Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Amber | Attack Report
EastWind Campaign: Chinese APTs’ Master Plan Against Russian Entities
The EastWind campaign, uncovered in late July 2024, represents a highly sophisticated August 14, 2024 Red | Vulnerability Report
Hackers Exploit Ivanti vTM Flaw to Create Rogue Admin Accounts
Ivanti has identified a critical authentication bypass vulnerability, designated as CVE-2024-7593, affecting August 14, 2024 Red | Attack Report
Unmasking Earth Baku: New Tactics and Targets in Cyber Espionage
Earth Baku, an advanced persistent threat (APT) actor, has expanded its operations August 13, 2024 Red | Vulnerability Report
Chained Exploits: OpenVPN Vulnerabilities Lead to RCE and LPE
Multiple vulnerabilities have been identified in OpenVPN, a widely used open-source VPN August 13, 2024 Red | Attack Report
Widespread Malware Campaign Targets Over 300,000 Users via Fake Downloads
A widespread malware campaign targets web browser extensions, affecting over 300,000 users August 12, 2024 Amber | Attack Report
Cloud Services Transformed into Cyber Weapons: New Wave of Espionage
Cybercriminals are increasingly leveraging legitimate cloud services like Microsoft OneDrive and Google August 9, 2024 Amber | Attack Report
18 Years of Unresolved Threat: 0.0.0.0 Day Vulnerability in Major Browsers
The “0.0.0.0 Day” vulnerability is a critical security flaw that affects major August 9, 2024 Amber | Vulnerability Report
Cisco SSM On-Prem Flaw Lets Hackers Hijack User Passwords
Cisco has addressed a critical vulnerability, CVE-2024-20419, which could allow attackers to August 9, 2024