Thank you, I appreciate that! Since we are on the topic, I would like to mention that VS’s fans (you guys) are amazing… you guys have...
If that is the case, then why were the backdoor tools not available in the VS test?...
https://www.wilderssecurity.com/threads/wannacry-exploit-could-infect-windows-10.394550/#post-2682779 "Again, you need to read this article in...
I just finished my conversation with RS, and we will not know for sure until we test, but I think we are probably in great shape. Ultimately, the...
I am not going to join this discussion, but if you guys do not want to test for yourselves, you can at least see the attack in action, and see why...
Yep, and that is why I am talking to RS today. The main things I am curious about are the questions that I listed above... this should tell us...
I am cool as cucumber ;). And we are all in agreement. In-memory / fileless attacks simply do not write to disk, in an effort to evade detection...
Hehehe, EXACTLY ;).
Great, the case is closed then. Please do not take this the wrong way... but it is a little frustrating arguing with someone who is not willing...
In ten minutes, I have a conference call with RS, and one of the guys that was able to adapt the attack to run on Windows 10, and to spawn a...
Amen! They are obviously not reading my posts anyway... otherwise they would realize that when rundll32.exe is blocked, the malicious payload is...
I just thought of another analogy that might be helpful. Take antispam mechanisms… they are HIGHLY effective in blocking a lot of the phishing...
DP is the malicious payload that VS blocked. This demonstrates that in this attack EB failed to do its main job. If you want to try to block EB...
Hey CS, how are you? Do you mean CF with your settings? I am not familiar enough with CF to know how its virtualization feature works, but one...
1. No, there are other attack vectors... we just do not know enough about the attack vector that was used in the initial WannaCry outbreak,...
Think of it this way. The exploit / payload is basically a bomb with a fuse. The fuse is the exploit. The bomb is the payload. The attack...
Here is what I know so far, and I should know even more tomorrow after I read the report that RS released completely and talk with them tomorrow....
FYI, RS just called me, and they are aware that this is a BFD too. They are going to have one of their techs call me in a day or two, to see if...
Oops, I totally misunderstood you, sorry. Can you please send me your DeveloperLog.log from the C:\programdata\voodooshield folder? It might...
I have posted 5,711 times on wilders in the last 5-6 years. And if you ask me, this will be the most important post so far. I posted the initial...
Yeah, VS does not need self protection at this point, but we will be adding it soon... it protects itself just fine, with the exception of one...
Hopefully everyone now understands why I was so concerned about this attack. I was not picking on anyone, I was concerned... deeply. This is a BFD.
I just sent this to RS... we will see what they say. Dear RiskSense, This is Dan from VoodooShield, and there has been a massive 10 day extended...
Yeah, some tests you have to pay for (sponsored) and some you don't. I would prefer the non-sponsored tests because they are free and there is no...
Cool, thank you guys... in a month or so, we can figure out things like this, I just have a lot going on right now, sorry about that.
Separate names with a comma.
