Browsing Tag
zero-day
33 posts
Weekly Top 10 – 11.06.2023- Threat Actors Use Credentials Scraped from GitHub for Crypto Mining, Infamous Mozi IOT Botnet Goes Dark, HelloKitty Ransomware Gang Leverages Vulnerabilities in Apache, Boeing Confirms Cyberattack and Lockbit Claims Responsibility
WEEKLY TOP TEN | November 06, 2023 15:00 GMT Our Threat Operations and Intelligence team compiles a daily…
Weekly Top 10 – 10.30.2023- Critical Vulnerabilities in SolarWinds Access Rights Manager, Zero-Day in Roundcube Exploited by Nation State Actors, VMWare VCenter Security Flaw Patched in End-of-Life Products, Vulnerabilities in Google Chrome Lead to Remote Code Execution
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
Current Dependency Vulnerabilities Giving Us PTSD
Lately, it seems we’re all plagued by zero-day and dependency-related vulnerabilities. Log4Shell had everyone scrambling in 2021, and…
Weekly Top 10 – 10.9.2023- Zombie Zoom Links, Indeed.com Redirect Vulnerability Abused, CISA Adds Windows and JetBrains to KEV Catalogue, BING AI Convinced to Reveal CAPTCHA
Critical Vulnerabilities discovered in WS_FTP Server software, Zero-day exploit in Exim Maill Server, Maximum Severity Vulnerabilities in Confulence, Looney-Toonable flaw in Linux Distributions GNU C Library, and 6 more cybersecurity stories...
Weekly Top 10 – 9.5.2023-Top 3 Malware Loaders, Nokoyawa Ransomware, WinRAR Zero-Day
80% of security incidents are the result of these 3 malware loaders, Smoke loader drops whiffy recon wi-fi scanning and geolocation malware, Domain-side ransomware cause by HTML smuggling, and 7 more cybersecurity stories...
Baselining Endpoint Risk
Baselining endpoints tells security professionals what risks exist and lets them develop a plan that improves and matures your security. Here we take a look at the common issues they find.
Mitigating The Unpatched Office and Windows HTML RCE (CVE-2023-36884)
July 2023's Patch Tuesday released fixes for several vulnerabilities being actively exploited in the wild, but only identified mitigation for one particular unpatched zero-day that can allow HTML remote code execution as part of an initial attack.
Weekly Top 10 – 6.23.2023 – BlackLotus Mitigation, GitHub Repojacking, Apple exploits
NSA Releases Guide to Mitigate BlackLotus, GitHub repojacking, actively exploited zero-day for Apple iOS and macOS bugs, and 7 more stories...
Weekly Top 10 – 6.9.2023 – OneDrive Down After DDoS, Win32k Exploit, Hacked Barracuda Appliances
MS OneDrive down after claims of DDoS, proof of concept for Windows Win32k exploit, PowerDrop PowerShell malware, and 7 more stories...
Weekly Top Ten Cybersecurity Stories – 5.19.2023
Apple fixes zero-days exploited on iPhone and Mac, ASUS routers taken offline by bad update, Sidewinder group infrastructure uncovered, and 7 more cybersecurity stories...