Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet for internal review. Every Friday we publish the top 10 which are culled from the 40+ relevant stories we review every week.
Weekly Top Ten Cybersecurity Stories – 3.17.2023
Microsoft fixes two zero-days actively exploited by state-sponsored threat actors, Adobe Coldfusion vulnerability exploited in the wild, U.S.…
Weekly Top Ten Cybersecurity Stories – 3.10.2023
How to avoid Microsoft OneNote files deploying malware, Google Cloud data exfiltration attacks, Facebook Ads used to target critical…
Weekly Top Ten Cybersecurity Stories – 2.10.2023
Royal Ransomware Pivots to Targeting Linux and ESXi, OpenSSH and OpenSSL patch RCE vulnerabilities, Industrial Internet of Things (IIOT), and 7 more…
Weekly Top Ten Cybersecurity Stories – 2.3.2023
Proof-of-concept code for new VMWare vulnerability, Lexmark patches vulnerable printer models, Password managers become popular target, and 7 more…
Weekly Top Ten Cybersecurity Stories – 1.27.2023
Threat actors pivot to Microsoft OneNote attachments, Federal agency breaches, Windows CryptoAPI vulnerability, and 7 more.
Weekly Top Ten Cybersecurity Stories – 1.20.2023
Poisoned Google search results create convincing phishing websites, 4000+ Sophos firewalls remain unpatched and vulnerable, CISA adds CentOS web…
Weekly Top Ten Cybersecurity Stories – 1.13.2023
CISA adds Exchange privilege escalation bug to "known exploited" catalog, Fake AnyDesk websites deploying info stealer, multiple Cisco router…
Weekly Top Ten Cybersecurity Stories – 1.6.2023
Meddler-in-the-Middle phishing attacks bypass MFA, IcedID banking trojan Zoom phishing, Linux malware backdoor in WordPress, and 7 more…
Weekly Top Ten Cybersecurity Stories – 12.16.2022
New SQL Injection attack capable of bypassing WAF, SPNEGO vulnerability reclassified "Critical", NSA urges patching of Citrix ADC and Gateway…
Weekly Top Ten Cybersecurity Stories – 12.9.2022
Supply chain manufacturer servers at risk, CISA calls to patch Chrome, ZeroBot exploiting hardware vulnerabilities, and more…
Weekly Top Ten Cybersecurity Stories – 12.2.2022
Fortinet bug actively exploited, GoTo discloses breach of development and cloud storage, LastPass reports secondary breach, FIFA used as cover…
Weekly Top Ten Cybersecurity Stories – 11.18.2022
Windows Kerberos authentication malfunctions after Patch Tuesday, AgentTesla and LockBit 3.0 most prevalent of Q3, Batloader malware evades…