Vulnerabilities_Exploits – Page 3

Tue. Dec 3rd, 2024

Techniques_Tactics_Procedures Vulnerabilities_Exploits

Russian APT29 Exploits WinRAR and Ngrok in Embassy Cyberattacks

APT29, a Russian hacker group, has strategically employed the CVE-2023-38831 vulnerability in WinRAR in a series of cyberattacks targeting embassies. Known for its various aliases, including Cozy Bear and SolarStorm,…

Incident_Reports Vulnerabilities_Exploits

Boeing’s Cybersecurity Breach by LOCKBIT Ransomware

20 November 2023 Threat Analyst

Boeing, a renowned aerospace company, recently fell victim to a cybersecurity incident perpetrated by the LOCKBIT ransomware group. The attack, which came to light in late October 2023, is a…

Vulnerabilities_Exploits

Threat Intelligence Report on Recent Citrix Vulnerabilities

17 November 2023 Threat Analyst

In recent months, Citrix systems have faced significant cybersecurity challenges. The discovery of critical vulnerabilities, notably CVE-2023-4966 (Citrix Bleed) and CVE-2023-4967, has put numerous organizations at risk. These vulnerabilities have…

Incident_Reports Vulnerabilities_Exploits

ICBC hit by ransomware attack

13 November 2023 Threat Analyst

The Industrial and Commercial Bank of China (ICBC), the world’s largest commercial bank, experienced a ransomware attack on its U.S. arm, ICBC Financial Services (FS). This incident, occurring on November…

Industry_News Vulnerabilities_Exploits

Unauthorised Access to Cross-Tenant Applications in Microsoft Power Platform

5 August 2023 Threat Analyst

Introduction Security researchers at Tenable discovered a significant vulnerability in Microsoft’s Power Platform. This vulnerability allowed unauthorized access to cross-tenant applications and sensitive data, including but not limited to authentication…

Vulnerabilities_Exploits

Critical Vulnerability CVE-2023-39143 in PaperCut Poses RCE Threat to Unpatched Servers

5 August 2023 Threat Analyst

The recently discovered critical security vulnerability in PaperCut’s NG/MF print management software, tracked as CVE-2023-39143 (NVD), has brought attention to the potential risks posed by unpatched Windows servers. This flaw…

Vulnerabilities_Exploits

CVE-2023-21716: A Critical Heap Corruption Vulnerability in Microsoft Word

31 July 2023 Threat Analyst

CVE-2023-21716 (NVD), a critical flaw in Microsoft Office Word’s RTF parser, has been a focal point in the cybersecurity community since its private disclosure to Microsoft in November 2022. Microsoft…

Vulnerabilities_Exploits

Ivanti Patches another Zero-Day Exploited in Norwegian Government Attacks – Active Exploitation Observed

28 July 2023 Threat Analyst

Ivanti has patched another critical vulnerability in its Endpoint Manager Mobile software (formerly MobileIron Core), which was exploited as a zero-day to breach the IT systems of several ministries in…

Threat_Actor_Profiles Vulnerabilities_Exploits

CVE-2023-37580 Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability

27 July 2023 Threat Analyst

Introduction Zimbra Collaboration Suite (ZCS) is an open-source email collaboration suite widely used by a variety of organizations, including government agencies, universities, and companies. It has been the target of…

Vulnerabilities_Exploits

High Severity RCE Vulnerability in Atlassian’s Confluence Data Center & Server

27 July 2023 Threat Analyst

Atlassian, a leading provider of team collaboration and productivity software, has recently addressed a high severity Remote Code Execution (RCE) vulnerability in its Confluence Data Center & Server. The vulnerability,…

You missed

Incident_Reports

Russian APT29 Exploits WinRAR and Ngrok in Embassy Cyberattacks

Boeing’s Cybersecurity Breach by LOCKBIT Ransomware

Threat Intelligence Report on Recent Citrix Vulnerabilities

ICBC hit by ransomware attack

Unauthorised Access to Cross-Tenant Applications in Microsoft Power Platform

Critical Vulnerability CVE-2023-39143 in PaperCut Poses RCE Threat to Unpatched Servers

CVE-2023-21716: A Critical Heap Corruption Vulnerability in Microsoft Word

Ivanti Patches another Zero-Day Exploited in Norwegian Government Attacks – Active Exploitation Observed

CVE-2023-37580 Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability

High Severity RCE Vulnerability in Atlassian’s Confluence Data Center & Server

You missed

Cisco Investigates Data Breach: Sensitive Information Reportedly For Sale on Hacking Forum

Nation-State Adversaries Exploit Ivanti CSA Zero-Days: A Deep Dive into Targeted Attacks and Vulnerability History

Ivanti CSA Hit with Three New Zero-Day Vulnerabilities in Active Exploitation

File Hosting Services Misused for Identity Phishing: Microsoft’s Analysis