Browsing Tag
exploit
26 posts
Update To OpenSSH Fixes Reintroduced Remote Code Execution Vulnerability
Administrators of Linux-based systems should update OpenSSH immediately to patch a flaw that can expose a remote code execution vulnerability.
July 2, 2024 12:35 GMT
Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.
MITRE has announced that they have experienced a breach, Frontier Communications shuts down systems after cyberattack, United Nations agency investigates ransomware attack and data theft, and 7 more cybersecurity stories...
April 22, 2024 15:21 GMT
Weekly Top 10 – 02.26.2024- Critical Vulnerability in ScreenConnect, Global Takedown of Lockbit Ransomware, Russian Government Software Distributes Malware, and More.
WEEKLY TOP TEN: February 26, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily digest…
February 26, 2024 15:00 GMT
Patch Now To Fix Critical RCE Vulnerability In ConnectWise ScreenConnect
ConnectWise has issued a patch for its ScreenConnect product to fix two vulnerabilities that provide a low-effort authentication bypass and path traversal, potentially allowing remote code execution or access to private systems and data. Admins are encouraged to apply the patch ASAP.
February 21, 2024 17:04 GMT
Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
October 23, 2023 08:00 GMT
Current Dependency Vulnerabilities Giving Us PTSD
Lately, it seems we’re all plagued by zero-day and dependency-related vulnerabilities. Log4Shell had everyone scrambling in 2021, and…
October 17, 2023 09:35 GMT
Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
October 9, 2023 06:00 GMT
Anatomy of a Data Breach
A data breach is a common occurrence in the wake of a successful cyberattack. Let's discuss how they happen and how to prevent them.
August 24, 2023 15:17 GMT
Baselining Endpoint Risk
Baselining endpoints tells security professionals what risks exist and lets them develop a plan that improves and matures your security. Here we take a look at the common issues they find.
August 21, 2023 16:36 GMT
Mitigating The Unpatched Office and Windows HTML RCE (CVE-2023-36884)
July 2023's Patch Tuesday released fixes for several vulnerabilities being actively exploited in the wild, but only identified mitigation for one particular unpatched zero-day that can allow HTML remote code execution as part of an initial attack.
July 18, 2023 18:32 GMT