Get Help Now
CONTACT US

Get expert threat analysis weekly. Sign up to receive our Threat Briefing:

    Weekly Threat Intelligence Briefing

    January 30, 2023

    • VMware Realize Vulnerability Exploit Releases
    • Chinese Malware Spreads Through USB Devices
    • Gootkit Malware Evolves
    • And More!
    GOOTLOADER
    vRealize
    PlugX
    Read More

     

    Weekly Threat Intelligence Briefing

    January 25, 2023

    • Roaming Mantis Malware Targets Public Routers
    • T-Mobile Leaks Personal Information of 37 Million Subscribers.
    • Critical Vulnerabilities in Netcomm Routers
    • And More!
    WIFI Routers
    Fortinet
    T-Mobile
    Read More

     

    Weekly Threat Intelligence Briefing

    January 17, 2023

    • Cacti Software Vulnerability Being Exploited
    • LockBit Ransomware Disrupts UK Royal Mail Service
    • Siemens Logic Controller Flaw Could Allow Attacker Control of Industrial Control Systems
    • And More!
    IceID
    LockBit
    Siemens
    Read More

     

    Weekly Threat Intelligence Briefing

    January 11, 2023

    • Decryptor for MegaCortex Ransomware Released
    • VSCode Marketplace Hosting Malicious Extensions
    • Malicious PyPI Packages
    • And More!
    MegaCortex
    BitDefender
    Dridex
    Read More

     

    Weekly Threat Intelligence Briefing

    January 02, 2023

    • LastPass Reports Loss of Customer Vault Data in Incident Investigation
    • Allegedly Stolen Information on More Than 400 Million Twitter Users Up for Sale
    • WordPress CMS Vulnerabilities Being Exploited
    • And More!
    LastPass
    WordPress
    Linux
    Read More

     

    Weekly Threat Intelligence Briefing

    December 20, 2022

    • Citrix and Fortinet Zero-Days Actively Targeted
    • Threat Actors Sign Malicious Drivers With Microsoft Certificates
    • Microsoft SmartScreen Vulnerability Targeted
    • And More!
    Microsoft
    Fortinet
    Veeam
    Read More

     

    Weekly Threat Intelligence Briefing

    December 12, 2022

    • Royal Ransomware Targeting U.S. Healthcare
    • TruBot Malware Leveraging Netwrix Vulnerability
    • Chaos RAT Increases Cryptocurrency Mining Attacks
    • And More!
    Royal Ransomware
    Healthcare
    Raspberry Robin
    Read More

     

    Weekly Threat Intelligence Briefing

    December 05, 2022

    • Oracle Fusion Vulnerability Exploited
    • Crowdstrike Falcon Agent Bypass Proof-Of-Concept Released
    • Critical Vulnerability Introduces FreeBSD Take Over Avenue
    • And More!
    Oracle Fusion
    Lansweeper
    Crowdstrike
    Read More

     

    Weekly Threat Intelligence Briefing

    November 29, 2022

    • Malicious Browser Extension Steals Passwords
    • Microsoft Reports Widespread Usage of Outdated “Boa” Webserver
    • Joint Cybersecurity Advisory (CSA) Published regarding HiveRansomware Group
    • And More!
    Google Cloud
    Cobalt Strike
    Exchange
    Read More

     

    Weekly Threat Intelligence Briefing

    November 23, 2022

    • Cobalt Strike Variations Number Increasing
    • Mastodon User Data Scraped
    • Attackers Use Google Ads to Distribute Malware
    • And More!
    Google Cloud
    Cobalt Strike
    Exchange
    Read More

     

    Weekly Threat Intelligence Briefing

    November 17, 2022

    • Increase in Phishing Rates
    • Extortion Scam Targeting Website Owners
    • KmsdBot Malware Hijacking Systems
    • And More!
    Phishing
    Malware
    IceXLoader
    Read More

     

    Weekly Threat Intelligence Briefing

    November 7, 2022

    • Microsoft Fixes Critical Azure Cosmos DB Vulnerability
    • Kiss-a-Dog Campaign Targets Cryptojacking
    • Multiple Vulnerabilities in Juniper Devices
    • And More!
    Cryptojacking
    Juniper
    Vulnerability
    Read More

     

    Weekly Threat Intelligence Briefing

    November 2, 2022

    • Spread of “Raspberry Robin” Worm Gains Momentum
    • Google Chrome Zero-Day Vulnerability
    • Active Exploitation of Cisco AnyConnect Vulnerabilities
    raspberry robin
    ransomware
    chrome
    Read More

     

    Weekly Threat Intelligence Briefing

    October 25, 2022

    • Malicious JavaScript Executed Using Windows “Smart Screen” Bypass Used in Ransomware Attacks
    • New Attack Surface on MS Exchange Details Released
    • CISA Warns of Daixin Team Hackers Targeting Health Organizations
    exchange
    ransomeware
    apache
    Read More

     

    Weekly Threat Intelligence Briefing

    October 18, 2022

    • Netflix Phishing Scams
    • Venus Ransomware Attacks RDP
    • Zimbra Releases Patch for Actively Exploited Vulnerability
    phishing
    ransomeware
    zimbra
    Read More

     

    Weekly Threat Intelligence Briefing

    October 11, 2022

    • Android and IOS Apps Stealing User Login Credentials
    • BazaCall Social Engineering Attacks
    • CISA Shares Actionable Intelligence in Advanced Persistent Threat (APT) Activity Report
    android
    apple ios
    bazacall
    Read More

     

    Weekly Threat Intelligence Briefing

    October 03, 2022

    • “Smishing” Activity on the Rise
    • Critical Magento Vulnerability Exploited
    • Active Exploitation of Critical Atlassian Bitbucket Server Vulnerability
    smishing
    magneto
    vulnerability
    Read More

     

    Threat Intelligence SPECIAL ALERT!

    September 29, 2022

    • Microsoft Exchange Zero-Day Vulnerability Exploitation
    microsoft
    zero-day
    Read More

     

    Weekly Threat Intelligence Briefing

    September 26, 2022

    • American Airlines Discovers Breach After Being Notified by Phishing Victims
    • Malicious OAuth Apps Used to Take Over Exchange Servers
    • Healthcare and Supply Chain Organizations Targeted by Spear Phishing
    microsoft
    multi-factor
    zero-day
    Read More

     

    Weekly Threat Intelligence Briefing

    September 19, 2022

    • Uber Experiencing a Wide-Reaching: Attackers Defeat Multi-Factor Authentication
    • Microsoft Patches 63 Vulnerabilities in September, Including Zero-day & Critical Flaws
    • Widespread Exploitation of WordPress Zero-Day Vulnerability
    microsoft
    multi-factor
    zero-day
    Read More

     

    Weekly Threat Intelligence Briefing

    September 12, 2022

    • Authentication Bypass Vulnerability in Cisco Small Business Routers
    • HP Firmware Vulnerabilities Remain Unpatched After Public Disclosure
    • Stealthy Shikitega Malware Targeting Linux Systems and IoT Devices
    cisco
    vulnerability
    malware
    Read More

     

    Weekly Threat Intelligence Briefing

    September 06, 2022

    • Almost 10,000 Stolen Credentials, Over Half with Multi-Factor Authentication (MFA) Codes
    • Zero-Day Apple Vulnerabilities Impact Healthcare
    • Crypto Miners Disguising as Free Software Apps
    apple ios
    oktapus
    qnap
    Read More

     

    Weekly Threat Intelligence Briefing

    August 29, 2022

    • Multi-Factor Authentication Bypass is on The Rise
    • LastPass Password Manager Announces Leak of Source Code
    • Palo Alto Firewalls Under Active Attack
    last pass
    pan-os
    multi-factor
    Read More

     

    Weekly Threat Intelligence Briefing

    August 22, 2022

    • Serious TikTok Security Risks
    • Lazarus Groups Targeting MacOS users via Fake Job Ads
    • Known Exploitation of SAP Vulnerability
    macos
    sap
    tiktok
    Read More

     

    Weekly Threat Intelligence Briefing

    August 15, 2022

    • LinkedIn Most Impersonated as Phishing-based Credential Attacks Increase
    • Zoom Security Patch Fixes Critical Flaw
    • Thousands of Exposed VNC Servers Found Without Passwords
    LinkedIn
    zoom
    phishing
    Read More

     

    Weekly Threat Intelligence Briefing

    August 8, 2022

    • Emotet Target Office Macros as Initial Infection Vector
    • Malware Hijacks Facebook Business Accounts
    • Exim Mail Server patches heap overflow vulnerability without labeling it a security update
    malware
    linux
    Facebook
    Read More

    Weekly Threat Intelligence Briefing

    August 3, 2022

    • SHARPEXT : A Mail-Stealing Browser Extension
    • VMware Critical Vulnerability
    • New Critical Google Patch for Android Users
    android
    browser extension
    VMware
    Read More

    Weekly Threat Intelligence Briefing

    July 26, 2022

    • CISA Urges Patching of Currently Exploited Vulnerability
    • Microsoft 365 Users Receiving “Unusual Sign-In Activity” Alerts
    • Sonic Wall SQL Injection Vulnerability
    phishing
    vulnerability
    rootlet
    Read More

    Threat Intelligence Briefing

    Special Alert

    Android and iPhone Malware Advisory

    android
    iphone
    malware
    Read More

    Weekly Threat Intelligence Briefing

    July 18, 2022

    • Primary Operational Technology (OT) Security Concerns: Human Error and Staffing Shortages
    • Hackers Targeting VoIP Servers
    • Researchers Highlight the Spoof-Ability of GitHub Metadata to Trick Users into Installing Malicious Code
    • Old Trends Return: H0lyGh0st Ransomware hit small and Midsized companies
    data breach
    ransomware
    voip
    Read More

    Weekly Threat Intelligence Briefing

    July 11, 2022

    • China Suffers Massive Billion Record Breach – Cause? Simple Human Error
    • Fortinet Addressing Vulnerabilities, Including Path Traversal and Privilege Escalation
    • Data From More Than 650 Healthcare Organizations Exposed by Third-Party Business Associate
    • Follina Exploitation Observed in the Wild
    data breach
    honeypot
    Read More

    Weekly Threat Intelligence Briefing

    July 5, 2022

    • Google Chrome Zero-Day
    • HTML Attachment Advisory
    • MedusaLocker Ransomware Attack Increase
    • ManageEngine ADAudit Exploit
    ransomware
    chrome
    html email
    Read More

    Weekly Threat Intelligence Briefing

    June 27, 2022

    • New LockBit Ransomware Phishing Campaign
    • CISA publishes advice on securing PowerShell in Windows environments
    • Codesys Patches Critical Vulnerabilities for ICS Controllers
    ransomware
    phishing
    PowerShell
    Read More

    Weekly Threat Intelligence Briefing

    June 20, 2022

    • Increase in Cobalt Strike Attacks via Phishing
    • Kaiser Permanente Email Compromise Exposes More Than 69,000 Records
    • Proofpoint Identifies Method for Ransoming Microsoft 365 Files
    • More Active Exploits Against Atlassian Confluence Vulnerability
    email
    phishing
    Microsoft
    Read More

    Weekly Threat Intelligence Briefing

    June 13, 2022

    • New Variant of Infamous Cuba Ransomware Observed
    • Sentinel Labs: “Aoqin Dragon” APT group has been spying on organizations for nearly a decade
    • New Linux malware rootkit observed in wild
    • Update: Ransomware Gangs Actively Targeting/Exploiting Atlassian Confluence Vulnerability
    ransomware
    aoqin dragon
    rootkit
    Read More

    Weekly Threat Intelligence Briefing

    June 7, 2022

    • Conti Ransomware Gang Rebranding in the Midst of Attacks on Costa Rica
    • Advanced Phishing Combines Reverse Tunnels and URL Shortening
    • Github Releases Patch for Account Takeover Vulnerability
    ransomware
    phishing
    github
    Read More

    Weekly Threat Intelligence Briefing

    May 31, 2022

    • Google Discloses Zero-Click Zoom Bug Allows Code Execution with No User Interaction
    • Frappo “Phishing-as-a-Service”
    • Linux-Specific Malware Taking a Significant Footprint Alongside Trojan Malware
    code execution
    phishing
    malware
    Read More

    Weekly Threat Intelligence Briefing

    May 23, 2022

    • Threat Actors Chaining Unpatched VMware Vulnerabilities for Full System Control
    • Ransomware Spotlight: Ransome EXX
    • 380,000 Kubernetes API Instances Exposed
    vmware
    ransomware
    api instances
    Read More

    Weekly Threat Intelligence Briefing

    May 16, 2022

    • SonicWall ‘strongly urges’ admins to patch SSLVPN SMA1000 bugs
    • REvil Reignited
    • ‘IceApple’ Exploit Framework Discovered by CrowdStrike Threat Hunting Team
    security patch
    ransomware
    exploit framework
    Read More

    Weekly Threat Intelligence Briefing

    May 9, 2022

    • Password-Protected Excel Spreadsheet Pushes Remcos RAT
    • Critical CVE’s Put Aruba Networks, Avaya Enterprise Switches at Risk
    • Google: Nation-State Phishing Campaigns Expanding to Target Eastern Europe Orgs
    infection chain
    network
    phishing
    Read More

    Weekly Threat Intelligence Briefing

    May 2, 2022

    • The 15 Most Exploited Vulnerabilities In 2021
    • LAPSUS$: Recent techniques, tactics and procedures
    • How Cybercriminals Abuse Cloud Tunneling Services
    vulnerabilities
    lapsu$$
    cloud tunneling
    Read More

    Weekly Threat Intelligence Briefing

    April 25, 2022

    • US Government Warns of Potential Increase in Critical Infrastructure Cyber Attacks by Russia
    • Active Exploitation of VMware Workspace ONE and Identity Manager RCE Vulnerability
    • Chrome Updates to Fix Actively Exploited Flaw
    russia
    vmware
    chrome
    Read More

    Weekly Threat Intelligence Briefing

    April 18, 2022

    • ZLoader2 a.k.a The Silent Night
    • Carbanak Group Extends Their Cybercrime to Ransomware
    • Cisco WLAN Controller Software Critical Vulnerability
    zloader
    carbanak
    cisco
    Read More

    Weekly Threat Intelligence Briefing

    April 11, 2022

    • CVE-2022-0778 Impact of the OpenSSL Infinite Loop Vulnerability CVE-2022-0778
    • Parrot TDS takes over web servers and threatens millions – Avast Threat Labs
    • Log4Shell exploitation: Which applications may be targeted next?
    infinite loop
    tds
    log4shell
    Read More

    Weekly Threat Intelligence Briefing

    April 4, 2022

    • RAT Campaign Looks to take Advantage of the Tax Season
    • SpringShell: No Need to Panic, But Please Follow Recommendations
    • Additional Details Regarding Okta Breach; Okta’s Slow Release of Information
    rat
    spring4shell
    okta
    Read More

    Weekly Threat Intelligence Briefing

    March 28, 2022

    • North Korean Hackers Target Software Vendors via Chrome Zero-Day Vulnerability
    • Okta Updates on Lapsus$ Group (aka DEV-0537) Security Incident It Incurred
    • Hive ransomware operation converts VMware encryptor to Rust
    north korea
    okta
    ransomware
    Read More

    Weekly Threat Intelligence Briefing

    March 21, 2022

    • “PrintNightmare” Vulnerability
    • Opportunistic cyber criminals take advantage of Ukraine invasion | Talos Threat Advisory.
    • The Lampion trojan, key Russian-based malware in the banking industry, has had its newest version (212) reverse engineered for the first time.
    printnightmare
    ukraine
    russian malware
    Read More

    Weekly Threat Intelligence Briefing

    March 14, 2022

    • Google has issued a new warning to all Chrome’s 3.2 billion users worldwide
    • Microsoft releases updates to address more than 71 security issues in multiple products.
    chrome
    Microsoft
    Read More

    Let’s Discuss Your Cybersecurity Needs

    Contact Us

     

    Privacy Settings
    We use cookies to enhance your experience while using our website. If you are using our Services via a browser you can restrict, block or remove cookies through your web browser settings. We also use content and scripts from third parties that may use tracking technologies. You can selectively provide your consent below to allow such third party embeds. For complete information about the cookies we use, data we collect and how we process them, please check our Privacy Policy
    Youtube
    Consent to display content from Youtube
    Vimeo
    Consent to display content from Vimeo
    Google Maps
    Consent to display content from Google
    Spotify
    Consent to display content from Spotify
    Sound Cloud
    Consent to display content from Sound
    Contact Us