Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Threat Level – Red | Vulnerability Report
Lace Tempest Exploits Zero-Day in a Strategic Strike on SysAid
Lace Tempest has been implicated in exploiting a zero-day vulnerability, identified as July 8, 2024 Threat Level – Red | Vulnerability Report
Multiple Critical Vulnerabilities in Juniper Exploited in the Wild
Multiple vulnerabilities have been discovered in Juniper Networks Junos OS, with the July 8, 2024 Threat Level – Red | Vulnerability Report
TA402’s Covert Operation Takes Aim at the Middle East
TA402 (aka Extreme Jackal) launched sophisticated phishing campaigns targeting government entities in July 8, 2024 Threat Level – Red | Vulnerability Report
Kinsing Malware Utilizes Apache ActiveMQ RCE to Deploy Rootkits
The Kinsing malware operator is actively taking advantage of the critical vulnerability July 8, 2024 Threat Level – Red | Vulnerability Report
Mirai Botnet’s Offspring InfectedSlurs Exploits Dual Zero-Days
A new Mirai-based malware botnet, InfectedSlurs, is actively conducting a sophisticated campaign July 8, 2024 Threat Level – Red | Vulnerability Report
Cactus Ransomware Exploits Vulnerabilities in Qlik Sense
The Cactus ransomware is actively exploiting critical Qlik Sense vulnerabilities, with the July 8, 2024 Threat Level – Red | Vulnerability Report
Iranian APT Group ‘CyberAv3ngers’ Target U.S. Critical Infrastructure
CyberAv3ngers, an Iranian APT group affiliated with the IRGC, is known for July 8, 2024 Threat Level – Red | Vulnerability Report
Novel Tool Set Targeting Entities in the Middle East, Africa, and U.S.
An undisclosed threat actor has targeted organizations in the Middle East, Africa, July 8, 2024