Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet for internal review. Every Friday we publish the top 10 which are culled from the 40+ relevant stories we review every week.
Weekly Top 10: 10.7.2024: When CUPS Runneth Over: The Threat of DDoS; Perfctl: A Stealthy Malware Targeting Millions of Linux Servers; WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks, and More.
Weekly Top 10: 10.7.2024: When CUPS Runneth Over: The Threat of DDoS; Perfctl: A Stealthy Malware Targeting Millions of Linux Servers; WordPress…
Weekly Top 10: 9.30.2024: Critical Unauthenticated RCE Discovered in Linux; Meta Fined 91 Million Euros for Insecure Password Storage; Windows Vulnerable to Privilege Escalation Attack, and More.
Weekly Top 10: 9.30.2024: Critical Unauthenticated RCE Discovered in Linux; Meta Fined 91 Million Euros for Insecure Password Storage; Windows…
Weekly Top 10: 9.23.2024: Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered; Highway Blobbery: Data Theft using Azure Storage Explorer; Chinese Botnet Infects 260,000 SOHO Routers, IP Cameras with Malware, and More.
Weekly Top 10: 9.23.2024: Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered; Highway Blobbery: Data Theft using…
Weekly Top 10: 9.16.2024: Phishing Pages Delivered Through Refresh HTTP Response Header; Progress LoadMaster Vulnerable to 10/10 Severity RCE Flaw; Microsoft Fixes Windows Smart App Control Zero-Day Exploited Since 2018, and More.
Phishing Pages Delivered Through Refresh HTTP Response Header; Progress LoadMaster Vulnerable to 10/10 Severity RCE Flaw; Microsoft Fixes…
Weekly Top 10: 9.9.2024: Command Injection Vulnerability Discovered in Zyxel Routers; New Android Trojan Poses as Banking Applications; DrayTek Vulnerability Added to CISA’s KEV List, and More.
Command Injection Vulnerability Discovered in Zyxel Routers; New Android Trojan Poses as Banking Applications; DrayTek Vulnerability Added to…
Weekly Top 10: 9.2.2024: Trend Micro Discovers Cryptojacking Attacks Targeting Atlassian Confluence Servers; Windows Downgrading Tool Publicly Available; BlackByte Ransomware Attacking VMware ESXi Servers, and More.
Trend Micro Discovers Cryptojacking Attacks Targeting Atlassian Confluence Servers; Windows Downgrading Tool Publicly Available; BlackByte…
Weekly Top 10: 8.26.2024: Analyzing the Cthulhu Stealer Malware for macOS; PG_MEM: A Malware Hidden in the Postgres Processes; NUMOZYLOD Malware Distributed Through Popular Searches, and More.
Analyzing the Cthulhu Stealer Malware for macOS; PG_MEM: A Malware Hidden in the Postgres Processes; NUMOZYLOD Malware Distributed Through…
Weekly Top 10: 8.19.2024: Net Suite E-Commerce Sites Leak Customer Information; Google Disrupts Iranian-Linked Hacking Campaigns; Russian InfoStealer Malware Campaign Mimics Legitimate Brands, and More.
Net Suite E-Commerce Sites Leak Customer Information; Google Disrupts Iranian-Linked Hacking Campaigns; Russian InfoStealer Malware Campaign…
Weekly Top 10: 8.12.2024: Progress WhatsUp critical RCE Vulnerability Actively Exploited; Cisco Critical Vulnerability has Public Exploit Code; North Korea-linked Threat Actor Targets Universities, and More.
Progress WhatsUp critical RCE Vulnerability Actively Exploited; Cisco Critical Vulnerability has Public Exploit Code; North Korea-linked Threat…
Weekly Top 10: 8.05.2024: Cybercriminals Deploy 100K+ Malware Android Apps to Steal OTP Codes; North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS; Proofpoint Settings Exploited, and More.
Cybercriminals Deploy 100K+ Malware Android Apps to Steal OTP Codes; North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS;…
Weekly Top 10: 7.29.2024: NSA Warns of Attacks on US Critical Infrastructure; Vulnerability in Twilio Authenticator Added to CISAs KEV List; Telegram Messenger Exploit Delivers Malware in Videos, and More.
NSA Warns of Attacks on US Critical Infrastructure; Vulnerability in Twilio Authenticator Added to CISAs KEV List; Telegram Messenger Exploit…
Weekly Top 10 — 7.22.2024 — Threat Actors Spread Password Stealers using Facebook Ads; 15M Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level Malware Discovered, and More.
Threat Actors Spread Password Stealers using Facebook Ads; 15 Million Trello User Email Addresses Leaked; Microsoft-Signed Chinese Kernel Level…