Blog

Latest articles from SOCRadar

December 16, 2022

Dark Web Profile: Killnet – Russian Hacktivist Group

By SOCRadar Research Killnet is a pro-Russian hacktivist group known for its DDoS campaigns against countries supporting Ukraine, especially NATO countries since the Russia-Ukraine war broke out last year. DDoS is the primary type of… Continue Reading

Dark Web Profile: Black Basta Ransomware
December 16, 2022

Dark Web Profile: Black Basta Ransomware

By SOCRadar Research One of the perpetrators of the ransomware attacks, which increased by 59% in the last year, is the Russian-speaking origin ransomware group, Black Basta. They emerged in April 2022 and became notorious for breaching nearly a… Continue Reading

Microsoft Reevaluates SPNEGO NEGOEX Security Vulnerability CVE-2022-37958 as Critical
December 16, 2022

Microsoft Reevaluates SPNEGO NEGOEX Vulnerability CVE-2022-37958 as Critical  

Microsoft reassessed the severity score of a vulnerability fixed in September 2022 Patch Tuesday. The vulnerability, tracked as CVE-2022-37958, was previously identified as an information disclosure vulnerability and had a CVSS score of 7.5. A researcher from IBM recently… Continue Reading

Top 5 Vulnerabilities Routinely Exploited by Threat Actors in 2022
December 15, 2022

Top 5 Vulnerabilities Routinely Exploited by Threat Actors in 2022

By SOCRadar Research Day by day, it becomes harder to maintain a good security posture. Threat actors are at every corner, searching for a way to breach defenses and expose what is underneath. During the Covid-19… Continue Reading

Gartner Recognized SOCRadar as a DRPS Vendor in 2 Reports
December 15, 2022

Gartner Recognized SOCRadar as a DRPS Vendor in 2 Reports

The digitalization process has become a norm in any business. Now, organizations' assets are highly increased, and there are many things to consider or manage. That's why companies from all industries started to invest in… Continue Reading

December 14, 2022

The Week in Dark Web – 14 December 2022 – Access Sales and Leaks

Powered by DarkMirror™ Just a few weeks remain to close 2022. We are all in the mood for the holiday season, but it seems threat actors continue their efforts on the dark web. Here's the… Continue Reading

APT5 Exploits Zero-Day Vulnerability on Citrix ADC and Gateway Devices
December 14, 2022

APT5 Exploits Zero-Day Vulnerability on Citrix ADC and Gateway Devices

Citrix has just released a patch to address a critical zero-day vulnerability affecting its products. The vulnerability is identified as CVE-2022-27518 (CVSS score: 9.8) and allows remote code execution for unauthenticated attackers. VP of Citrix, Peter Lefkowitz, stated on… Continue Reading

What Do You Need to Know About FortiOS SSL-VPN RCE Vulnerability CVE-2022-42475
December 13, 2022

Fortinet Released Patch for FortiOS SSL-VPN RCE Vulnerability CVE-2022-42475

Fortinet has released a patch for a critical zero-day security vulnerability affecting its FortiOS SSL-VPN product. The vulnerability could lead to remote code execution and is actively exploited. Therefore Fortinet urges customers to patch immediately.… Continue Reading

Dark Web Profile: APT42 - Iranian Cyber Espionage Group
December 12, 2022

Dark Web Profile: APT42 – Iranian Cyber Espionage Group

By SOCRadar Research After the Stuxnet occurred in 2010 on Iran's nuclear program, Iran started to invest in and improve its cyberwarfare capabilities. From that turning point, Iranian hacker groups rose and became more dangerous for the… Continue Reading

Major Cyberattacks in Review: November 2022
December 8, 2022

Major Cyber Attacks in Review: November 2022

Although the industry was relatively quiet last month, information is always valuable to both threat actors and us; in fact, it is vital. Helping you to protect sensitive data, whether it be financial, personal, or… Continue Reading

All You Need To Know About the MegaRAC BMC Vulnerabilities
December 7, 2022

All You Need To Know About the MegaRAC BMC Vulnerabilities

1. What are MegaRAC BMC Vulnerabilities?  Three vulnerabilities have been discovered in American Megatrends Inc.'s MegaRAC Baseboard Management Controller (BMC) software: CVE-2022-40259, CVE-2022-40242, and CVE-2022-2827. The vulnerabilities were discovered by Eclypsium and are referred to… Continue Reading

Security for Active Directory in 5 Steps
December 7, 2022

Security for Active Directory in 5 Steps

Microsoft Windows directory service Active Directory (AD) enables IT administrators to manage permissions and restrict access to network resources. With this identity and access management solution, you can specify who has access to what parts… Continue Reading

Danger Lurking in GitHub Repositories
December 6, 2022

Danger Lurking in GitHub Repositories

By SOCRadar Research GitHub is a system that has become the world's largest source code repository, used by %90 of Fortune 100 companies and 94 million developers for several purposes such as version control, source code… Continue Reading

Australia Approach After the Recent Cyber Attacks: Hack the Hackers
December 5, 2022

Australian Approach After the Recent Cyber Attacks: Hack the Hackers

Recently, one of the attention-grabbing countries in the cyber world is Australia. However, Australia's cyber capabilities and potential in published reports are conflicting. Additionally, the recent attacks on Australian businesses like Optus and Medibank and… Continue Reading

Could Rackspace Incident Be Related to ProxyNotShell?
December 5, 2022

Could Rackspace Incident Be Related to ProxyNotShell?

UPDATE [January 5, 2023] Play Ransomware Is Responsible for the Rackspace Attack Rackspace confirmed in recent interviews that the OWASSRF exploit was discovered on its network, and Play ransomware was behind the attack.  To achieve… Continue Reading

December 5, 2022

The Week in Dark Web – 5 December 2022 – Malware Sales and Data Leaks

Powered by DarkMirror™ The sales of new services drew our attention most in the chatter of hackers last week. These tools, which threat actors can use in future attacks, prove that the cybercrime ecosystem is… Continue Reading

What is the Role of Single Sign-On in Security Measures? – Part 2
December 2, 2022

What is the Role of Single Sign-On in Security Measures? – Part 2

By SOCRadar Research Read the previous article: What is the Role of Single Sign-On in Security Measures? – Part 1 Maintaining easy and secure Identity and Access Management in an enterprise environment is vital. The need might… Continue Reading

GoTo's Cloud Storage and Dev Environment Breached by Hackers
December 1, 2022

GoTo’s Cloud Storage and Dev Environment Breached by Hackers

Almost all businesses have migrated to storing their assets on the cloud. Cloud computing is a great way to access your resources instantly, but it comes with a great deal of security responsibility due to… Continue Reading

What is the Role of Single Sign-On in Security Measures? – Part 1
December 1, 2022

What is the Role of Single Sign-On in Security Measures? – Part 1

By SOCRadar Research Identity and Access Management (IAM) can be challenging in an enterprise environment. For users and administrators, there can be dozens of credentials to manage, leading to frustration and vital problems for the organization.… Continue Reading

Building Cybersecurity Awareness for Organizations
November 29, 2022

Building Cybersecurity Awareness for Organizations

by SOCRadar Research Cybersecurity has become a vital phenomenon for every institution today, but ensuring safety is a long process that includes different layers, and one of these layers is human. Since a crack at… Continue Reading

SOCRadar helps you visualize digital risk, and reduce your company's attack surface
Request Demo