a briefing in the Network Defense track... Read More

Last year, Forcepoint Security Labs blogged about the Quant Loader – a Trojan downloader previously seen being used to distribute Locky and Pony. 

We recently came across an active Quant loader administration panel hosted on a freshly registered domain which was also hosting a number of additional malware samples. At first glance everything seemed to be business as usual, but once the initial investigation was completed it became evident that some additional ‘features’ had been ... Read More