-
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
Source: Unit 42 Published on 2024-04-13 By Unit 42
-
Muddled Libra’s Evolution to the Cloud
Source: Unit 42 Published on 2024-04-10 By Margaret Zimmermann
-
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise
Source: Unit 42 Published on 2024-04-09 By Beliz Kaleli, Fang Liu, Peng Peng, Alex Starov, Joey Allen and Stefan Springer
-
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094)
Source: Unit 42 Published on 2024-03-31 By Unit 42
-
Exposing a New BOLA Vulnerability in Grafana
Source: Unit 42 Published on 2024-03-27 By Ravid Mazon and Jay Chen
-
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters
Source: Blog from Microsoft Security Published on 2024-04-18 By Microsoft Threat Intelligence
-
New Microsoft guidance for the DoD Zero Trust Strategy
Source: Blog from Microsoft Security Published on 2024-04-17 By Steve Faehl
-
Microsoft recognized as a Leader in the Forrester Wave™: Workforce Identity Platform, Q1 2024
Source: Blog from Microsoft Security Published on 2024-04-16 By Joy Chik
-
How Microsoft discovers and mitigates evolving attacks against AI guardrails
Source: Blog from Microsoft Security Published on 2024-04-12 By Mark Russinovich
-
Explore Microsoft’s AI innovations at RSA Conference 2024
Source: Blog from Microsoft Security Published on 2024-04-05 By Dasha Zenkovich
-
The Week in Ransomware - April 19th 2024 - Attacks Ramp Up
Source: BleepingComputer Published on 2024-04-20 By Lawrence Abrams
-
CrushFTP warns users to patch exploited zero-day “immediately”
Source: BleepingComputer Published on 2024-04-20 By Sergiu Gatlan
-
HelloKitty ransomware rebrands, releases CD Projekt and Cisco data
Source: BleepingComputer Published on 2024-04-20 By Bill Toulas
-
MITRE says state hackers breached its network via Ivanti zero-days
Source: BleepingComputer Published on 2024-04-20 By Sergiu Gatlan
-
United Nations agency investigates ransomware attack, data theft
Source: BleepingComputer Published on 2024-04-20 By Sergiu Gatlan
-
DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware
Source: Securelist Published on 2024-04-18 By GReAT
-
SoumniBot: the new Android banker’s unique techniques
Source: Securelist Published on 2024-04-17 By Dmitry Kalinin
-
Using the LockBit builder to generate targeted ransomware
Source: Securelist Published on 2024-04-15 By Eduardo Ovalle, Francesco Figurelli, Cristian Souza, Ashley Muñoz
-
XZ backdoor story – Initial analysis
Source: Securelist Published on 2024-04-12 By GReAT
-
DinodasRAT Linux implant targeting entities worldwide
Source: Securelist Published on 2024-03-28 By Anderson Leite, Lisandro Ubiedo
-
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack
Source: The Hacker News Published on 2024-04-20
-
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
Source: The Hacker News Published on 2024-04-20
-
BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool
Source: The Hacker News Published on 2024-04-19
-
How Attackers Can Own a Business Without Touching the Endpoint
Source: The Hacker News Published on 2024-04-19
-
Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers
Source: The Hacker News Published on 2024-04-19
-
From OneNote to RansomNote: An Ice Cold Intrusion
Source: The DFIR Report Published on 2024-04-01 By editor
-
Threat Brief: WordPress Exploit Leads to Godzilla Web Shell, Discovery & New CVE
Source: The DFIR Report Published on 2024-03-04 By editor
-
SEO Poisoning to Domain Control: The Gootloader Saga Continues
Source: The DFIR Report Published on 2024-02-26 By editor
-
Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours
Source: The DFIR Report Published on 2024-01-29 By editor
-
Lets Open(Dir) Some Presents: An Analysis of a Persistent Actor’s Activity
Source: The DFIR Report Published on 2023-12-18 By editor