Vulnerability Management – Page 3

Techniques_Tactics_Procedures Vulnerabilities_Exploits

CVE-2024-3400 – Exploitation of Palo Alto Networks’ PAN-OS

Overview A critical vulnerability, designated as CVE-2024-3400, has been identified within the GlobalProtect component of Palo Alto Networks’ PAN-OS. This zero-day flaw is classified under CWE-77 (Command Injection) due to…

Vulnerabilities_Exploits

Akamai – New RCE Botnet Spreads Mirai via two Zero-Day Vulnerabilities

23 November 2023 Threat Analyst

In a significant development reported by Akamai’s Security Intelligence Response Team (SIRT) in late October 2023, heightened malicious activity was detected, indicating the exploitation of zero-day vulnerabilities to disseminate a…

Techniques_Tactics_Procedures Vulnerabilities_Exploits

Russian APT29 Exploits WinRAR and Ngrok in Embassy Cyberattacks

20 November 2023 Threat Analyst

APT29, a Russian hacker group, has strategically employed the CVE-2023-38831 vulnerability in WinRAR in a series of cyberattacks targeting embassies. Known for its various aliases, including Cozy Bear and SolarStorm,…

Incident_Reports Vulnerabilities_Exploits

Boeing’s Cybersecurity Breach by LOCKBIT Ransomware

20 November 2023 Threat Analyst

Boeing, a renowned aerospace company, recently fell victim to a cybersecurity incident perpetrated by the LOCKBIT ransomware group. The attack, which came to light in late October 2023, is a…

Articles

Beyond the Headlines: Elevating Threat Intelligence Sharing to Fight Cyber Threats

14 August 2023 Threat Analyst

The need for a collective defense strategy is more critical than ever. The intricate nature of modern attacks calls for a unified approach, one that leverages shared cyber threat intelligence.…

Vulnerabilities_Exploits

Critical Vulnerability CVE-2023-39143 in PaperCut Poses RCE Threat to Unpatched Servers

5 August 2023 Threat Analyst

The recently discovered critical security vulnerability in PaperCut’s NG/MF print management software, tracked as CVE-2023-39143 (NVD), has brought attention to the potential risks posed by unpatched Windows servers. This flaw…

Industry_News

Mid-2023 Cyber Threat Briefing for UK SME Sector

4 August 2023 Threat Analyst

As we move through 2023, the cyber threat landscape continues to evolve, yet some things remain the same. The UK SME sector, like many others around the globe, continues to…

Threat_Actor_Profiles Trends_Analysis

The Rising Threat of Abyss Locker Ransomware to VMware’s ESXi Servers

31 July 2023 Threat Analyst

A new emerging threat, Abyss Locker ransomware has been making headlines for its targeted attacks on VMware’s ESXi virtualised environments. IOCs however seem sadly lacking. The Abyss Locker Ransomware Launched…

Industry_News Trends_Analysis

The Hidden Dangers of Android’s Patch Delays: N-Days Masquerading as Zero-Days

31 July 2023 Threat Analyst

Google’s annual 0-day vulnerability report has brought to light a persistent issue within the Android platform that increases the risk and usage of disclosed vulnerabilities for extended periods. The report…

Vulnerabilities_Exploits

CVE-2023-21716: A Critical Heap Corruption Vulnerability in Microsoft Word

31 July 2023 Threat Analyst

CVE-2023-21716 (NVD), a critical flaw in Microsoft Office Word’s RTF parser, has been a focal point in the cybersecurity community since its private disclosure to Microsoft in November 2022. Microsoft…

CVE-2024-3400 – Exploitation of Palo Alto Networks’ PAN-OS

Akamai – New RCE Botnet Spreads Mirai via two Zero-Day Vulnerabilities

Russian APT29 Exploits WinRAR and Ngrok in Embassy Cyberattacks

Boeing’s Cybersecurity Breach by LOCKBIT Ransomware

Beyond the Headlines: Elevating Threat Intelligence Sharing to Fight Cyber Threats

Critical Vulnerability CVE-2023-39143 in PaperCut Poses RCE Threat to Unpatched Servers

Mid-2023 Cyber Threat Briefing for UK SME Sector

The Rising Threat of Abyss Locker Ransomware to VMware’s ESXi Servers

The Hidden Dangers of Android’s Patch Delays: N-Days Masquerading as Zero-Days

CVE-2023-21716: A Critical Heap Corruption Vulnerability in Microsoft Word

You missed

Cisco Investigates Data Breach: Sensitive Information Reportedly For Sale on Hacking Forum

Nation-State Adversaries Exploit Ivanti CSA Zero-Days: A Deep Dive into Targeted Attacks and Vulnerability History

Ivanti CSA Hit with Three New Zero-Day Vulnerabilities in Active Exploitation

File Hosting Services Misused for Identity Phishing: Microsoft’s Analysis