Threat Analyst – Page 2

Vulnerabilities_Exploits

Critical CUPS Vulnerabilities: Remote Code Execution Risk for UNIX-Based Systems

On September 26, 2024, a set of severe vulnerabilities affecting the Common UNIX Printing System (CUPS) was publicly disclosed, prompting immediate concern across the cybersecurity community. These vulnerabilities, particularly CVE-2024-47176,…

Events_Conferences

Upcoming Conference – Hack.lu 2024

27 September 2024 Threat Analyst

Hack.lu 2024 will take place from 22nd to 25th October in Luxembourg, showcasing the latest in cybersecurity innovation and research. Known for its wide range of topics, from malware analysis…

Threat_Actor_Profiles

Peaklight Malware: A Stealthy Memory-Only Threat Leveraging Known Vulnerabilities

25 September 2024 Threat Analyst

In September 2024, Mandiant uncovered Peaklight, a sophisticated memory-only malware, which has been making waves in the cybersecurity community due to its stealth and effectiveness. This malware-as-a-service (MaaS) campaign primarily…

Industry_News Threat_Actor_Profiles

RansomHub Ransomware Surge: A Growing Threat to Critical Infrastructure

24 September 2024 Threat Analyst

In September 2024, U.S. authorities raised alarms over a significant threat that has been quietly gaining momentum this year—RansomHub, a ransomware-as-a-service (RaaS) platform that has been targeting vital sectors across…

Industry_News

CrowdStrike Outage of July 2024: A Detailed Breakdown and Analysis

31 July 2024 Threat Analyst

In **July 2024**, cybersecurity giant **CrowdStrike** faced a widespread **IT outage** that affected **over 8.5 million Windows systems** worldwide. This massive disruption was caused by a faulty update in CrowdStrike’s…

Incident_Reports

FlightAware Data Breach: Years of User Data Exposed Due to Configuration Error

31 July 2024 Threat Analyst

In August 2024, **FlightAware**, a widely-used flight-tracking platform, disclosed a significant data breach. The breach, caused by a **configuration error**, exposed the **personal information** of users for several years. This…

Incident_Reports

Nokia Employee Data Breach: 7,622 Records Exposed in July 2024

31 July 2024 Threat Analyst

In July 2024, Nokia Corporation confirmed a data breach that exposed the personal details of 7,622 employees. This breach was claimed by a threat actor known as 888, who allegedly…

Prevention_Mitigation

RockYou2024: Historic Password Leak Exposes 10 Billion Passwords

31 July 2024 Threat Analyst

In July 2024, the cybersecurity world was shaken by the RockYou2024 breach, the largest recorded password leak in history. Nearly 10 billion passwords were exposed on a hacking forum in…

Incident_Reports

Twilio Authy API Breach: A Vulnerability That Exposed Millions to Potential Phishing Attacks

31 July 2024 Threat Analyst

In July 2024, Twilio, a major communications provider, disclosed a significant breach involving its Authy multi-factor authentication (MFA) service. This incident, attributed to the ShinyHunters hacking group, exploited an unsecured…

Incident_Reports

HealthEquity Data Breach Exposes Protected Health Information of 4.3 Million Individuals

15 July 2024 Threat Analyst

In early July 2024, HealthEquity, a prominent U.S. health savings account (HSA) and healthcare services provider, reported a significant data breach. The breach compromised the protected health information (PHI) of…

Critical CUPS Vulnerabilities: Remote Code Execution Risk for UNIX-Based Systems

Upcoming Conference – Hack.lu 2024

Peaklight Malware: A Stealthy Memory-Only Threat Leveraging Known Vulnerabilities

RansomHub Ransomware Surge: A Growing Threat to Critical Infrastructure

CrowdStrike Outage of July 2024: A Detailed Breakdown and Analysis

FlightAware Data Breach: Years of User Data Exposed Due to Configuration Error

Nokia Employee Data Breach: 7,622 Records Exposed in July 2024

RockYou2024: Historic Password Leak Exposes 10 Billion Passwords

Twilio Authy API Breach: A Vulnerability That Exposed Millions to Potential Phishing Attacks

HealthEquity Data Breach Exposes Protected Health Information of 4.3 Million Individuals

You missed

Cisco Investigates Data Breach: Sensitive Information Reportedly For Sale on Hacking Forum

Nation-State Adversaries Exploit Ivanti CSA Zero-Days: A Deep Dive into Targeted Attacks and Vulnerability History

Ivanti CSA Hit with Three New Zero-Day Vulnerabilities in Active Exploitation

File Hosting Services Misused for Identity Phishing: Microsoft’s Analysis