Try us free for 30 days.

Research
& Insights.

Educate yourself on unique attacks, advanced exploitation techniques, and new methods to infiltrate the modern enterprise. Equip yourself with an academic-level understanding of next‑gen cyber attacks.

Using CVE-2020-9971 to escape Microsoft Office’s app sandbox

In this blog, our researchers demonstrate how they were able to weaponize a Word document with a published macOS/iOS privilege escalation exploit, lift the app sandbox restrictions and gain higher privileges.

Ron Hass, Senior Researcher
Jun-21

An Insider’s View into Blocking Email Threats

The Importance of Blocking Crypto Viruses, Threats, and Attempted Phishing Attacks

Perception Point Marketing
Apr-21

Netflix Phishing Scams Rise by 250% in 3 Months

The Perception Point IR Team found a major increase (250%) in the number of Netflix Phishing scams this quarter compared to last quarter.

Perception Point IR
Mar-21

Employee Security Training
Proven Not Enough

Train the machine—not just the employee. Hackers know that many companies rely on security employee training alone, so they’ve been upping their game to trick…

Dana Roth, Marketing Manager
Feb-21

Default Email Security Not Secure Enough

The adoption of cloud email is increasing every year, with Google Workspace and Microsoft Office 365 dominating. And now, a new report by Gartner noted that many clients have expressed dissatisfaction with default email security solutions, specifically citing Office 365.

Dana Roth, Marketing Manager
Jan-21

BYOB (Build Your Own Botnet) in action.

Perception Point’s platform recently intercepted an attack leveraging the BYOB framework. We believe this is the first time the BYOB framework is seen being used for…

Perception Point IR
Dec-20

Mac Isn’t Safe.
How Do You Like Them Apples?

Apple's security measures aren't enough anymore. Fortunately, there is a new solution. Our Advanced Email and Collaboration Protection now prevents attackers from using APTs to target Apple computers.

Perception Point Research
Dec-20

On-brand Phishing: When Attackers Use Your Assets Against You

A detailed, to-the-point analysis of the most phished brands in email attacks and the importance of asset-based protection as c. 50% of attacks are actually related to the targeted company and its stakeholders.

Perception Point IR
Nov-20

Top 4 Phishing Tricks for September-October 2020

Stay up to date with the latest phishing trends and tricks. We now focus on 4 points that can surely help you be prepared for the next attack.

Jonathan Levy, Director of BD
Oct-20

A Hop to Modern Email

Introduction to one of the most common methods of communication

Oded Kalev, Software Dev.
Aug-20

User Experience vs. Cyber Security

There's a tension between security and business enablement. There's also a tension between security and user experience. So what can you do about it? A full article on the dos and don't's on user experience in cybersecurity

Benny Reich, VP Product
Jul-20

The State of Mind of Being #1.

Why Perception Point Topped SE Labs’ Independent Email Security Testing.

Benny Reich, VP Product
May-20

Cloud Storage Security Risks

The security risks of cloud storage apps like Dropbox, OneDrive, Box, Google Drive, and why they need to be part of your security strategy.

Benny Reich, VP Product
May-20

What is a Zero Day Attack?

A zero day attack (also known as a zero day exploit) is one that leverages a software vulnerability that is either unknown or unaddressed by the software vendor; for example, bugs in Microsoft Office apps or Adobe Reader.

Perception Point Research
Oct-19

CVE-2019-0539 Exploitation.

Microsoft Edge Chakra JIT Type Confusion.

Rom Cyncynatus, Security Researcher
Mar-19

CVE-2019-0539 Root Cause Analysis.

Microsoft Edge Chakra JIT Type Confusion

Shlomi Levin
Feb-19

CVE-2017-0199 (still) in the wild.

Perception Point’s platform recently caught an advanced attack directed at one of our Financial Services customers delivered via a malicious MS Word document. Our analysis…

Perception Point IR
Dec-18

Changing memory protection in an arbitrary process.

Linux Memory Protection with mprotect.

Ron Hass, Senior Researcher
Nov-18

The Gödel Proof & the Malware-Detection Spoof.

Cybersecurity solutions that detect malware only at the software layer are inherently flawed. This fact is actually based on a basic principle proven nearly 100…

Shlomi Levin
Jul-18

CVE-2015-5122: Exploitation using COOP.

Introduction. CFI has most certainly set the standard for exploit mitigations, and has inspired many implementations such as Microsoft CFG, Microsoft RFG, PaX Team’s RAP™ and Clang’s CFI. In this…

Shlomi Levin
Jun-18

Phishing links moving to email attachments.

Our last attack trend blog focused on n-days and zero-days. However, this time I will discuss an evolved “everyday” attack we’ve seen recently – phishing links inside files.…

Michael Aminov, Co-founder
Mar-18

Analysis and Exploitation of a Linux Kernel Vulnerability.

CVE-2016-0728

Perception Point Research
Mar-18

Malicious MS Office attachments on the rise.

Attack Trend.

Michael Aminov, Co-founder
Feb-18

Hardware vs. Software-based detection.

As with any market where crime is lucrative, cybersecurity will always exist, and the more digital the world becomes, the more it will grow. This…

Shlomi Levin
Feb-18

TALK TO SALES