CISA

Weekly Top 10 — 7.22.2024 — Threat Actors Spread Password Stealers using Facebook Ads; 15M Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level Malware Discovered, and More.

Threat Actors Spread Password Stealers using Facebook Ads; 15 Million Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level Malware Discovered, and 7 more cybersecurity stories...

July 22, 2024 16:00 GMT

Weekly Top 10 — 6.17.2024 — CISA Adds Android Pixel, Microsoft Windows, Progress Telerik Report Server to its KVC Catalog, Ransomware Attack Behind City Hall Cyber Problems, Cleveland Shares, Microsoft Delays Windows Recall Amid Privacy and Security Concerns, and More.

Weekly Top 10 — 6.10.2024 — AI Platform Hugging Face Breached, BoxedApp Products Abused by Cyber Criminals, FBI obtained 7,000 LockBit Decryption Keys, and More. and 7 more cybersecurity stories...

June 17, 2024 09:00 GMT

Defending Security in Challenging Times

Most times, when you’ve detected questionable activity on a device, the answer is simple: pave and reimage. When…

June 13, 2024 17:23 GMT

Weekly Top 10 – 05.06.2024- Android Malware Uses Compromised WordPress Sites for C2, Microsoft Warns of Dirty Stream Android Attack, ZLoader Returns with New Defense Evasion Tactics, and More.

Android Malware Uses Compromised WordPress Sites for C2, Microsoft Warns of Dirty Stream Android Attack, Zloader Returns with New Defense Evasion Tacktics, and 7 more cybersecurity stories...

May 6, 2024 09:00 GMT

Weekly Top 10 – 04.2.2024- SharePoint and AMD Vulnerabilities, Password Spraying VPN Attacks, Tycoon 2FA, and More.

WEEKLY TOP TEN: April 2, 2024, 17:09 GMT Our Threat Operations and Intelligence team compiles a daily digest…

April 2, 2024 17:14 GMT

Swatting: Harmless Prank or Dangerous Attack?

Since Christmas, more than a dozen swatting attacks have been perpetrated against political figures, celebrities, and even the…

March 7, 2024 15:21 GMT

Weekly Top 10 – 02.05.2024- Homeland Security Employees Arrested, CISA Warns of iOS and macOS Actively Exploited Zero-Day Vulnerabilities, Brazilian Authorities Take Down Grandoreiro and more.

WEEKLY TOP TEN | February 5, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily…

February 5, 2024 15:00 GMT

Current Dependency Vulnerabilities Giving Us PTSD

Lately, it seems we’re all plagued by zero-day and dependency-related vulnerabilities. Log4Shell had everyone scrambling in 2021, and…

October 17, 2023 09:35 GMT

Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA

Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...

October 9, 2023 06:00 GMT

Weekly Top 10 – 9.14.2023- Chrome Password-Stealing Extensions, ‘Spamoflauge’, MITRE Caldera

Chrome extensions capable of stealing plaintext passwords, Meta vs 'Spamoflauge' operation, new MITRE Caldera, and 7 more cybersecurity stories...

September 14, 2023 19:38 GMT

Hand-Picked Top-Read Stories

Weekly Top 10 — 7.22.2024 — Threat Actors Spread Password Stealers using Facebook Ads; 15M Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level Malware Discovered, and More.

Crowdstrike Falcon Sensor Update Causes Mass Outage On Windows Endpoints—How To Fix

Weekly Top 10 — 7.15.2024 — Massive AT&T Data Breach; CRYSTALRAY: Inside Story; Avast Releases a DoNex Decryptor; Microsoft Patch Tuesday, and More.

Trending Tags

Weekly Top 10 — 7.22.2024 — Threat Actors Spread Password Stealers using Facebook Ads; 15M Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level Malware Discovered, and More.

Weekly Top 10 — 6.17.2024 — CISA Adds Android Pixel, Microsoft Windows, Progress Telerik Report Server to its KVC Catalog, Ransomware Attack Behind City Hall Cyber Problems, Cleveland Shares, Microsoft Delays Windows Recall Amid Privacy and Security Concerns, and More.

Defending Security in Challenging Times

Weekly Top 10 – 05.06.2024- Android Malware Uses Compromised WordPress Sites for C2, Microsoft Warns of Dirty Stream Android Attack, ZLoader Returns with New Defense Evasion Tactics, and More.

Weekly Top 10 – 04.2.2024- SharePoint and AMD Vulnerabilities, Password Spraying VPN Attacks, Tycoon 2FA, and More.

Weekly Top 10 – 02.05.2024- Homeland Security Employees Arrested, CISA Warns of iOS and macOS Actively Exploited Zero-Day Vulnerabilities, Brazilian Authorities Take Down Grandoreiro and more.

Current Dependency Vulnerabilities Giving Us PTSD

Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA

Weekly Top 10 – 9.14.2023- Chrome Password-Stealing Extensions, ‘Spamoflauge’, MITRE Caldera

The New Standard of

Cybersecurity
Education

Innovate Cybersecurity Summit

Threat Advisories

Crowdstrike Falcon Sensor Update Causes Mass Outage On Windows Endpoints—How To Fix

Weekly Top 10 — 7.15.2024 — Massive AT&T Data Breach; CRYSTALRAY: Inside Story; Avast Releases a DoNex Decryptor; Microsoft Patch Tuesday, and More.

Weekly Top 10 — 7.2.2024 — Windows XSS Phishing Attacks, SneakyChef APT, Redis Servers Under Attack, and More.

Update To OpenSSH Fixes Reintroduced Remote Code Execution Vulnerability

Weekly Top 10 — 6.24.2024 — RCE Vulnerability Discovered in Mailcow, Fake Virtual Meeting Software Spreads Infostealers, Critical Vulnerability in VMware vCenter Patched, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware