ExpressVPN Security Team

ExpressVPN's Security Team contributes articles with the aim of benefiting the cybersecurity community at large.

7 Posts
0 Comments
64 Claps
Bug with Log4J logo.
4 mins

Log4Shell’s long-tail impact on your security

ExpressVPN’s mitigation technique against Log4Shell and what you can do to protect yourself against the Log4j vulnerability.
Someone whispering with a hand up.
13 mins

Cybersecurity lessons: Safer private keys with Shamir’s Secret Sharing

Learn how digital certificates work and why Shamir’s Secret Sharing is a secure method for storing private keys.
Bug with an envelope body.
10 mins

Cybersecurity lessons: Risk of email takeover via a 4th-party provider

ExpressVPN's Security Team investigated a bug that could have been exploited by signing up on Mailgun and hijacking an email subdomain.
Steps with footprints heading up.
10 mins

Cybersecurity lessons: Privilege escalation via file read/write

How a highly privileged process interacting with a lower-privilege user space can lead to attackers elevating their access or a DoS attack.
Folder with dots and slashes.
15 mins

Cybersecurity lessons: A PATH vulnerability in Windows

Our cybersecurity experts discuss the PATH environment variable and the security implications of having it misconfigured.
Cranes moving shapes around.
11 mins

Cybersecurity lessons: Flaw in Zendesk file-upload feature

Our cybersecurity team worked with Zendesk, a support software provider, to fix a flaw in its file-upload system. Here's a play-by-play of how we did it.
Magnifying glass on a password.
13 mins

Cybersecurity lessons: Monitoring password manager activity

ExpressVPN's Security Team explains how to detect vulnerabilities and attacks on password managers and analyze the risks.
9 mins
7 mins
21 mins
2 mins

Featured Posts

4 mins
4 mins
1 min
3 mins
6 mins

ExpressVPN is proudly supporting

  • logo_1
  • logo_2
  • logo_3
  • logo_4
Need help? Chat with us!

Subscribe to the Newsletter