Endpoint Protection in 2026: Is Antivirus Dead?
Feb 26 · 2 min read · Endpoint Protection in 2026: Is Antivirus Dead? For decades, antivirus software was the frontline defense against malware. But the cybersecurity landscape is evolving rapidly. As threats become more sophisticated, is traditional antivirus still enoug...
Join discussion
DLL Search Order Abuse: Privilege Escalation, and EDR Unhooking
Feb 18 · 7 min read · Introduction Modern enterprise environments rely heavily on third-party and internally developed applications to support daily operations. These applications frequently depend on Dynamic Link Libraries (DLLs) to load required functionality at runtime...
Join discussionAlerte Cyber : Jasper Sleet et l'art de l'infiltration par le recrutement – Quand l'espion est sur votre fiche de paie
Dec 19, 2025 · 3 min read · On parle souvent de phishing, de malwares furtifs ou de vulnérabilités Zero-day. Mais que se passe-t-il quand l'attaquant ne cherche pas à forcer votre porte, mais se fait simplement embaucher par votre entreprise ? C'est le scénario cauchemardesque ...
Join discussion
How I Investigate an EDR Alert Step-by-Step
Dec 3, 2025 · 2 min read · When an EDR alert pops up, the first thing a SOC analyst does is pause and assess. The process is methodical and structured, not rushed. It starts with classification—figuring out what kind of alert it is. Is it a file, process, network connection, o...
Join discussionWhy Modern Enterprises Need Smarter Endpoint Protection Software
Nov 25, 2025 · 2 min read · In today's hyper-connected enterprise environment, every endpoint —whether a laptop, server, mobile device, or virtual machine —is a potential breach point for cyber attackers. As per the emergence of hybrid work and the cloud, traditional antivirus ...
Join discussionAV vs. EDR: Exploring the Future of Antivirus Software
Nov 4, 2025 · 6 min read · Introduction Imagine your colleague, José, clicks a link in a well-crafted phishing email. A simple file downloads, and a few hours later, your network monitor flags a torrent of suspicious, encrypted outbound traffic. If all you have running on José...
Join discussion
Inside a node.js Malware Execution With Detection Strategy
Nov 3, 2025 · 4 min read · This recent attack, which I addressed through a reported False Negative, requires a clear understanding of the scenario to ensure everyone can grasp the situation. In this analysis, we examine a sophisticated malware chain that utilizes PowerShell an...
Join discussionThe “Verified Extension” Illusion: Inside the July 2025 VSCode Flaw That EDR Missed
Sep 18, 2025 · 4 min read · What If “Verified” Doesn’t Mean Safe? When developers install a plugin from a trusted marketplace, they assume it’s safe. After all, it’s verified. But what happens when attackers figure out how to slip past the verification checks? In July 2025, re...
Join discussion