A Deep Dive Into Samsung’s TrustZone (Part 2)
Introduction After detailing Samsung's TrustZone implementation in the first part of this series, this blog post introduces the tools that we have developed to reverse engineer the system and find…
A Deep Dive Into Samsung’s TrustZone (Part 1)
Motivations After a general introduction on the ARM TrustZone and a focus on Qualcomm's implementation, this new series of articles will discuss and detail the implementation developed by Samsung and…
A Glimpse Into Tencent’s Legu Packer
Introduction This blog post deals with the Legu packer, an Android protector developed by Tencent that is currently one of the state-of-the-art solutions to protect APK DEX files. The packer…
Irma Past and Future
Introduction Irma is our file security analysis software, originally developed as an open source project with the sponsorship of 5 major European organizations, it is now also one of Quarkslab's…
The authorities of Uzbekistan to launch a national mining pool
Uzbekistan plans to legalize mining by providing the status of a participant in the mining pool, which is planned to be created in the Republic. This is stated in the…
European Union likely to ban Facial Recognition for 5 years
The EU (Europian Union) is considering restricting the use of facial recognition technology for a possible duration of 5 years, in public area sectors. The reason being is the regulators…
Adult Webcam Models’ Private and Sexual Data Compromised!
Undoubtedly, being an "Adult Webcam Model" means living a "revealing" life "out in the open". But to an extent where "Personal" and "Sexual" details are laid out on the table?…
Scallion – GPU-based Onion Addresses Hash Generator
Scallion lets you create vanity GPG keys and .onion addresses (for Tor's hidden services) using OpenCL.Scallion runs on Mono (tested in Arch Linux) and .NET 3.5+ (tested on Windows 7…
Bluewall – A Firewall Framework Designed For Offensive And Defensive Cyber Professionals
Bluewall is a firewall framework designed for offensive and defensive cyber professionals. This framework allows Cybersecurity professionals to quickly setup their environment while staying within their scope.CreditInspired by Andrew Benson's…
Smartphone shopaholic
Have you ever noticed strange reviews of Google Play apps that look totally out of place? Their creators might give it five stars, while dozens of users rate it with…
Operation AppleJeus Sequel
The Lazarus group is currently one of the most active and prolific APT actors. In 2018, Kaspersky published a report on one of their campaigns, named Operation AppleJeus. Notably, this…
How we developed our simple Harbour decompiler
https://github.com/KasperskyLab/hb_dec Every once in a while we get a request that leaves us scratching our heads. With these types of requests, existing tools are usually not enough and we have…
OilRig’s Poison Frog – old samples, same trick
After we wrote our private report on the OilRig leak, we decided to scan our archives with our YARA rule, to hunt for new and older samples. Aside from finding…
Kaspersky Security Bulletin 2019. Statistics
All the statistics used in this report were obtained using Kaspersky Security Network (KSN), a distributed antivirus network that works with various anti-malware protection components. The data was collected from…
Roomba i7 vs Roomba 960 – Which is a Better Buy?
iRobot’s line of Roomba robot vacuums is impressive. It provides you with a high-quality unit and superior functionality. But which one is the best? There are several models to choose…
Roomba s9 vs Roomba 960: Which One Should You Buy?
A lot of people thought that it would take some time before iRobot could come out with a robot vacuum to top the Roomba i7+. With the ability to clean…
One IS Better: Ecovacs Deebot vs iRobot Roomba in 2020
Two of the most well-known brands in the robot vacuum space are iRobot Roomba and Ecovacs Deebot. How are the two brands differ from each other and which one is…
The iRobot Terra Review – All You Need to Know!
As smart home technology continues to become a larger part of our lives, more and more homes are discovering the benefits of owning a robot vacuum. They’re small, compact, and…
Roomba e5 Review [2020]: Worth the Price?
The Roomba e5 was introduced by iRobot at the IFA 2018 along with the Roomba i7+. But while the Roomba i7+ has been getting a lot of attention and media…
Business in the front, party in the back: backdoors in elastic servers expose private data
It seems like every day we read another article about a data breach or leak of cloud storage exposing millions of users’ data. The unfortunate truth is that the majority…
52 Hackers get into the US Army system in the last 5 weeks
Last year, during October and November, 52 hackers were able to hack the US army. "It only strengthens our security systems as the hackers who hacked our systems did it…
Over 600 Million Users Download 25 ‘Fleeceware’ Apps from the Play Store
Researchers at security firm Sophos has discovered a new set of Android apps present on the Google Play Store that contain fleeceware. Notably, these apps have been downloaded and installed…
AntiCheat-Testing-Framework – Framework To Test Any Anti-Cheat
Framework to test any Anti-Cheat on the market. This can be used as Template or Code Base to test any Anti-Cheat and learn along the way. The entry level to…
Gowitness – A Golang, Web Screenshot Utility Using Chrome Headless
gowitness is a website screenshot utility written in Golang, that uses Chrome Headless to generate screenshots of web interfaces using the command line. Both Linux and macOS is supported, with…