Windows SmartScreen Vulnerability Exploited in DarkGate Malware Attack...
Windows SmartScreen Vulnerability Exploited in DarkGate Malware Attacks, Patch CVE-2024-21412 Now In January 2024, a new DarkGate malware campaign was discovered, which used a Windows Defender SmartSc...
CISA Highlights Updates Addressing Adobe, Fortinet Vulnerabilities: CV...
CISA Highlights Updates Addressing Adobe, Fortinet Vulnerabilities: CVE-2023-42789, CVE-2023-48788, CVE-2024-20756, CVE-2024-20767 [Update] April 16, 2024: “Novel Campaign ‘Connect:fun’ Exploits CVE-2...
An Overview of Microsoft March 2024 Patch Tuesday: Severe RCE and Priv...
An Overview of Microsoft March 2024 Patch Tuesday: Severe RCE and Privilege Escalation Vulnerabilities Microsoft has released Patch Tuesday for March 2024, which addresses 61 security vulnerabilities....
Critical CVE-2024-21899 Vulnerability in QNAP Products; Upcoming PoC E...
Critical CVE-2024-21899 Vulnerability in QNAP Products; Upcoming PoC Exploit for Outlook Vulnerability, CVE-2024-21378 QNAP recently addressed three vulnerabilities affecting their QTS, QuTS hero, QuT...
Critical Veritas NetBackup & JFrog Artifactory Vulnerabilities (CVE-20...
Critical Veritas NetBackup & JFrog Artifactory Vulnerabilities (CVE-2024-28222, CVE-2023-42662); CISA Alert for Cisco Flaws New critical vulnerabilities have surfaced in Veritas NetBackup and JFro...
Navigating the Shadowy Depths of the Migo Malware Campaign
Navigating the Shadowy Depths of the Migo Malware Campaign The Migo malware campaign emerged as a formidable adversary, targeting Redis servers with novel system-weakening techniques aimed at cryptoja...
VMware ESXi, Workstation, Fusion Vulnerabilities Allow Code Execution,...
VMware ESXi, Workstation, Fusion Vulnerabilities Allow Code Execution, Sandbox Escape (CVE-2024-22252 – 22255) [Update] March 7, 2024: “CISA Urges Swift Patching of VMware Vulnerabilities” VMware has ...
ALPHV's Roller Coaster, $22 Million Ransom
ALPHV’s Roller Coaster, $22 Million Ransom [Update] March 7, 2024: “Money Paid, Data Retained; ALPHV’s Exit Scam” The ransomware attack on Change Healthcare has become one of the most disruptive...
TeamCity On-Premises Vulnerabilities Threaten Supply Chains (CVE-2024-...
TeamCity On-Premises Vulnerabilities Threaten Supply Chains (CVE-2024-27198, CVE-2024-27199); Android March 2024 Updates [Update] March 12, 2024: “BianLian Exploits JetBrains TeamCity Vulnerabilities ...
CISA’s Weekly Summary – CVSS 10 Vulnerabilities in Progress’ LoadMaste...
CISA’s Weekly Summary – CVSS 10 Vulnerabilities in Progress’ LoadMaster and OpenEdge, Myriad Critical Flaws [Update] March 29, 2024: “Threat Actors Exploit LoadMaster Vulnerability (CVE-2024-1212)” [U...
Shadow Ops Exposed: Inside the Leak of China's i-Soon Cyber Espionage ...
Shadow Ops Exposed: Inside the Leak of China’s i-Soon Cyber Espionage Empire Chinese authorities, law enforcement agencies, cybersecurity researchers, and a whole lot of other people are investi...
Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC...
Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC, and VMware EAP (CVE-2024-1709, CVE-2024-1597, CVE-2024-22245) [Update] March 5, 2024: “Kimsuky Takes Advantage of ScreenConnect ...
Weekly Vulnerability Summary by CISA – February 12, 2024; New ICS Advi...
Weekly Vulnerability Summary by CISA – February 12, 2024; New ICS Advisories The Cybersecurity and Infrastructure Security Agency (CISA) has once again issued a summary of the latest vulnerabilities. ...
Multiple Zero-Day and RCE Vulnerabilities Aboard: AutoCAD, SolarWinds ...
Multiple Zero-Day and RCE Vulnerabilities Aboard: AutoCAD, SolarWinds ARM, Bricks Builder Under Risk The Zero Day Initiative (ZDI) has reported several vulnerabilities affecting Autodesk AutoCAD; thes...
International Authorities Strike Blow Against LockBit Ransomware: Oper...
International Authorities Strike Blow Against LockBit Ransomware: Operation Cronos [Update] March 3, 2024: “LockBit’s Many Bluffs” [Update] February 26, 2024: “A Week After: LockBit Strikes Back...
Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cl...
Sensitive Information Belonging to BMW Exposed Due to Misconfigured Cloud Bucket A recent event involving a misconfigured cloud storage bucket owned by BMW has highlighted the crucial role of cloud se...
CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, ...
CISA Highlights Critical Adobe Security Updates for Acrobat, Magento, and More (CVE-2024-20738, CVE-2024-20719, CVE-2024-20720) [Update] April 6, 2024: “Threat Actors Exploit CVE-2024-20720 in Magento...
Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android,...
Zoom Addressed Seven Vulnerabilities Across Windows, iOS, and Android, Including One Critical (CVE-2024-24691) Zoom, the well-known video conferencing platform, patched 7 security vulnerabilities in a...
Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern
Pipeline to Peril: Unpacking the ALPHV Attack on Trans-Northern [Update] February 16, 2024: “US State Department’s Reward for Information on ALPHV/BlackCat Ransomware” In the ever-evolving lands...
Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and...
Microsoft’s February 2024 Patch Tuesday Highlights: CVE-2024-21412 and CVE-2024-21351 Under Exploitation [Update] February 29, 2024: “Details and PoC Exploit for CVE-2024-21338” [Update] February 29, ...