Microsoft releases updates for exploited zero-day and other vulnerabilities resulting in RCE
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary Microsoft patch Tuesday addressed security updates for a Zero-day vulnerability that affects the entire operating system. The update includes bug fixes for Azure Site Recovery, Microsoft Edge (Chromium-based), Microsoft Office, Windows Print …
Several bugs in Node.js lead to Remote Code Execution
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary Node.js has released several fixes for vulnerabilities in the JavaScript runtime environment, which could lead to arbitrary code execution, HTTP request smuggling, DNS rebinding vulnerability and other bugs …
BlackCat Ransomware group implements quadruple extortion
Threat Level Actor Report For a detailed advisory, download the pdf file here Summary The BlackCat ransomware group performs quadruple extortion techniques to pressurize victims in order to pay ransom. Recently, the ransomware group has raised its stakes up to $2.5M in demands. …
OpenSSL Vulnerability leads to Remote Code Execution
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary The Heap Memory Corruption vulnerability in OpenSSL let attackers perform Remote Code Execution. …
Zero-day vulnerability in Chrome browser being exploited-in-the-wild
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary The heap buffer overflow vulnerability in chrome browser let attackers to run arbitrary code or cause denial-of-service condition …
MedusaLocker Ransomware is back targeting organizations in US
Threat Level Attack Report For a detailed advisory, download the pdf file here Summary Since 2019, a ransomware-as-a-service (RaaS) known as MedusaLocker has been seen to target organizations, mostly in the healthcare sector by exploiting Remote Desktop Protocol (RDP) vulnerabilities. …
Vulnerability in the UnRaR leads to code execution in Zimbra
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary Unrar has a path traversal vulnerability that allows an unauthenticated attacker to execute arbitrary commands as a Zimbra user and escalate privileges. …
FabricScape lets attackers takeover Linux containers
Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary FabricScape, a container escape vulnerability in Microsoft Service Fabric could allow an attacker to escalate privileges and compromise the cluster. …
Bronze Starlight uses loader malware to deploy ransomware
Threat Level Actor Report For a detailed advisory, download the pdf file here Summary Bronze Starlight, a Chinese APT, is deploying ransomware LockFile, AtomSilo, Rook, Night Sky, and Pandora via the HUI loader malware to carry out double extortion. …
50+ firms attacked by Black Basta ransomware group
Threat Level Actor Report For a detailed advisory, download the pdf file here Summary Black Basta ransomware is a new ransomware family that has been discovered in April 2022. The group targets English-speaking countries, specifically, and has targeted approximately 50 victims in Australia, Canada, New Zealand, …