Blog

Latest articles from SOCRadar

Spain Database and Australian Access Sale, Everlast Breach, macOS Metamask Stealer, New Microsoft Exploit
December 11, 2023

Spain Database and Australian Access Sale, Everlast Breach, macOS Metamask Stealer, New Microsoft Exploit

In the latest edition of the Week in Dark Web, the SOCRadar Dark Web Team has uncovered significant revelations, such as the sale of a government database, a data breach involving over 400,000 lines of… Continue Reading

Custom GPTs for Vulnerability Management: Harness the Power of AI in Cyber Defense
December 8, 2023

Custom GPTs for Vulnerability Management: Harness the Power of AI in Cyber Defense

Artificial intelligence (AI) stands as a multifaceted force, shaping the future of both defense and offense in the cyber realm. As technology advances, threat actors adeptly leverage AI for malicious purposes, crafting sophisticated malware and… Continue Reading

Syrus4 IoT Gateway Vulnerability (CVE-2023-6248) Could Allow Code Execution on Thousands of Vehicles, Simultaneously
December 8, 2023

Syrus4 IoT Gateway Vulnerability Could Allow Code Execution on Thousands of Vehicles, Simultaneously (CVE-2023-6248)

A significant vulnerability affecting Syrus4 IoT Gateway has emerged, posing a serious threat to the worldwide automotive industry. This vulnerability, capable of giving hackers control over a fleet of vehicles and potentially shutting them down,… Continue Reading

Latest Alerts for WordPress: POP Chain Leading to Site Takeover, Backdoor-Distributing Phishing Campaign
December 7, 2023

Latest Alerts for WordPress: POP Chain Leading to Site Takeover, Backdoor-Distributing Phishing Campaign

On December 6, 2023, WordPress rolled out version 6.4.2, addressing a vulnerability introduced in version 6.4 – specifically, a POP chain issue within the core. This vulnerability depended on the existence of an additional PHP… Continue Reading

Why Should Companies Choose Cybersecurity Providers with ISO 27001 and SOC 2 Certifications?
December 7, 2023

Why Should Companies Choose Cybersecurity Providers with ISO 27001 and SOC 2 Certifications?

Cyber threats are evolving at an unprecedented pace, and businesses must prioritize partnering with cybersecurity providers that understand these threats and demonstrate a commitment to the highest standards of data security and management. One such example of… Continue Reading

December 2023 Android Security Bulletin: Critical and Potentially Exploited Vulnerabilities, Google Pixel Update
December 6, 2023

December 2023 Android Security Bulletin: Critical and Potentially Exploited Vulnerabilities, Google Pixel Update

Google has released the December 2023 Android Security Bulletin. Despite the bulletin being released, the awaited Google Pixel December update is yet to be made available. In this Android security bulletin, dated December 5, 2023,… Continue Reading

New CISA Advisory: Threat Actors Exploited Adobe ColdFusion Vulnerability (CVE-2023-26360) to Target Government Servers
December 6, 2023

New CISA Advisory: Threat Actors Exploited Adobe ColdFusion Vulnerability (CVE-2023-26360) to Target Government Servers

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a Cybersecurity Advisory (CSA), regarding exploitation of a vulnerability in Adobe ColdFusion, targeting government-related servers. The advisory aims to guide organizations in enhancing their security posture… Continue Reading

Phishing in E-commerce: Understanding Digital Threats Effectively
December 6, 2023

Phishing in E-commerce: Understanding Digital Threats Effectively

In the rapidly evolving digital marketplace, the threat of phishing in e-commerce has become a critical concern. To navigate these treacherous waters, SOCRadar's "E-Commerce Cyber Bible" offers invaluable insights, presenting an in-depth analysis of the… Continue Reading

Critical RCE Vulnerabilities in Atlassian Products: CVE-2022-1471, CVE-2023-22522, CVE-2023-22524, and CVE-2023-22523
December 6, 2023

Critical RCE Vulnerabilities in Atlassian Products: CVE-2022-1471, CVE-2023-22522, CVE-2023-22524, and CVE-2023-22523

[Update] December 11, 2023: "CISA Urges Swift Action on Critical Atlassian Vulnerabilities" Atlassian has issued critical security updates addressing multiple vulnerabilities in its suite of products. Identified as CVE-2022-1471, CVE-2023-22522, CVE-2023-22524, and CVE-2023-22523, these vulnerabilities… Continue Reading

Weekly Vulnerability Summary by CISA: Apache, Google Chrome, PrestaShop, WordPress, ZyXEL
December 5, 2023

Weekly Vulnerability Summary by CISA: Apache, Google Chrome, PrestaShop, WordPress, ZyXEL

The Cybersecurity and Infrastructure Security Agency (CISA) has once again issued a summary of the latest vulnerabilities. The latest CISA vulnerability summary lists vulnerabilities identified between November 24 and December 2, 2023. In this blog… Continue Reading

ALPHV/BlackCat Ransomware Attack on Tipalti, Threatening Tipalti’s Customers
December 4, 2023

ALPHV/BlackCat Ransomware Attack on Tipalti, Threatening Tipalti’s Customers

The first days of December 2023 were rattled by ALPHV/BlackCat ransomware group, known for its sophisticated cyberattacks and recent interesting attack methods. The latest in their series of high-profile breaches is the alleged infiltration on… Continue Reading

Alarming Increase of Access Sales in the Dark Web
December 4, 2023

Alarming Increase of Access Sales in the Dark Web

The SOCRadar Dark Web Team has revealed an alarming increase in the sales of unauthorized network access to a myriad of companies in the previous week. From research centers to online retail platforms, no sector… Continue Reading

Overview of the Internet as an Attack Vector: Censys State of The Internet Report
December 4, 2023

Overview of the Internet as an Attack Vector: Censys State of The Internet Report

The Internet is a vast network that has revolutionized our daily lives. It encompasses many technologies, including web servers, content delivery networks, and cloud computing. Web entities' content served over HTTP (like websites, web-based control… Continue Reading

Can You Speak In Virus? LLMorpher: Using Natural Language in Virus Development
December 1, 2023

Can You Speak In Virus? LLMorpher: Using Natural Language in Virus Development

Is it really possible for ordinary text to be dangerous or harmful to people or things, unless it is some sort of black magic that unleashes its power when read or spoken, or a text… Continue Reading

Apple Addresses Exploited Zero-Day Vulnerabilities with Emergency Security Update: CVE-2023-42916, CVE-2023-42917
December 1, 2023

Apple Addresses Exploited Zero-Day Vulnerabilities with Emergency Security Update: CVE-2023-42916, CVE-2023-42917

[Update] December 5, 2023: See the subheading “CISA Lists Apple Zero-Day Vulnerabilities Under KEV Catalog.” Apple has released emergency security updates to counteract two zero-day vulnerabilities actively exploited in the wild. Tracked as CVE-2023-42916 and… Continue Reading

CISA Launches "Secure by Design Alert” Series: Securing Web Management Interfaces
November 30, 2023

CISA Launches “Secure by Design Alert” Series: Securing Web Management Interfaces

The Cybersecurity and Infrastructure Security Agency (CISA) has just introduced the Secure by Design Alert series, a proactive step to highlight instances where vulnerabilities or intrusion campaigns could have been prevented by the vendors, through… Continue Reading

CISA Issues ICS Advisories on Mitsubishi, Delta, Franklin Electric, BD & Unitronics PLCs’ Active Exploitation
November 29, 2023

CISA Issues ICS Advisories on Mitsubishi, Delta, Franklin Electric, BD & Unitronics PLCs’ Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently issued four new advisories for Industrial Control Systems (ICS). CISA released the advisories on November 28, 2023, regarding current security issues, vulnerabilities, and exploits affecting… Continue Reading

Exploitation Attempts Observed for Critical ownCloud Vulnerabilities (CVE-2023-49103, CVE-2023-49104, CVE-2023-49105)
November 28, 2023

Exploitation Attempts Observed for Critical ownCloud Vulnerability (CVE-2023-49103)

Exploitation activity targeting ownCloud with the CVE-2023-49103 vulnerability has been observed, raising concerns within the cybersecurity community. ownCloud, renowned as an open-source file server facilitating secure storage, file-sharing, and collaboration, recently drew attention due to… Continue Reading

Hacker Forums Are on the Rise: Dumped, Raiding, BlackForums
November 27, 2023

Hacker Forums Are on the Rise: Dumped, Raiding, BlackForums

Recently, cyberspace has witnessed a surge of activity, particularly within the hacktivist space, traditionally active on Telegram and Twitter. As this landscape becomes increasingly volatile, some hacktivist groups are shifting their focus to traditional web… Continue Reading

Dark Strom’s Android RAT, Sales of Financial Data and UK RDP Access, SiegedSec's Government Breach
November 27, 2023

Dark Strom’s Android RAT, Sales of Financial Data and UK RDP Access, SiegedSec’s Government Breach

The SOCRadar Dark Web Team unveils a fresh wave of illicit activities as the relentless pace of dark web threats persists. Recognized threat actors have made significant moves: SiegedSec claims access to sensitive government data,… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo