-
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
Source: Unit 42 Published on 2024-04-13 By Unit 42
-
Muddled Libra’s Evolution to the Cloud
Source: Unit 42 Published on 2024-04-10 By Margaret Zimmermann
-
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise
Source: Unit 42 Published on 2024-04-09 By Beliz Kaleli, Fang Liu, Peng Peng, Alex Starov, Joey Allen and Stefan Springer
-
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094)
Source: Unit 42 Published on 2024-03-31 By Unit 42
-
Exposing a New BOLA Vulnerability in Grafana
Source: Unit 42 Published on 2024-03-27 By Ravid Mazon and Jay Chen
-
New Microsoft Incident Response guide helps simplify cyberthreat investigations
Source: Blog from Microsoft Security Published on 2024-04-24 By Microsoft Incident Response
-
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials
Source: Blog from Microsoft Security Published on 2024-04-23 By Microsoft Threat Intelligence
-
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters
Source: Blog from Microsoft Security Published on 2024-04-18 By Microsoft Threat Intelligence
-
New Microsoft guidance for the DoD Zero Trust Strategy
Source: Blog from Microsoft Security Published on 2024-04-17 By Steve Faehl
-
Microsoft recognized as a Leader in the Forrester Wave™: Workforce Identity Platform, Q1 2024
Source: Blog from Microsoft Security Published on 2024-04-16 By Joy Chik
-
US Post Office phishing sites get as much traffic as the real one
Source: BleepingComputer Published on 2024-04-28 By Bill Toulas
-
Google Chrome's new post-quantum cryptography may break TLS connections
Source: BleepingComputer Published on 2024-04-28 By Sergiu Gatlan
-
Japanese police create fake support scam payment cards to warn victims
Source: BleepingComputer Published on 2024-04-28 By Bill Toulas
-
Okta warns of "unprecedented" credential stuffing attacks on customers
Source: BleepingComputer Published on 2024-04-27 By Bill Toulas
-
Telegram is down with "Connecting" error
Source: BleepingComputer Published on 2024-04-27 By Mayank Parmar
-
Assessing the Y, and How, of the XZ Utils incident
Source: Securelist Published on 2024-04-24 By GReAT
-
ToddyCat is making holes in your infrastructure
Source: Securelist Published on 2024-04-22 By Andrey Gunkin, Alexander Fedotov, Natalya Shornikova
-
DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware
Source: Securelist Published on 2024-04-18 By GReAT
-
SoumniBot: the new Android banker’s unique techniques
Source: Securelist Published on 2024-04-17 By Dmitry Kalinin
-
Using the LockBit builder to generate targeted ransomware
Source: Securelist Published on 2024-04-15 By Eduardo Ovalle, Francesco Figurelli, Cristian Souza, Ashley Muñoz
-
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks
Source: The Hacker News Published on 2024-04-28
-
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw
Source: The Hacker News Published on 2024-04-27
-
Bogus npm Packages Used to Trick Software Developers into Installing Malware
Source: The Hacker News Published on 2024-04-27
-
Severe Flaws Disclosed in Brocade SANnav SAN Management Software
Source: The Hacker News Published on 2024-04-26
-
10 Critical Endpoint Security Tips You Should Know
Source: The Hacker News Published on 2024-04-26
-
From OneNote to RansomNote: An Ice Cold Intrusion
Source: The DFIR Report Published on 2024-04-01 By editor
-
Threat Brief: WordPress Exploit Leads to Godzilla Web Shell, Discovery & New CVE
Source: The DFIR Report Published on 2024-03-04 By editor
-
SEO Poisoning to Domain Control: The Gootloader Saga Continues
Source: The DFIR Report Published on 2024-02-26 By editor
-
Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours
Source: The DFIR Report Published on 2024-01-29 By editor
-
Lets Open(Dir) Some Presents: An Analysis of a Persistent Actor’s Activity
Source: The DFIR Report Published on 2023-12-18 By editor