At CyberPlural MSSP, we facilitate practices and teams that are devoted to preventing, detecting, assessing, monitoring, and responding to cybersecurity threats and incidents. We are […]
cp
Who’s Responsible? Accountability in API Security
Introduction In our recent engagements focused on red teaming, threat intel and vulnerability management, we’ve observed a significant trend: organizations in the financial and government […]
Internet-Facing RDP: A Backdoor Invitation to Ransomware
Introduction Many cybersecurity stories begin after a breach, but this one starts before. In this blog, we aim to demonstrate how proactive monitoring can transform […]
Critical Alert: Protecting Your SharePoint Servers from ToolShell Exploits
Introduction In recent months, our Managed Detection and Threat Response (MDTR) team has been closely monitoring emerging trends in cybersecurity threats. One area of concern […]
When Zero-Day Hits, Will Your Defense Stand?
Zero-day vulnerabilities literally have no remediation at the time of discovery and or exploitation. Think about it: They are called zero-day vulnerabilities for a reason, […]
Leveraging “AlwaysInstallElevated” for Windows Privilege Escalation
The “AlwaysInstallElevated” setting in Windows is a misconfiguration that allows low-privileged users to escalate privileges to SYSTEM by installing MSI packages. This setting is often […]