NetSupport RAT employs phishing campaigns that incorporate Pokemon lures
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary NetSupport Manager is a remote control tool that can be used by ordinary or corporate users to remotely control systems, but it is being abused by threat actors as it allows …
Google Chrome Vulnerability Exposes Data of 2.5 Billion Users
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A vulnerability in Google Chrome could affect over 2.5 billion users. An attacker can exploit this vulnerability for the theft of sensitive files, such as crypto wallets and cloud provider credentials. …
Rhadamanthys: A New Evasive Information Stealer
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Rhadamanthys Evasive Infostealer is spread through phishing emails and prevalent Google ads that lead to fake download pages for popular workforce software. …
A Critical Vulnerability That Affects ManageEngine Products
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A critical vulnerability in several ManageEngine products allows for remote code execution (RCE) without authentication. This vulnerability is tracked as CVE-2022-47966 and is caused by an outdated third-party dependency, Apache Santuario. …
Cisco Small Business Routers Vulnerable to Authentication Bypass and Remote Code Execution
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Multiple vulnerabilities were found in the web-based management interface of Cisco Small Business Routers. The authentication bypass vulnerability (CVE-2023-20025) allows an unauthenticated attacker to bypass authentication on an affected device by …
The Vulnerability Discovered in the Cacti Open-Source RRD tool
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A high-severity vulnerability named CVE-2022-46169 has been found in Cacti, a free, open-source, web-based network monitoring and graphing tool designed as a front-end application for the open-source data logging tool RRDtool. …
Pro-Russian Hacktivist Group NoName057(16) Launches Cyber Attacks on Ukraine and NATO Organizations
Threat Level Actors Report For a detailed threat advisory, download the pdf file here Summary NoName057(16) is a pro-Russian hacktivist group that has been conducting a campaign of DDoS attacks on Ukraine and NATO organizations since the early days of the war in Ukraine. The group …
Newly Discovered PoweRAT Malware Distributed through PyPI
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A newly discovered malware called “PoweRAT” combines a stealer and a RAT (remote access tool). The malware is being distributed through the Python Package Index (PyPI), a repository of software for …
GootKit Loader is targeting organizations in the Australian healthcare industry
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Gootkit, also known as Gootloader, is a type of malware known for being used in advanced persistent threat (APT) campaigns. Recently, it has been discovered to be targeting organizations in the …