Hackers exploit critical Citrix ADC and Gateway zero-day
This new vulnerability allows an unauthenticated attacker to execute commands remotely on vulnerable devices and take control of them
Read More...
Google Chrome Flaw Added to CISA Patch List
Google has already released a fixed version of Chrome browser for Windows, Mac, and Linux users. CISA has given government agencies until Dec. 26 to get a patch
Read More...
Experts created a technique to bypass web application firewalls (WAF) of several major vendors
Researchers have verified that the bypass attack technique has worked against firewalls from multiple vendors, including Cloudflare, F5, Imperva, and Palo Alto Networks
Read More...
Cisco discloses high-severity IP phone bug with exploit code
Cisco has disclosed today a high-severity vulnerability affecting the latest generation of its IP phones and exposing them to remote code execution and denial of service (DoS) attacks
Read More...
Automated dark web markets sell corporate email accounts for $2
Security researchers who followed this trend have reported at least 225,000 email accounts for sale on underground markets
Read More...
Sophos fixed a critical flaw in its Sophos Firewall version 19.5
Sophos addressed several vulnerabilities affecting its Sophos Firewall version 19.5, including arbitrary code execution issues
Read More...
Trigona ransomware spotted in increasing attacks worldwide
Trigona has been active for some time, with samples seen at the beginning of the year
Read More...
The Evolution of Business Email Compromise
The simplicity and profitability of these attacks continue to appeal to threat actors a decade later
Read More...
All You Need to Know About Emotet in 2022
The botnet distributes through phishing containing malicious Excel or Word documents
Read More...
New RansomExx Ransomware Variant Rewritten in Rust
RansomExx is yet another major ransomware family to switch to Rust in 2022
Read More...