Category: Blog Posts

Looking Forward: Leap Security’s 2019 Cybersecurity Predictions

It’s time to kick off the new year with our Threat Predictions for 2019. Although we like to think we are Jedi, our predictions are based off last year’s trends and our team’s research — not the force. Here are five high impact threats and predictions to prepare for in the new year. Zero Days…

Read more

Leap Security CTF 2018 Results

Wow, what an event! We are truly blown away by the community’s enthusiasm, participation, and excitement surrounding the event! Thank you to all those who participated!! The IRC channel was tense up to the last moment and it was fun seeing several participants excel during the CTF and be challenged with our crypto challenge. The…

Read more

libssh Authentication Bypass CVE-2018-10933

A vulnerability present in libssh versions 0.6 and later has taken the internet by storm. The vulnerability allows attackers to bypass authentication and gain remote code execution on the affected system. The libssh team has already released a patch to this vulnerability (link below). Upgrading to 0.7.6 or 0.8.4 eliminates the vulnerability. Link: libssh patchLink:…

Read more

Bsides Miami Presentation

Powerpoint: Slides BSides Miami 2018 Slides We had a great time bonding with our South Florida community at the inaugural BSides Miami this year. Our presentation educated the audience on current industry trends, the creation of targeted social engineering scenarios, demos of tools and real world examples. Luckily for us, the demo gods were nice…

Read more

General Data Protection Regulation (GDPR) Penetration Testing

Introduction Meet GDPR. The General Data Protection Regulation (GDPR) is the new regulation in town which goes into full effect next week, May 25th. GDPR 95/46/EC covers the protection and empowerment of data privacy for all EU citizens, and the way organizations approach and process such data. Any organization that handles or processes the data…

Read more

Drupal Targeted with RCE Exploits

Introduction By now, you’ve most likely heard of the two recent Drupal vulnerabilities disclosed. If you or your organization is running Drupal 7.x or 8.x, we highly recommend you stop reading and update it now. Drupal 7.5.9 and 8.5.3 has patched the critical vulnerabilities mentioned in this article. Link: How to update Drupal Link: Drupal…

Read more

Let's talk about your
security needs

Send us an email and we’ll get the process started to protect your company

contact us