Monthly Archives: November 2015

Blackhat Friday

Just like Thanksgiving and Christmas, Black Friday and the subsequent Cyber Monday have firmly established themselves in the US calendar. With online retailers having worldwide reach we are also seeing Black Friday and Cyber Monday being adopted by retailers around the globe. With huge savings to be made and shoppers swept up in the frenzy of the holiday season it is also a prime time for cybercrime.

Continue Reading


RunOnce to the hills

Here in the Avecto Support Team we come across various issues with customers that wish to allow their users to perform elevated tasks in Windows once their Administrator rights have been removed; this can vary from changing Windows settings or allowing a legacy app to run with admin rights for compatibility reasons, to installing complex application suites.

Continue Reading


Path of enlightenment part 1

A potential privilege escalation around unquoted service paths has been around for over fifteen years now, but it still continues to catch people out.

Continue Reading


Take a long hard look at your shelfware

Twenty-eight percent of security spending is wasted on shelfware, according to CSO’s news article earlier this year.

Shelfware, in case you don’t have any of your own, and aren’t familiar with the term, is a word coined by the technology industry to refer to something that is purchased but is never put in to production.

Continue Reading


Striking the right chord: Don’t make your users incompetent

There is very rarely progress without some cost. I was reminded of this recently by the news that a new piece of railway line – the Ordsall Chord – will cut off the world’s first passenger railway station, Manchester Liverpool Road, from the main line and affect 30 other “heritage assets”.

While changes to user’s experience of software products is rarely as substantial or irreversible as this, the same concept applies: even improvements have a cost. And that cost is, very often, to your current users.

Continue Reading