Zero Day

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.18.2024: Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More

November 18, 2024 16:00 GMT

Unlocking the MITRE Cyber Attack

Here we review the April 2024 cyberattack on Mitre's network with the steps they took to mitigate the threat.

June 7, 2024 12:00 GMT

Weekly Top 10 — 5.27.2024 — Google Discovers Fourth Zero-Day in Chrome, Popular Cloud Services Used to Masquerade Smishing Links, VMs Used for Defense Evasion in MITRE Cyber Attack, and More.

Google Discovers Fourth Zero-Day in Chrome This Month, Popular Cloud Services Used to Masquerade Smishing Links, Virtual Machines Used for Defense Evasion in MITRE Cyber Attack and 7 more cybersecurity stories...

May 27, 2024 09:00 GMT

Weekly Top 10 — 5.20.2024— Europol Confirms Web Portal Breached, Black Basta Breached over 500 organizations, MITRE Revealed a New Threat-Modeling Framework, and More.

Europol Confirms Web Portal Breached, Black Basta Breached over 500 organizations, MITRE Revealed a New Threat-Modeling Framework for Embedded Devices, and 7 more cybersecurity stories...

May 20, 2024 09:00 GMT

Weekly Top 10 – 5.13.2024 – Law Enforcement Seizes LockBit Group’s Website Again, LockBit Ransomware Gang Claims City of Wichita Breach, Ohio Lottery Ransomware Attack Impacts Over 538,000, and More.

Law Enforcement Seized LockBit Group’s Website Again, City of Wichita breach claimed by LockBit Ransomware Gang, Ohio Lottery Ransomware Attack Impacts Over 538,000, and 7 more cybersecurity stories...

May 13, 2024 09:00 GMT

Weekly Top 10 – 04.29.2024- Custom Exploit Tool by Russian APT Fancy Bear, Coveware Quarterly Report Released, CrushFTP Zero-day Allows Sandbox Escape, and More.

Custom Exploit Tool Crafted by Russian APT Fancy Bear Discovered, Coveware Quarterly Report Released, CrushFTP Zero-day Allows Sandbox Escape, and 7 more cybersecurity stories...

April 29, 2024 09:00 GMT

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

MITRE has announced that they have experienced a breach, Frontier Communications shuts down systems after cyberattack, United Nations agency investigates ransomware attack and data theft, and 7 more cybersecurity stories...

April 22, 2024 15:21 GMT

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Google pays $41,000 in bug bounties for three Chrome vulnerabilities, Medusa Ransomware gang returns with new double extortion methods, LG Smart TVs vulnerable to remote takeover, and 7 more cybersecurity stories...

April 17, 2024 15:34 GMT

Weekly Top 10 – 02.05.2024- Homeland Security Employees Arrested, CISA Warns of iOS and macOS Actively Exploited Zero-Day Vulnerabilities, Brazilian Authorities Take Down Grandoreiro and more.

WEEKLY TOP TEN | February 5, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily…

February 5, 2024 15:00 GMT

Social engineering has become a popular tactic among cybercriminals to gain access to networks since most organizations have implemented zero-trust mechanisms. Driving them to use tactics such as business email compromise and phishing, smishing, and vishing campaigns. The hacker collective Scattered Spider is known to use social engineering tactics. The recent attacks against MGM Casino and Caesars Entertainment were attributed to the group. During these attacks, it encrypted systems using the BlackCat/ALPHV locker.

Tactics, Techniques, and Procedures of Cyberattacks

Social engineering has been a popular tactic used among cybercriminals to gain access to networks for a long time,…

January 8, 2024 10:00 GMT

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

Zero Day

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Unlocking the MITRE Cyber Attack

Weekly Top 10 — 5.20.2024— Europol Confirms Web Portal Breached, Black Basta Breached over 500 organizations, MITRE Revealed a New Threat-Modeling Framework, and More.

Weekly Top 10 – 5.13.2024 – Law Enforcement Seizes LockBit Group’s Website Again, LockBit Ransomware Gang Claims City of Wichita Breach, Ohio Lottery Ransomware Attack Impacts Over 538,000, and More.

Weekly Top 10 – 04.29.2024- Custom Exploit Tool by Russian APT Fancy Bear, Coveware Quarterly Report Released, CrushFTP Zero-day Allows Sandbox Escape, and More.

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 02.05.2024- Homeland Security Employees Arrested, CISA Warns of iOS and macOS Actively Exploited Zero-Day Vulnerabilities, Brazilian Authorities Take Down Grandoreiro and more.

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Weekly Top 10: 10.21.2024: North Korean Threat Actors Target ATMs; BianLian Claims Responsibility for Attack on Children’s Hospital; Hacker Behind the Infamous NPD Breach Arrested by Brazilian Authorities, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware