Our friend Dan Raywood over at Infosecurity Magazine recently published his Q2 2020 Parting Shots editorial piece with several references to Lares and our 2019 Top 10 Penetration Test Findings report. From the article:
It is now more than three years since patches were released by Microsoft to fix the vulnerability named MS17-010, and therefore three years since the exploit EternalBlue was released by Shadow Brokers, ultimately enabling the WannaCry and NotPetya attacks in 2017.
This is all old news right? Well, it seems that despite those attacks affecting a large number of businesses, in particular the NHS, and causing repair costs of around $100m, it seems we are not out of the woods just yet when it comes to getting over the issues which enabled those attacks.
According to data from security consultancy Lares, EternalBlue was still among its most frequently encountered vulnerabilities and attack vectors in the six months between Q4 of 2019 and Q1 of 2020.
The piece also features commentary from our friend Brian Honan, CEO of BH Consulting. Read the full editorial piece here: https://www.infosecurity-magazine.com/editorial/parting-shots-q2-2020/.
Andrew Hay is the COO at Lares and is a veteran cybersecurity executive, strategist, industry analyst, data scientist, threat and vulnerability researcher, and international public speaker with close to 25 years of cybersecurity experience across multiple domains. He prides himself on his ability to execute the security strategy of the company with which he works without neglecting business objectives and the needs of its customers. Andrew is the author of multiple books on advanced security topics and is frequently approached to provide expert commentary on industry developments. He has been featured in publications such as Forbes, Bloomberg, Wired, USA Today, and CSO Magazine.