Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Threat Level – Red | Vulnerability Report
Veeam Recovery Orchestrator Flaw Enables Forge of Valid JWT Tokens
Summary: A critical authentication bypass vulnerability in Veeam Recovery Orchestrator, tracked as June 15, 2024 Threat Level – Red | Vulnerability Report
Black Basta Ransomware Linked to Zero-Day Windows Exploit
Summary: Cardinal Threat Group, known to be associated with Black Basta ransomware June 13, 2024 Threat Level – Red | Vulnerability Report
ARM’s Zero-Day Flaw Leads to Improper GPU Memory Processing
Summary: Arm has issued a warning about a security vulnerability, CVE-2024-4610, which June 13, 2024 Threat Level – Red | Vulnerability Report
Microsoft’s June 2024 Patch Tuesday Addresses 49 Vulnerabilities
Summary: Microsoft’s June 2024 Patch Tuesday addresses 49 vulnerabilities, including one critical June 13, 2024 Threat Level – Red | Vulnerability Report
PHP RCE Flaw Opens a Gateway for TellYouThePass Ransomware
Summary: A critical security flaw in PHP impacts all versions installed on June 13, 2024 Threat Level – Red | Vulnerability Report
WARMCOOKIE Backdoor: Rising via Recruitment-Themed Phishing
Summary: A newly discovered Windows malware called ‘WARMCOOKIE’ is being spread via June 13, 2024 Threat Level – Red | Vulnerability Report
Veeam Addresses Critical Flaws, Urges Admins to Patch
Summary: Veeam has released fixes to address multiple security flaws affecting Veeam June 13, 2024 Threat Level – Red | Vulnerability Report
POC Exploit Code Released for Apache HugeGraph RCE Vulnerability
Summary: CVE-2024-27348 is a critical RCE vulnerability in Apache HugeGraph-Server versions before June 11, 2024