Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Threat Level – Amber | Vulnerability Report
Cuckoo Malware Operates as Both an Infostealer and Spyware
A newly discovered malware threat for macOS, displaying traits of both an May 3, 2024 Threat Level – Red | Vulnerability Report
Goldoon Botnet Exploits Longstanding D-Link Vulnerability
A recently surfaced Goldoon botnet is exploiting a vulnerability in D-Link systems May 3, 2024 Threat Level – Red | Vulnerability Report
The Enigmatic ‘Muddling Meerkat’ Poses a Nation-State DNS Puzzle
A newly identified threat actor, dubbed “Muddling Meerkat,” associated with the People’s Republic of May 1, 2024 Threat Level – Red | Vulnerability Report
Akira Ransomware Nets $42 Million from 250+ Victims
The Akira ransomware group has become notorious for its malicious activities, having May 1, 2024 Threat Level – Red | Vulnerability Report
Active Targeting of WP-Automatic Plugin Flaw Raises Concerns for Site Takeover
The critical SQL Injection vulnerability (CVE-2024-27956) in the WP-Automatic plugin for WordPress April 29, 2024 Threat Level – Amber | Vulnerability Report
KageNoHitobito and DoNex Ransomware Plaguing Global Entities
In March 2024, two distinct ransomware strains emerged: KageNoHitobito and DoNex. The April 29, 2024 Threat Level – Red | Vulnerability Report
A Zero-Day Vulnerability in CrushFTP Results in Server Compromise
The discovery of an actively exploited zero-day vulnerability, CVE-2024-4040, in CrushFTP is April 26, 2024 Threat Level – Red | Vulnerability Report
ArcaneDoor a Novel Espionage Campaign Exploits Cisco Zero-Days
ArcaneDoor, an intricately crafted cyber espionage endeavor, orchestrated by state-affiliated operatives under April 26, 2024