Rhino Security Labs

Technical Blog

S3 Ransomware Part 2: Prevention and Defense

Spencer Gietzen
June 11, 2019

This is part two in a two-part series on S3 Ransomware. Part One discusses the attack vector of S3 Ransomware and demonstrates a proof of concept.
Note: This post not only discusses defense mechanisms against S3 ransomware, but it also…

S3 Ransomware Part 1: Attack Vector

NVIDIA GeForce Experience OS Command Injection

CVE-2019-0227: Expired Domain to Remote Code Execution in Apache Axis

David Yesland

Apache Axis™ is a Simple Object Access Protocol (SOAP) engine. During a recent red team engagement we came across an install of an old version of Apache Axis, version 1.4. There are now newer versions such as Apache Axis2, Apache CXF, and…