Browsing Category
Threat Advisories
172 posts
Briefings on the latest cybersecurity threats, vulnerabilities, and critical action items for security practitioners.
Weekly Top 10: 10.7.2024: When CUPS Runneth Over: The Threat of DDoS; Perfctl: A Stealthy Malware Targeting Millions of Linux Servers; WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks, and More.
Weekly Top 10: 10.7.2024: When CUPS Runneth Over: The Threat of DDoS; Perfctl: A Stealthy Malware Targeting Millions of Linux Servers; WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks, and 7 more.
October 7, 2024 16:00 GMT
Weekly Top 10: 9.30.2024: Critical Unauthenticated RCE Discovered in Linux; Meta Fined 91 Million Euros for Insecure Password Storage; Windows Vulnerable to Privilege Escalation Attack, and More.
Weekly Top 10: 9.30.2024: Critical Unauthenticated RCE Discovered in Linux; Meta Fined 91 Million Euros for Insecure Password Storage; Windows Vulnerable to Privilege Escalation Attack, and 7 more.
September 30, 2024 16:00 GMT
Weekly Top 10: 9.23.2024: Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered; Highway Blobbery: Data Theft using Azure Storage Explorer; Chinese Botnet Infects 260,000 SOHO Routers, IP Cameras with Malware, and More.
Weekly Top 10: 9.23.2024: Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered; Highway Blobbery: Data Theft using Azure Storage Explorer; Chinese Botnet Infects 260,000 SOHO Routers, IP Cameras with Malware, and 7 more.
September 23, 2024 16:00 GMT
Weekly Top 10: 9.16.2024: Phishing Pages Delivered Through Refresh HTTP Response Header; Progress LoadMaster Vulnerable to 10/10 Severity RCE Flaw; Microsoft Fixes Windows Smart App Control Zero-Day Exploited Since 2018, and More.
Phishing Pages Delivered Through Refresh HTTP Response Header; Progress LoadMaster Vulnerable to 10/10 Severity RCE Flaw; Microsoft Fixes Windows Smart App Control Zero-Day Exploited Since 2018, and 7 more.
September 16, 2024 16:00 GMT
Weekly Top 10: 9.9.2024: Command Injection Vulnerability Discovered in Zyxel Routers; New Android Trojan Poses as Banking Applications; DrayTek Vulnerability Added to CISA’s KEV List, and More.
Command Injection Vulnerability Discovered in Zyxel Routers; New Android Trojan Poses as Banking Applications; DrayTek Vulnerability Added to CISA’s KEV List, and 7 more.
September 9, 2024 16:00 GMT
Weekly Top 10: 9.2.2024: Trend Micro Discovers Cryptojacking Attacks Targeting Atlassian Confluence Servers; Windows Downgrading Tool Publicly Available; BlackByte Ransomware Attacking VMware ESXi Servers, and More.
Trend Micro Discovers Cryptojacking Attacks Targeting Atlassian Confluence Servers; Windows Downgrading Tool Publicly Available; BlackByte Ransomware Attacking VMware ESXi Servers
September 2, 2024 16:00 GMT
Weekly Top 10: 8.26.2024: Analyzing the Cthulhu Stealer Malware for macOS; PG_MEM: A Malware Hidden in the Postgres Processes; NUMOZYLOD Malware Distributed Through Popular Searches, and More.
Analyzing the Cthulhu Stealer Malware for macOS; PG_MEM: A Malware Hidden in the Postgres Processes; NUMOZYLOD Malware Distributed Through Popular Searches and 7 more cybersecurity stories...
August 26, 2024 16:00 GMT
Weekly Top 10: 8.19.2024: Net Suite E-Commerce Sites Leak Customer Information; Google Disrupts Iranian-Linked Hacking Campaigns; Russian InfoStealer Malware Campaign Mimics Legitimate Brands, and More.
Net Suite E-Commerce Sites Leak Customer Information; Google Disrupts Iranian-Linked Hacking Campaigns; Russian InfoStealer Malware Campaign Mimics Legitimate Brands and 7 more cybersecurity stories...
August 19, 2024 16:00 GMT
Weekly Top 10: 8.12.2024: Progress WhatsUp critical RCE Vulnerability Actively Exploited; Cisco Critical Vulnerability has Public Exploit Code; North Korea-linked Threat Actor Targets Universities, and More.
Progress WhatsUp critical RCE Vulnerability Actively Exploited; Cisco Critical Vulnerability has Public Exploit Code; North Korea-linked Threat Actor Targets Universities and 7 more cybersecurity stories...
August 12, 2024 16:00 GMT
Weekly Top 10: 8.05.2024: Cybercriminals Deploy 100K+ Malware Android Apps to Steal OTP Codes; North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS; Proofpoint Settings Exploited, and More.
Cybercriminals Deploy 100K+ Malware Android Apps to Steal OTP Codes; North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS; Proofpoint Settings Exploited and 7 more cybersecurity stories...
August 5, 2024 16:00 GMT