ZecOps Blog
Hear the news first

ZecOps Selected to Fast Company’s Most Innovative Companies for 2021
The mobile security startup is among the top-ranked companies in the Security category ZecOps, the automated platform for discovering mobile cyber threats has been named to Fast Company’s prestigious annual list of the World’s Most Innovative Companies...

North Korea APT Might Have Used a Mobile 0day Too?
Following Google TAG announcement that a few profiles on twitter, were part of an APT campaign targeting security Researchers. According to Google TAG, these threat actors are North Koreans and they had multiple goals of establishing credibility by publishing...

NTFS Remote Code Execution (CVE-2020-17096) Analysis
This is an analysis of the CVE-2020-17096 vulnerability published by Microsoft on December 12, 2020. The remote code execution vulnerability assessed with Exploitation: “More Likely”, grabbed our attention among the last Patch Tuesday fixes....

Remote iOS Attacks Targeting Journalists: More Than One Threat Actor?
ZecOps is proud to share that we detected multiple exploits by the threat actors that recently targeted Aljazeera’s journalists before it was made public. The attack detection was automatically detected using ZecOps Mobile DFIR. In this blog post, we’ll...

Crash Analysis Series: An exploitable bug on Microsoft Teams ?! A Tale of One Bit
This is a story about a Microsoft Teams crash that we investigated recently. At first glance, it looked like a possible arbitrary code execution vulnerability, but after diving deeper we realized that there’s another explanation for the crash. TLDR; ZecOps...

Running code in the context of iOS Kernel: Part I + LPE POC on iOS 13.7
Abstract. Due to its popularity, iOS has attracted the attention of a large number of security researchers. Apple is constantly improving iOS security, develops and adapts new mitigations at a rapid pace. In terms of the effectiveness of...