Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Red | Attack Report
RansomHub: The RaaS Powerhouse Exploiting 200+ Victims
RansomHub, a ransomware-as-a-service (RaaS) platform, has rapidly gained prominence in the cybercriminal September 6, 2024 Red | Actor Report
Tropic Trooper Targets Middle East with New Web Shell
Tropic Trooper, a Chinese-speaking APT group active since 2011, has expanded its September 6, 2024 Red | Vulnerability Report
Apache Addresses Persistent RCE Flaw in OFBiz
Apache has addressed a critical security vulnerability in its open-source OFBiz software, September 6, 2024 Red | Vulnerability Report
Unpatched Cisco ISE Devices at Risk of Root Compromise
CVE-2024-20469 is a command injection vulnerability in Cisco Identity Services Engine (ISE), September 5, 2024 Amber | Attack Report
Emansrepo: Python Infostealer with Tailored Email Exfiltration
Emansrepo is a Python-based infostealer, first observed in November 2023, that spreads September 5, 2024 Red | Attack Report
Meow Ransomware Resurfaces with an Extortion-Centric Model
In late 2022, the Meow ransomware variant emerged, originating from the leak September 5, 2024 Amber | Vulnerability Report
Zyxel’s Critical Router Vulnerability Exploited via Malicious Cookies
Zyxel has released security updates to address a critical vulnerability tracked as September 4, 2024 Red | Attack Report
North Korean Hackers Exploit Chrome Zero-Day in Cryptocurrency Heists
North Korean hackers have exploited a recently patched Google Chrome zero-day vulnerability September 3, 2024