Security Risk Advisors

Category: Purple Teams

Purple Teaming: How to Approach it in 2017

January 5, 2017 | Posted in Purple Teams by Chris Salerno

The Way It Was

The concept of purple teaming is not new.  We’ve been doing it for years; it was just disjointed and we didn’t call it “purple” or “red and blue”.  Instead, the red team “broke in” (usually walked in), perused the aisles, took what they… Continue Reading

SEP USB Device Control - The Cheetah and The Hare

June 29, 2016 | Posted in Purple Teams by Chris Myers

About a year ago, we were performing a laptop hardening and configuration review at one of our financial services clients using Symantec Endpoint Protection’s (SEP) USB Device Control as part of their Data Loss Prevention solution. One way SEP keeps … Continue Reading

Beaconing Past McAfee ePO

January 9, 2015 | Posted in Purple Teams by Dan Astor

During a recent engagement, I was asked to perform advanced threat simulations designed to test the detection capabilities of current desktop security controls and advanced threat toolsets. The purpose of these simulations were to determine if the cu… Continue Reading

FSOEP Presentation: Web Banking & Fraud: Corporate Treasury Attacks

March 13, 2013 | Posted in Purple Teams by Chris Salerno

We recently presented to the FSOEP (Financial Security Officers of Eastern Pennsylvania) on the topic of Corporate Treasury Attacks.  The talk included exploitation techniques that attackers may use to infiltrate corporate treasury and cash managemen… Continue Reading