Vulnerability Types

add one proton, electron, or neutron to every atom in your body?

You need to:

• patch outdated systems
• harden configurations
• upgrade to more secure versions of OSs

Vulnerability scanning uses specialized tools to identify potential weaknesses in digital assets. These weaknesses span from open ports, to outdated versions of apps or services. Always assess and improve computing environments to keep them safe and secure.

Specific Device/OS Vulnerabilities

Windows is big. MacOS is on the rise. Linux is massive. Each of these have massive consequences if vulnerabilities are ever found. Luckily, we can learn from history to understand the true scope of these OSs going down.

• Microsoft Windows: MS17-010 (SMB exploit that led to EternalBlue and WannaCry, two of the most known remote code execution exploits)
• macOS: Shellshock (A Bash shell vulnerability that could've let attackers gain full control over a system, affected all UNIX-based systems)
• Android:  Stagefright (MMS exploit that allowed RCE via a weakness in the Stagefright media library)
• iOS: Google Project Zero (watering hole attacks that let threat actors gain full remote control of a device by having them simply visit a malicious site)
• Linux: Heartbleed (OpenSSL vulnerability that allowed attackers to gain access to private keys)

Firmware Vulnerabilities

This is almost rootkit level stuff.

• Meltdown and Spectre (some hardware processors allowed programs to steal data as it was being processed)
• Lojax (UEFI exploit that basically let rootkits do their thing)