-
Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
Source: Unit 42 Published on 2024-04-13 By Unit 42
-
Muddled Libra’s Evolution to the Cloud
Source: Unit 42 Published on 2024-04-10 By Margaret Zimmermann
-
It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise
Source: Unit 42 Published on 2024-04-09 By Beliz Kaleli, Fang Liu, Peng Peng, Alex Starov, Joey Allen and Stefan Springer
-
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094)
Source: Unit 42 Published on 2024-03-31 By Unit 42
-
Exposing a New BOLA Vulnerability in Grafana
Source: Unit 42 Published on 2024-03-27 By Ravid Mazon and Jay Chen
-
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters
Source: Blog from Microsoft Security Published on 2024-04-18 By Microsoft Threat Intelligence
-
New Microsoft guidance for the DoD Zero Trust Strategy
Source: Blog from Microsoft Security Published on 2024-04-17 By Steve Faehl
-
Microsoft recognized as a Leader in the Forrester Wave™: Workforce Identity Platform, Q1 2024
Source: Blog from Microsoft Security Published on 2024-04-16 By Joy Chik
-
How Microsoft discovers and mitigates evolving attacks against AI guardrails
Source: Blog from Microsoft Security Published on 2024-04-12 By Mark Russinovich
-
Explore Microsoft’s AI innovations at RSA Conference 2024
Source: Blog from Microsoft Security Published on 2024-04-05 By Dasha Zenkovich
-
Microsoft pulls fix for Outlook bug behind ICS security alerts
Source: BleepingComputer Published on 2024-04-24 By Sergiu Gatlan
-
CoralRaider attacks use CDN cache to push info-stealer malware
Source: BleepingComputer Published on 2024-04-24 By Bill Toulas
-
Microsoft releases Exchange hotfixes for security update issues
Source: BleepingComputer Published on 2024-04-24 By Sergiu Gatlan
-
US govt sanctions Iranians linked to government cyberattacks
Source: BleepingComputer Published on 2024-04-24 By Sergiu Gatlan
-
DPRK hacking groups breach South Korean defense contractors
Source: BleepingComputer Published on 2024-04-24 By Bill Toulas
-
ToddyCat is making holes in your infrastructure
Source: Securelist Published on 2024-04-22 By Andrey Gunkin, Alexander Fedotov, Natalya Shornikova
-
DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware
Source: Securelist Published on 2024-04-18 By GReAT
-
SoumniBot: the new Android banker’s unique techniques
Source: Securelist Published on 2024-04-17 By Dmitry Kalinin
-
Using the LockBit builder to generate targeted ransomware
Source: Securelist Published on 2024-04-15 By Eduardo Ovalle, Francesco Figurelli, Cristian Souza, Ashley Muñoz
-
XZ backdoor story – Initial analysis
Source: Securelist Published on 2024-04-12 By GReAT
-
Apache Cordova App Harness Targeted in Dependency Confusion Attack
Source: The Hacker News Published on 2024-04-23
-
Webinar: Learn Proactive Supply Chain Threat Hunting Techniques
Source: The Hacker News Published on 2024-04-23
-
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery
Source: The Hacker News Published on 2024-04-23
-
Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases
Source: The Hacker News Published on 2024-04-23
-
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies
Source: The Hacker News Published on 2024-04-23
-
From OneNote to RansomNote: An Ice Cold Intrusion
Source: The DFIR Report Published on 2024-04-01 By editor
-
Threat Brief: WordPress Exploit Leads to Godzilla Web Shell, Discovery & New CVE
Source: The DFIR Report Published on 2024-03-04 By editor
-
SEO Poisoning to Domain Control: The Gootloader Saga Continues
Source: The DFIR Report Published on 2024-02-26 By editor
-
Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours
Source: The DFIR Report Published on 2024-01-29 By editor
-
Lets Open(Dir) Some Presents: An Analysis of a Persistent Actor’s Activity
Source: The DFIR Report Published on 2023-12-18 By editor