Log4j / High Severity Zero-Day Vulnerability

CVE-2021-44228 – Log4j 12.16.21 Update and Resources This communication provides relevant updates and resources that clients should be aware of regarding the Log4j security flaw. Binary Defense MDR is NOT IMPACTED by this vulnerability. Binary Defense and our sister company TrustedSec have collaborated to provide guidance about Log4j in the blogs and webcast linked below. For convenience, we […]

Binary Defense MDR Agent Support Policy

11.22.21 To maintain our high standard of detection in an ever-changing threat landscape and to ensure compatibility with modern operating systems, Binary Defense is announcing a new sunsetting policy for Managed Detection and Response (MDR) Agent software. Effective January 1, 2022 Agent software below version 4.6.10 will not be supported. While we can make a great many […]

Product Release Notification: Binary Defense MDR Dashboard Update

MDR Server Version 2.138 Binary Defense will be releasing a new version of MDR next week. This release features a redesigned MDR dashboard that provides a visual display of important security metrics with an at-a-glance view into real-time, informative, and actionable information about the threat level and security status of your organization. The new design is […]

Binary Defense MDR Agent / Server Update

MDR Agent Version 4.8.1 MDR Server Version 2.137.0 Binary Defense has released a new version of MDR. Highlights include important new Windows detections, an updated version of Sysmon, and a variety of routine fixes. All servers have been updated to the latest release. This agent release includes a new version of Sysmon to remediate a vulnerability, […]

Microsoft Printer Spooler Service Vulnerability

Microsoft Printer Spooler Service Vulnerability A critical vulnerability in Microsoft’s Printer Spooler Service allows for an authenticated user to remotely import DLLs for remote code execution onto systems running the Spooler service. All current versions of Windows server and desktop are impacted.  This attack was initially rated a low risk from Microsoft and a patch […]

Nobelium Attack Detection

With the recent Russian state-sponsored actors Nobelium running high profile targeted attacks via espionage tactics, Binary Defense has reviewed the breakdown of the attacks and all of the phases used within the attack chain. These targeted and highly sophisticated and customized attacks were and are being detected by the Binary Defense MDR without any need […]

DarkSide Ransomware

With the recent high profile attacks of the Ransomware-as-a-Service Group, DarkSide, Binary Defense wants to assure our MDR customers they are protected.  Our unique detections identify threats throughout the various attack phases used by these specific actors. Our threat intelligence research indicates this group first focuses on initial access and persistence and then concentrates on latter attack […]

Binary Defense MDR Software Update

MDR Agent Version 4.6.10 MDR Server Version 2.127.0 Binary Defense has released a new version of MDR. Highlights include new productivity features, important new Windows detections, and a variety of routine fixes. All servers have been updated to the latest release. MDR Agent software will update over the next few weeks for all clients except […]

Microsoft Exchange Vulnerability

Binary Defense is aware of four serious vulnerabilities in Microsoft Exchange servers that are being actively exploited by threat actors. The vulnerabilities affect Exchange Server 2013, 2016 and 2019. The exploit results in remote code execution without any authentication, allowing attackers to steal email messages or install web shells. All organizations that have Microsoft Exchange […]

VMWare Users

VMWare has issued an advisory for a critical vulnerability in VMWare vCenter Server, with a CVSS severity rating 9.8 out of 10. A temporary workaround to mitigate the vulnerability is available and should be installed as soon as possible. If the server is left unmitigated, an attacker could access the server remotely without authentication and […]

MDR Product Release MITRE ATT&CK

Binary Defense MDR Server Version 2.121 Binary Defense has released a new version of the Managed Detection and Response (MDR) Server Version 2.1.21.  All servers have been updated to the latest release, and you do not need to update your agents to receive this functionality.   MITRE ATT&CK Mapping MITRE ATT&CK™ offers a common framework to […]