Amr
Thabet
Cybersecurity Expert
Amr is a malware researcher and incident handler with over 12 years of experience, he worked in some of the Fortune 500 companies. He is the author of “Mastering Malware Analysis”.
All articles by Amr
Welcome to another episode of Hacks Weekly!
This time, we’ll present how the Windows Mark-of-the-Web Protection can be bypassed.
Get ready for a fresh dose of knowledge and valuable tips, explained step-by-step by Amr Thabet, Malware Researcher & Incident Handler.
How can the Windows Mark-of-the-Web Protection be bypassed? 🦝
Amr Thabet, Malware Researcher & Incident Handler, presented some of the scenarios in episode 62 of our #HacksWeekly series!
Windows Mark-of-the-Web Protection is just the first layer of protection.
The problems start when users use 7-ZIP or delete the specific version of the file and download it again after some time—it won’t have a ZoneId, so the Mark-of-the-Web Protection won’t be there.
One might say that this is an exception and won’t happen to most users. Well, sure. However, even those 5% of users who accidentally bypass the protection can compromise your company’s safety 🚨
That’s why you should never rely 100% on one type of protection and always have multiple security levels implemented.
Watch the full video with step-by-step guidance 👉
Do you want to receive the geekiest cybersecurity solutions, tools, and tricks, straight to your inbox?
Learn more about our offer in terms of Consulting. Our Cybersecurity Experts perform consulting work on a daily basis, hence we are fully prepared for any challenge.
Learn more about our offer in terms of Consulting. Our Cybersecurity Experts perform consulting work on a daily basis, hence we are fully prepared for any challenge.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.
