SafeBreach

Cyber insurance can be difficult—and expensive 💰—to attain due to shifts in the threat landscape. Learn how breach and attack simulation helps you gain coverage and even save on premiums. https://hubs.ly/Q031kF2D0

"Researchers at SafeBreach have put together an analysis of the DoS bug, tracked as CVE-2024-49113. This vulnerability, along with a similar remote control execution (RCE) bug, tracked as CVE-2024-49112, with a CVSS score of 9.8, was discovered in Active Directory's Lightweight Directory Access Protocol (LDAP) used to search the databases." https://hubs.ly/Q0315jR10

Trust that you’re in secure hands: see how PayPal’s security team opted to deploy SafeBreach’s breach and attack simulation (BAS) solution to better facilitate security due diligence during merger and acquisition events. https://hubs.ly/Q0314X6_0

Thank you Yuki Chen and the community for your feedback. We’ve made revisions to the research we posted yesterday to address CVE-2024-49113. We believe the PoC we published covers most of the ground necessary to achieve the RCE and we have made progress since yesterday. See our updated blog: https://hubs.ly/Q030-jHR0

Happy new year from all of us here at SafeBreach! 2024 marked our 10th anniversary as pioneers in the Breach and Attack Simulation space. We have so much in store for the next decade before us, starting right here in 2025. We're looking forward to the journey ahead.

LDAPNightmare: SafeBreach Labs Publishes First Proof-of-Concept Exploit for CVE-2024-49112 SafeBreach Labs researchers Or Yair and Shahak Morag have developed and published a zero-click PoC exploit that crashes unpatched Windows Servers using the Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. See the SafeBreach blog for details: https://hubs.ly/Q030X5_N0 This research shows the criticality of this vulnerability by first proving that it can be used to crash multiple unpatched Windows servers. According to Microsoft’s classification, this vulnerability can be further exploited to lead to remote code execution. The research also verifies that Microsoft’s patch fixes the integer overflow vulnerability and our exploit is not capable of crashing patched servers. We have provided a public PoC that organizations can use to test and verify that their servers are protected. For more details, please see the GitHub repository noted at the end of the blog. The vulnerability that the SafeBreach Labs PoC exploits affects technology that is in widespread use across enterprise networks, and this flaw could help attackers propagate more easily and effectively. SafeBreach helps large enterprises identify and address potential exposures, including vulnerabilities like CVE-2024-49112, and SafeBreach customers will soon have access to new capabilities to test their internal networks against this and other vulnerabilities. Keep an eye on https://hubs.ly/Q030X5Tq0 for news to come. #SafeBreach #CTEM #whatisPropagate

Happy holidays from SafeBreach! Wishing you a happy Hanukkah, merry Christmas, and a happy Kwanzaa. May you and your family stay safe and warm this holiday season.

Want to replicate dynamic and realistic attacker behavior in your environment without complex coding or programming? Check out the on-demand webinar where SafeBreach experts discuss how leading enterprises leverage the enhanced conditional branching capabilities of SafeBreach Studio—the industry’s first no-code red team platform. https://hubs.ly/Q03026Zd0

Not all BAS solutions can handle the size and complexity of enterprise environments—SafeBreach, on the other hand, was purpose-built for enterprise needs. Don’t just take our word for it, though; read real feedback from enterprise leaders on why they switched to SafeBreach: https://hubs.ly/Q030bStd0

At our 2024 Validate Central user conference, Garet Stroup, AVP of Threat Management & Response at Humana, discussed the important role that breach and attack simulation (BAS) plays in creating that efficiency and cohesiveness that security teams need. In this blog, we outline key takeaways from his presentation, including why BAS matters, what it can help you accomplish, and how you can expand your BAS program. https://hubs.ly/Q030277m0