Major Hospitals affected by PwnedPiper Vulnerabilities
THREAT LEVEL: White. For a detailed advisory, download the pdf file here. Multiple Zero-day vulnerabilities (PwnedPiper) have been found affecting the HMI-3 Control Panel of Swisslog Healthcare’s TransLogic Pneumatic Tube Systems (PTS). PTS is a specialized system that uses compressor to transport medical supplies (lab samples, …
Weren’t you warned about reactivating the Print Spooler?
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. After almost 10 days of releasing an advisory by the Hive Pro Threat Research team, a new vulnerability has been found in Windows Print Spooler. This is a privilege escalation flaw that allows attackers …
Threat Actors are actively exploiting a SolarWinds Zero-Day Vulnerability
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. A zero-day vulnerability (CVE-2021-35211) that impacts the Serv-U Managed File Transfer and Serv-U Secure FTP, is been exploited by multiple threat actors. The PoC of this exploited vulnerability was given to SolarWinds by Microsoft. …
Critical vulnerabilities found in WordPress plugin affecting 400,000 sites.
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. Around 400,000 sites were affected by several critical vulnerabilities(CVE-2021-34621, CVE-2021-34622, CVE-2021-34623, CVE-2021-34624) discovered in ProfilePress, a WordPress plugin. The vulnerabilities are easily exploitable which makes it possible for an adversary to gain admin access …
Emergency patches have been released by Microsoft for PrintNightmare
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. Attackers have been targeting Windows Print Spooler services for almost 2 months now. It started with the vulnerability(CVE-2021-1675) being exploited in the wild. Soon a patch was released for the same. It was after …
REvil Ransomware gang behind the Kaseya VSA Supply-Chain attack
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. The REvil ransomware group was successful in carrying out a supply chain attack by exploiting the zero-day vulnerability (CVE-2021-30116) in the Kaseya VSA server and delivering a malicious script to all the computer devices …
VMware patches 2 Critical Vulnerabilities in Carbon Black App Control, VMWare Tools and VMWare Remote Console
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. VMware has patched an authentication bypass vulnerability(CVE-2021-21998) in the carbon black app control management server. Apart from this vulnerability VMware also patched a privilege escalation vulnerability(CVE-2021-21999) which was affected the VMware Tools for Windows, VMware Remote …
Cybersecurity Startup Hive Pro Secures $3 Million in Seed Funding
Investor group reflects strong support for innovative approach to Vulnerability Prioritization and Remediation Orchestration Milpitas, California, June 22, 2021- Silicon Valley based Hive Pro, creator of Predictive Vulnerability Analytics (PVA), announced today it has closed $3 million in seed financing led by Simpra Holdings. …
Airline industry affected by supply-chain attack allegedly done by Chinese espionage group APT-41
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. A supply chain attack was carried out on the airline industry, which started with SITA being compromised, allegedly done by Chinese espionage group APT-41. SITA is responsible for providing software solutions to 90% of …
PuzzleMaker using Chrome zero-day exploit to get into your Windows PC
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. A chain of zero-day vulnerabilities is being used by a new threat actor, PuzzleMaker. PuzzleMaker uses a chrome V8 type confusion vulnerability (CVE-2021-21224), which allows the attacker to execute an arbitrary code via a …