Knowledge Hub - Expert Intel • Page 2 of 4 • Stripe OLT

SOC Lead

Sam B

Expert Intel

Gootkit Malware Exploit

At Stripe OLT, our analysts face new challenges every day, and occasionally, we come across something noteworthy - recently at Stripe OLT, our team encountered a Gootkit malware exploit in one of our client's systems. Our SOC lead, Sam B, takes us through the encounter.

March 4, 2024

Penetration Tester

Toby Davenport

Expert Intel

The importance of proper filtering within web applications

Many times, during software security testing (penetration tests), whitelisting and blacklisting are encountered, with testers trying to bypass the regex (regular expression). But, what is the actual process of identifying these characters that can bypass filters? How are new payloads formed? If you're looking for some technical, offensive security insights, you've come to the right place...

February 2, 2024

SOC Analyst

Andrea Csuri

Expert Intel

Navigating the Web of Malvertising: Understanding Twisted Spider Group

According to the World Economic Forum (WEF), cybercrime has emerged as the world's third-largest economy, trailing only the United States and China.

December 20, 2023

Technical Director

Alex Eley

Expert Intel

Microsoft Ignite – November 2023 Roundup

This isn’t supposed to be a sales pitch about Business Premium, but an insight to how the single pane of glass approach can both fortify your company’s security posture while also being a win for the financial chart enjoyers.

November 22, 2023

Senior Cloud Engineer

Lewis Barry

Expert Intel

Your password doesn’t meet the complexity requirements.

Taking an up to date approach, when it comes to password policies, doesn't have to be complex... Utilising Entra ID, our Microsoft expert Lewis, will take you through his latest recommendations.

November 7, 2023

Cyber Security Engineer

Liam Jones

Expert Intel

QR code phishing detection – A theoretical proof of concept using the Microsoft Graph API

Attackers are increasingly utilising QR codes in their phishing campaigns because they don’t just evade standard detection, they are incredibly difficult to detect without some significant effort.

October 26, 2023

Penetration Tester

Toby Davenport

Expert Intel

CVE-2023-42439: SSRF Vulnerability

A CVE (Common Vulnerabilities and Exposures) is a standardised identifier for a specific security vulnerability in a software application, hardware device, or system. Our pen tester Toby takes you through this latest discovery - CVE-2023-40017.

September 28, 2023

Penetration Tester

Toby Davenport

Expert Intel

Discovering CVE-2023-40017

A CVE (Common Vulnerabilities and Exposures) is a standardised identifier for a specific security vulnerability in a software application, hardware device, or system. Our pen tester Toby takes you through this latest discovery - CVE-2023-40017.