Blog Tag: Data-Sanitization-Cdr

Protecting Critical Networks: Power Grid

December 07, 2018 by Mike Goldgof
A recent article talks about the continued targeting of the U.S. power grid by Russia-linked hacking groups, specifically by “TEMP.Isotope.” While the U.S. critical infrastructure continues to improve its cyber defenses, some of the...

Protecting Critical Networks: Maritime Industry

December 07, 2018 by Mike Goldgof
A recent article describes the alarming cyber security issues faced by today’s maritime industry. It is entirely feasible for a hacker to break into a ship’s computer system and alter the ship’s course, for example. The primary...

Data Sanitization against Steganography, Evasion

November 06, 2018 by Taeil Goh
We have warned about the risk of steganography in the previous blog. Steganography is the method of concealing messages, images, videos or malware within a file or a message. We have now observed steganography in actual attacks*. Just...

Defending Against SettingContent-MS being used in MS Office and PDF Files

July 31, 2018 by Taeil Goh
Summary SettingContent-ms is an XML file that allows users to create a shortcut to Windows 10 setting pages. Recently a serious vulnerability was published by Matt Nelson, a researcher at SpecterOps. Only a week after his report, it...

Fighting Attacks Using CAD application files

July 09, 2018 by Taeil Goh
OPSWAT Data Sanitization (Content Disarm and Reconstruction) focuses on the application file (e.g., Microsoft Office document) to keep it from being used as a delivery method for unknown threats (e.g., zero-day threats). We categorize...