Threat Advisories
Detailed information and guidance on threats and vulnerabilities, focusing on its characteristics, impact, and remediation steps, released daily and weekly to provide actionable intelligence and aid in rapid response and mitigation efforts.
Strengthen Your Defenses With the Latest Intelligence
Threat Level – Amber | Vulnerability Report
Notepad++ Plugin Compromised to Inject Malicious Code
By tampering with a widely used Notepad++ plugin, hackers have injected malicious April 10, 2024 Threat Level – Red | Vulnerability Report
Critical RCE Flaw Found in EoL D-Link NAS Devices
A critical vulnerability (CVE-2024-3273) in certain D-Link NAS devices poses a serious threat, April 10, 2024 Threat Level – Red | Vulnerability Report
Hackers Pocket Payment Data via Magento Exploitation
Cyber attackers have exploited a previously addressed critical vulnerability in Magento, known April 10, 2024 Threat Level – Amber | Vulnerability Report
Ivanti Addresses Flaws Leading to DoS Attacks and Code Execution
Ivanti has discovered four security vulnerabilities in Connect Secure and Policy Secure April 8, 2024 Threat Level – Red | Vulnerability Report
CoralRaider Targeting Social Media Accounts Across Asia for Financial Gain
A new Vietnamese threat actor group, CoralRaider, has been targeting victims in several Asian April 8, 2024 Threat Level – Red | Vulnerability Report
Over 170K Users Hit by Fake Python Infrastructure
An unidentified group of threat actors orchestrated a supply chain attack, aiming at members April 8, 2024 Threat Level – Red | Vulnerability Report
LayerSlider WordPress Plugin Flaw Impacts Over 1 Million Sites
The discovery of a significant security vulnerability (CVE-2024-2879) in the LayerSlider plugin April 8, 2024 Threat Level – Amber | Vulnerability Report
Sync-Scheduler: The Premier Document Stealer
The Sync-Scheduler Infostealer, developed in C++, has emerged as a significant threat, hidden April 8, 2024