With Great Research Comes Great Responsibility.
Welcome to our research and development platform: F-Secure Labs. Here we dissect industry news and trends, publish research, and share our tools with the security community.
The Fake Cisco
In fall 2019, an IT company found some network switches failing after a software upgrade. The company would find out later that they had inadvertently procured suspected counterfeit Cisco equipment. The hardware failure initiated a wider investigation to which the F-Secure Hardware Security team was called and asked to analyse the suspected counterfeit Cisco Catalyst 2960-X series switches and, primarily, provide evidence as to whether any kind of a "backdoor" functionality existed in those devices.
This paper details the process which led to the conclusion and aims to share the technical knowledge the team gained during this journey.
Jamfing for Joy: Attacking macOS in Enterprise
On 13th March 2020, Calum Hall and Luke Roberts gave a talk titled "An Attacker’s Perspective on Jamf Configurations" at the 3rd edition of Objective By The Sea, held on the beautiful island of Maui, Hawaii.
This blog post is designed to complement the conference talk, and can be used as a reference when performing attacks against organisations utilising Jamf. We’ve even added in a few extra bits that we weren’t able to fit into the talk too!
This post marks the release of the Jamf Attack Toolkit