Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Red | Vulnerability Report
Critical Path Traversal Flaw in Splunk Enterprise Puts Windows Systems at Risk
A high-severity vulnerability identified in Splunk, CVE-2024-36991, has been discovered. This vulnerability July 23, 2024 Amber | Attack Report
Jellyfish Loader: When Innocent Files Turn Malicious
The Jellyfish Loader is a newly discovered .NET-based shellcode loader engineered for July 23, 2024 Red | Vulnerability Report
Wild Exploitation of Critical Flaw in Adobe Commerce and Magento
A critical unauthenticated XXE (XML External Entity) vulnerability has been discovered in July 19, 2024 Amber | Attack Report
APT17’s Espionage Surge: Italian Targets Hit by 9002 RAT
In June and July 2024, APT17 escalated its cyber espionage activities, targeting July 19, 2024 Threat Level – Red | Vulnerability Report
Critical GeoTools RCE Flaw Exploited in Geoserver Attacks
A critical Remote Code Execution (RCE) vulnerability in GeoTools, identified as CVE-2024-36404, July 18, 2024 Threat Level – Red | Attack Report
Void Banshee’s Zero-Day Assault on Windows Users via Internet Explorer
Threat actors are exploiting the CVE-2024-38112 vulnerability by abusing the mhtml protocol July 17, 2024 Threat Level – Red | Attack Report
MuddyWater Expands Its Arsenal with BugSleep Malware
MuddyWater, an Iranian threat group, has substantially escalated its operations in Israel July 16, 2024 Threat Level – Amber | Attack Report
ShadowRoot Ransomware a Menace to Turkish Enterprises
ShadowRoot Ransomware is an advanced malware threat targeting businesses in Turkey. The July 16, 2024