UnderDefense Blog

3 key critical vulnerabilities and mitigation flows that brought 97% success rate during the last 70 internal pentestsZerologon, LLMNR,NTLM RELAY and Print Spooler RCE By UnderDefenseHow to Protect Against LLMNR / NBT-NS Attacks, Zerologon, LLMNR,NTLM...

Cybersecurity as the new foundation for safe drivingBy Iryna YamborskaHuman nature possesses both an aspiration to create and an aspiration to destroy. Therefore, when inventing something new, the creator must be prepared for someone who will want to exploit their...

Multi-level protection. How to secure the iGaming business from cookie theft consequences?By Iryna YamborskaRecently, the whole gaming world tensed up. One of the largest gaming companies in the USA and Europe faced a massive cyber security breach—hackers have stolen...

In a flurry of supply chain cyber attacks By Oksana PervenonokSupply-chain cyber attacks have become hacker’s most favorite target. Given the domino effect that a cybersecurity breach might trigger—even if just one link of the supply chain is weakened—the outcomes can...

Penetration Testing cost.What is the price to avoid bad surprisesBy Iryna YamborskaLet me guess: if you are here - you need a pentest. Customers ask you about pentest, or it is a compliance requirement. Or you are the one who takes care of the state of security of the...

How to detect CobaltStrike Command & Control communicationBy Bogdan VennykCobaltStrike became part of the Cybercrime’s “toolset” almost in every Company breach. This growth is explained by the fact that CobaltStrike was leaked multiple times and became more...

Detecting DGA domains: Machine Learning approachBy Alexander RagulinIn this post we are going to take a look at Domain Generation Algorithms (DGA) and an interesting way to detect them with the help of Deep Learning (LSTM neural net, to be precise). DGA domains are...

UnderDefense enters strategic partnership with Microsoft Azure Companies in various industries increasingly choose cloud as a primary location to store data or plan to migrate to the cloud. Such infrastructure is much more flexible for data modernization and analysis....

Ethical Hacking. How to not end up with a false sense of cybersecurity?By Nazar TymoshykCEO at UnderDefenseDo I have a false sense of cybersecurity?We all know the cliché “ignorance is bliss”, but along with that there is another proverb, (and a song by the Byrds),...

UnderDefense and Accedian Partner to Deliver Cyber Resiliency SuitePress Release: January 19, 2021UnderDefense and Accedian announced the launch of a partnership product to provide businesses with a suite of cyber security services. The main aim of our team is to...

Risk-based cyber resiliencyCustomer view:Guest blog by Michael Rezek, VP, Cybersecurity Strategy at AccedianIt may be possible to spend less on cybersecurity and get more protectionWhat we have witnessed over the last couple of decades as the traditional approach to...

Black Friday. How To Avoid Major Cybersecurity RisksBy Iryna YamborskaBlack Friday is coming! Pleasant time of hot sales. Pleasant not only to those people who prepare Christmas gifts but also to hackers who want to make money on the desire of users to buy cheaper...

Incident Response LifecycleWhat is the Incident Response Lifecycle?With COVID-19 forcing businesses around the globe to shift to remote work, the cybersecurity landscape has changed significantly. Consequently, the complexity of protecting corporate infrastructure...

UnderDefense enhance its presence and capabilities in compliance - more ISO27001 auditor certificates Compliance is getting harder year to yearOrganizations of all industries and sizes are facing more compliance regulations every year. Regulators no longer just accept...

Write-up:N-day exploit development and upgrade to RCE[CVE-2018-6231] Trend Micro Smart Protection Server Bypass Vulnerability + Code Execution By Taras Zelyk, Serhiy Sych, Bogdan Vennyk “At UnderDefense we are not only hunting for vulnerabilities and analyzing their...

Strategic partnership between UnderDefense and SOC PrimeUnderDefense and SOC Prime Partner to Deliver the world’s largest marketplace for Threat Detection Rules and Queries New York, New York – February 24, 2020 – UnderDefense, a leader in supporting organizations...

UnderDefense and Accedian Partner to Deliver Next-Generation Intrusion Detection as a Service  New York, New York – January 28, 2020 – UnderDefense today announced a strategic partnership with Accedian, the leader in performance analytics, cybersecurity threat...

Strategic partnership between UnderDefense and Kyte Global UnderDefense and Kyte Global Partner to deliver the Next-Generation Detection and Incident Response Services.New York, New York - 09th January 2020 - UnderDefense today announced a strategic partnership with...

2019 in numbers2019 was a very productive and eventful year for UnderDefense team.We’ve changed a lot and accomplished many awesome things.Our team is happy that you have been witnessing us grow and mature.That is why we would like to share some of our most notable...

UnderDefense Recognized as Clutch Global Leader in IT & Business Services! Cybersecurity isn’t just a techie word to delegate to your IT teams anymore; nowadays companies are actively seeking protection from hacking attacks and cyber threats. Our work is the...

A new #OSCE certificate on our Wall of Fame!UnderDefense team has added another certificate in our Red Team portfolio! Offensive Security Certified Expert (OSCE) certification shows a strong understanding of security principles and practice. This ethical hacking...

Strategic partnership with Nexia GroupWe are happy to announce that UnderDefense has become a member of Nexia Group. At the BreakWest meeting, we have been officially recognized as a partner of a leading global network of independent accounting and consulting firms....

Eugene Roman to a C-level at the cross-roads: choosing security vs. usability Eugene Roman short bio:  Eugene won the 2015 Canadian CIO of the Year award (Private Sector) for having created a strategic plan to transform the Canadian Tire Corporation into an innovator...

How to comply with SHIELD Act?Are you storing data and private information of New York residents? The state has enforced breach notification law Stop Hacks and Improve Electronic Data Security (SHIELD) Act updating the scope and requirements for consumers’ sensitive...

News from UnderDefense in NYCWe’ve moved! UnderDefense is excited to announce that you can find us at 111 John Street, Suite 420 in NYC. Also, there are a few brilliant events in August-October that we are going to take part and encourage you to do the same.28 August...

UD experts are not only in the cyber worldOur UnderDefense team had some truly great time this weekend! We regularly spend time together to build great communication between our teams and nurture company values.This time our little going-out-of-city became an...

UnderDefense in CanadaUnderDefense had great opportunities to attend many insightful events and meet interesting people in Canada. UD representatives were happy to visit two separate events but equally important. They got in touch with world leaders at an...

New Feature in AWS: Traffic MirroringNow security analysts are able to collect data fast and flexibly with a new feature. Traffic Mirroring in AWS has given an ability to transfer the traffic to a SIEM (like Splunk) and analyse it. This is targeted for cases when you...

UD team at NoNameCon 2019: outcomes and materialsNoNameCon was epic this year! We loved to see the growth of our community and contribute with speeches sharing our expertise! There were 3 speakers from UnderDefense, 2 Villages and 12 UD teamers who attended the...

Forwarding MySQL log file in AWS to Splunk: monitoring connectionsIntro Working for our client with a database hosted on Amazon, we have faced the case of forwarding MySQL log files in AWS to Splunk in order to monitor connections to the DB. According to safety...

Anomali and UnderDefense partnership Anomali is one of the most comprehensive Threat Intelligence Platforms. It boosts the reaction of analysts in Security Operations Center to unknown threats and investigate incidents faster. We are proud to have such a strong...

2018 in numbers 7 times revenue growth Top 5 of 704 Cybersecurity Consulting Companies by Clutch 4 products launched for our clients 24 new logos 1.5 times growth of engineering staff 3d place on SecOps EU competition 1 new Fraud Detection project completed 50 new...

Fraud Detection Speech at EBA UnderDefense team has attended a Breach&Fraud.IT meeting, which was organized by the European Business Association. Our CEO Nazar Tymoshyk and PM Mykhailo Hordych have presented there a speech about Data Breach Incident and its...

Top 3 research and rating platforms for cybersecurityThe first step our potential customers take is visiting of the websites with independent ratings, reviews, and feedbacks online to check the quality, excellence, and professionalism of a vendor or service provider...

UnderDefense's engineer unlocked Splunk certifications Consultant I level  We are pleased to be a Spunk partner and now our security analysts are awarded and holding Splunk certifications. Slunk Inc. is a company producing software for searching, monitoring, and...