Home | Resources

VerSprite Resources

We approach security from a holistic risk management perspective by viewing cybersecurity from both a business and attacker perspectives. Our methodology goes beyond assessing security controls. We examine credible threats to understand the likelihood of a real-world abuse case and measure the magnitude of business impact if an attack should occur.

Learn more about our advisory services.

Data mismanagement

Blog Post

PASTA Threat Modeling

DATA MISMANAGEMENT: ONE OF THE LEADING CAUSES OF SECURITY BREACHES

Developing a data management plan, or data governance is essential for any organization to protect sensitive information and comply with regulations.

Learn more

Domain Spoofing and Phishing Attacks 2

Blog Post

domain settings

Domain Spoofing and Phishing Attacks

Minimize phishing cyberattacks and prevent domain spoofing with these three settings: SPF, DKIM, and DMARC.

Learn more

PCI DDS 4.0

Blog Post

advanced penetration testing

PCI DSS 4.0: What You Need to Know and What You Need to Do

The PCI DSS 4.0 deadlines are fast approaching. Is your company ready? In the article below, find out what you need to do to stay compliant.

Learn more

Artificial Intelligence

Blog Post

artificial intelligence

AI and Cybersecurity: Threats and Opportunities

In this article, we’ll discuss the benefits and threats of AI and machine learning tools in cybersecurity applications.

Learn more

Quick Guide

Blog Post

arcelona Cybersecurity Conference 2023

Welcome to The World of Geopolitics and Cybersecurity!

With expert analysis and in-depth research, this eBook covers everything from the role of cyber warfare in international conflicts to the impact of cyber espionage on diplomatic relations, as well as the impact on individual industries. You’ll gain a deeper understanding of the motivations behind state-sponsored cyberattacks and the strategies and tactics to defend against them.

Learn more

Cyber crime

Blog Post

Organizational Threat Model

Why Bad Guys do Bad Things:

In this briefing, VerSprite’s Threat Intelligence Team covers “Why Bad Guys do Bad Things?” and why Threat Intelligence Analysts should possess the knowledge of who threat actors are and what drives their criminality.

Learn more

CyberWatch

Blog Post

VerSprite CyberWatch

VerSprite Keeps You Updated on All Things CyberSecurity, Helping You Stay Safe in This Rapidly Evolving Threat Landscape.

Learn more

Chrome Exploit

Blog Post

Chrome Exploitation:

To teach Chrome exploitation to my team, I’ve selected a previous 0day RCE that I found last year for my company VerSprite: CVE-2021-21224 https://crbug.com/1195777, and I’ve paired it with a SBX bug found by Tim Becker: https://crbug.com/1062091.

Learn more

Printer Vulnerability

Blog Post

Exploitation of Vulnerabilities

Printer Spooler Bug Research

In this blog, we dive into and show how attackers could combine the 0day CVE-2020-0986 with the 0day in IE browser to achieve privilege escalation and then execute code remotely. Now, Maddie Stone, a security researcher on Google’s Project Zero team, found that an attacker can still trigger CVE-2020-0986 and elevate kernel privileges by sending an offset instead of a pointer.

Learn more

We are an international squad of professionals working as one.

Email

sales@versprite.com

logos