Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Amber | Vulnerability Report
Critical Chromium Flaws Expose Systems to Code Execution Attacks
Google has released a critical security update for Chromium, addressing multiple high-severity October 4, 2024 Amber | Attack Report
SloppyLemming’s Relentless Pursuit of Asian Targets
SloppyLemming, an advanced threat actor likely originating from India, has been conducting October 4, 2024 Red | Attack Report
Raptor Train Paradox: A Multi-Tiered Botnet Phenomenon
The Raptor Train botnet framework, active since mid-2020, has evolved into a October 4, 2024 Amber | Attack Report
Recruitment Under Siege: The Rise of the More_eggs Malware
A recent spear-phishing campaign has been observed targeting recruiters with a JavaScript October 4, 2024 Amber | Attack Report
Threat Actors Exploit Docker and Kubernetes for Crypto Mining
A new cryptojacking campaign that exploits Docker and Kubernetes environments to mine October 4, 2024 Amber | Attack Report
Sparkling Pisces’s Latest Tools Unveiled: KLogEXE and FPSpy Enhance Espionage Efforts
The North Korean-linked Sparkling Pisces (aka Kimsuky) has been deploying two new September 27, 2024 Amber | Vulnerability Report
CVE-2024-45817: Deadlock Flaw in XenServer and Citrix Hypervisor
Citrix has addressed vulnerabilities in XenServer 8 and Citrix Hypervisor 8.2 CU1 September 27, 2024 Amber | Vulnerability Report
Critical Flaw in Microchip ASF Exposes Devices to Remote Code Execution
A critical vulnerability, CVE-2024-7490, has been discovered in the Microchip Advanced Software September 27, 2024