exploit

Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang

Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...

October 23, 2023 08:00 GMT

Current Dependency Vulnerabilities Giving Us PTSD

Lately, it seems we’re all plagued by zero-day and dependency-related vulnerabilities. Log4Shell had everyone scrambling in 2021, and…

October 17, 2023 09:35 GMT

Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA

October 9, 2023 06:00 GMT

Anatomy of a Data Breach

A data breach is a common occurrence in the wake of a successful cyberattack. Let's discuss how they happen and how to prevent them.

August 24, 2023 15:17 GMT

Baselining Endpoint Risk

Baselining endpoints tells security professionals what risks exist and lets them develop a plan that improves and matures your security. Here we take a look at the common issues they find.

August 21, 2023 16:36 GMT

Mitigating The Unpatched Office and Windows HTML RCE (CVE-2023-36884)

July 2023's Patch Tuesday released fixes for several vulnerabilities being actively exploited in the wild, but only identified mitigation for one particular unpatched zero-day that can allow HTML remote code execution as part of an initial attack.

July 18, 2023 18:32 GMT

Follina Zero-Day Allows Zero-Click RCE From Office Docs

JUNE 2, 2022 19:09 GMT Microsoft Office docs are the primary vector for an actively exploited zero-day vulnerability…

June 2, 2022 15:45 GMT

Weekly Top Ten Cybersecurity Stories – 5.20.2022

VMWare emergency patch, Microsoft updates break domain controller auth, Sysrv-K Botnet Abusing WordPress, Brute force MSSQL

May 20, 2022 14:00 GMT

May 2022 Windows Patches Could Cause Auth Issues On Domain Controllers

MAY 19, 2022 16:36 GMT Proceed with caution before patching Domain Controllers in your environment with Microsoft’s May…

May 19, 2022 16:09 GMT

Weekly Top Ten Cybersecurity Stories – 5.13.2022

F5 BIG-IP exploits, Gootloader and SEO Poisoning, NerbianRAT phishing campaign, Raspberry Robin malicious USB drive campaign

May 13, 2022 14:02 GMT

Hand-Picked Top-Read Stories

Beyond Mobile Authentication: Exploring Complex Environments MFA Solutions

Weekly Top 10 – 12.04.2023- Google Patches the Sixth Chrome Zero-Day of 2023, Okta Breach Impacts All Users Who Worked with Support, Sinbad Bitcoin Mixer Seized, and more.

Trending Tags

exploit

Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang

Current Dependency Vulnerabilities Giving Us PTSD

Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA

Anatomy of a Data Breach

Baselining Endpoint Risk

Mitigating The Unpatched Office and Windows HTML RCE (CVE-2023-36884)

Follina Zero-Day Allows Zero-Click RCE From Office Docs

Weekly Top Ten Cybersecurity Stories – 5.20.2022

May 2022 Windows Patches Could Cause Auth Issues On Domain Controllers

Weekly Top Ten Cybersecurity Stories – 5.13.2022

The New Standard of

Cybersecurity
Education

Innovate Cybersecurity Summit

Threat Advisories

Weekly Top 10 – 12.04.2023- Google Patches the Sixth Chrome Zero-Day of 2023, Okta Breach Impacts All Users Who Worked with Support, Sinbad Bitcoin Mixer Seized, and more.

Weekly Top 10 – 11.20.2023- Maine State Census Breached, Security Flaw in Google Workspace, “Royal Ransomware” Possibly ReBranding, and more

Weekly Top 10 – 11.13.2023- New North Korean-Linked MacOS Malware, Google Calendar CNC Abuse

Weekly Top 10 – 11.06.2023- Threat Actors Use Credentials Scraped from GitHub for Crypto Mining, Infamous Mozi IOT Botnet Goes Dark, HelloKitty Ransomware Gang Leverages Vulnerabilities in Apache, Boeing Confirms Cyberattack and Lockbit Claims Responsibility

Weekly Top 10 – 10.30.2023- Critical Vulnerabilities in SolarWinds Access Rights Manager, Zero-Day in Roundcube Exploited by Nation State Actors, VMWare VCenter Security Flaw Patched in End-of-Life Products, Vulnerabilities in Google Chrome Lead to Remote Code Execution

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Breaking Into A Cybersecurity Career As A Security Analyst

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware