threats

Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang

Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...

October 23, 2023 08:00 GMT

Meta’s Q2 2023 Adversarial Threat Report: What You Should Know

Meta has released its second quarter Adversarial Threat Report. In it, Meta shares insights into global threats and technical threat indicators that will assist the security community. Here we are sharing and reviewing its findings.

September 29, 2023 10:19 GMT

Weekly Top 10 – 9.25.2023- CLOP Gang Stolen Data, New AMBERSQUID Cryptojacking Operation, Payment Card Skimming Campaign

Chrome extensions capable of stealing plaintext passwords, Meta vs 'Spamoflauge' operation, new MITRE Caldera, and 7 more cybersecurity stories...

September 25, 2023 09:00 GMT

Baselining Endpoint Risk

Baselining endpoints tells security professionals what risks exist and lets them develop a plan that improves and matures your security. Here we take a look at the common issues they find.

August 21, 2023 16:36 GMT

Weekly Top Ten Cybersecurity Stories – 6.24.2022

Old Apple Safari vulnerability actively exploited, Cisco Routers patching end-of-life, MEGA cloud storage credential theft, Azure AFD phishing attacks

June 24, 2022 12:59 GMT

Weekly Top Ten Cybersecurity Stories – 6.17.2022

Atlassian vulns deploy ransomware, HelloXD ransomware, JFrog RCE, Fatal flaw in Office365, Follina patch released

June 17, 2022 12:55 GMT

Weekly Top Ten Cybersecurity Stories – 6.10.2022

DogWalk MSDT Zero-Day, QBOt exploits Follina vuln, Symbiote malware for Linux, Mandiant condemns Evil Corp

June 10, 2022 13:01 GMT

Weekly Top Ten Cybersecurity Stories – 5.27.2022

Cisco IOS XR vuln patched, PDF malware is alive, fake exploit POC code targets researchers, Red Canary finds new malvertising TTPs

May 27, 2022 06:32 GMT

Weekly Top Ten Cybersecurity Stories – 5.20.2022

VMWare emergency patch, Microsoft updates break domain controller auth, Sysrv-K Botnet Abusing WordPress, Brute force MSSQL

May 20, 2022 14:00 GMT

Weekly Top Ten Cybersecurity Stories – 5.13.2022

F5 BIG-IP exploits, Gootloader and SEO Poisoning, NerbianRAT phishing campaign, Raspberry Robin malicious USB drive campaign

May 13, 2022 14:02 GMT

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

threats

Weekly Top 10 – 10.23.2023- Critical Vulnerability in Cisco IOS XE Leads to Over 30k Compromised Devices, Threat Actors Abuse Google Ads to Deliver Malware, QR Codes Used to Spread Malware and Steal Passwords, Coordinated Law Enforcement Effort Takes Down RagnarLocker Ransomware Gang

Meta’s Q2 2023 Adversarial Threat Report: What You Should Know

Weekly Top 10 – 9.25.2023- CLOP Gang Stolen Data, New AMBERSQUID Cryptojacking Operation, Payment Card Skimming Campaign

Baselining Endpoint Risk

Weekly Top Ten Cybersecurity Stories – 6.24.2022

Weekly Top Ten Cybersecurity Stories – 6.17.2022

Weekly Top Ten Cybersecurity Stories – 6.10.2022

Weekly Top Ten Cybersecurity Stories – 5.27.2022

Weekly Top Ten Cybersecurity Stories – 5.20.2022

Weekly Top Ten Cybersecurity Stories – 5.13.2022

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware