Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Red | Vulnerability Report
Windows Update Zero-Day Flaws Allow Downgrade Attacks on Patched Systems
Two recently discovered zero-day vulnerabilities in Windows, CVE-2024-38202 and CVE-2024-21302, enable attackers August 9, 2024 Amber | Attack Report
CMoon Worm Emerges: Targets Russia in Data Theft Attacks
A new self-spreading worm named ‘CMoon’ has been actively distributed in Russia August 8, 2024 Red | Vulnerability Report
CVE-2024-4885: Active Exploitation of Critical WhatsUp Gold RCE Flaw
Multiple critical security flaws in Progress Software’s WhatsUp Gold, particularly CVE-2024-4885, are August 8, 2024 Amber | Attack Report
RATs on the Loose Through Abused Cloudflare Tunnels
Threat actors are increasingly exploiting the Cloudflare Tunnel service to disseminate a August 7, 2024 Amber | Attack Report
North Korean Hackers Embed Malicious Code in Legitimate npm Packages
The North Korea-linked threat actor group, known as “Stressed Pungsan,” has been August 7, 2024 Amber | Attack Report
StormBamboo Abuses ISP to Push Malware via Software Updates
The StormBamboo group executed a sophisticated attack by compromising an ISP and August 7, 2024 Amber | Attack Report
BITSLOTH Backdoor Leverages BITS for C2
BITSLOTH is a newly discovered, highly advanced Windows backdoor malware. Leveraging the August 6, 2024 Red | Attack Report
Hunters International is Redefining RaaS Operations
Hunters International, a Ransomware-as-a-Service (RaaS) operation suspected to be a rebrand of August 6, 2024