Unit 42 - Latest Cyber Security Research

A conceptual image associated with the threat brief series, such as this post covering recent OMI vulnerabilities and how to remediate.

1,811

people reacted

Threat Brief: OMI Vulnerabilities (CVE-2021-38645, CVE-2021-38647, CVE-2021-38648 and CVE-2021-38649)

By Nathaniel Quist
September 16, 2021 at 12:00 PM

2 min. read

A conceptual image representing exploitation of DNS, such as an often overlooked issue discussed in this blog, dangling domains, which can be exploited for DNS hijacking.

2,234

people reacted

Dangling Domains: Security Threats, Detection and Prevalence

By Daiping Liu and Ruian Duan
September 16, 2021 at 6:00 AM

12 min. read

A conceptual image representing the COVID-19 pandemic and cybercrime – this blog discusses how threat actors are poised to take advantage of one of the aspects of the slowing spread of the virus: attacking a renewed travel industry with travel-themed phishing campaigns.

4,081

people reacted

Phishing Eager Travelers

By Anna Chung and Swetha Balla
September 15, 2021 at 6:00 AM

9 min. read

A conceptual image representing phishing, such as the JavaScript-based phishing discussed here.

6,203

people reacted

PhishingJS: A Deep Learning Model for JavaScript-Based Phishing Detection

By Lucas Hu
September 10, 2021 at 6:00 AM

7 min. read

A conceptual image illustrating vulnerabilities related to containers and Kubernetes, such as Azurescape, the cross-account container takeover in Azure Container Instances discussed here.

38,011

people reacted

Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances

By Yuval Avrahami
September 9, 2021 at 3:00 AM

14 min. read

A conceptual image representing vulnerabilities, such as CVE-2021-26084, discussed here.

12,369

people reacted

Threat Brief: CVE-2021-26084

By Unit 42
September 3, 2021 at 12:20 PM

2 min. read

A conceptual image representing malware, such as the malware discussed here, designed to evade classifiers through benign append attacks.

9,834

people reacted

The Innocent Until Proven Guilty Learning Framework Helps Overcome Benign Append Attacks

By Brody Kutt, Oleksii Starov and Billy Hewlett
September 1, 2021 at 3:00 PM

11 min. read

A conceptual image representing issues with DNS, such as the DNS rebinding discussed here.

13,797

people reacted

DNS Rebinding Attack: How Malicious Websites Exploit Private Networks

By Zhanhao Chen
August 31, 2021 at 6:00 AM

13 min. read

A conceptual image representing a vulnerability, such as CVE-2021-32305, discussed in this post.

13,820

people reacted

New Mirai Variant Targets WebSVN Command Injection Vulnerability (CVE-2021-32305)

By Brock Mammen and Haozhe Zhang
August 30, 2021 at 6:00 AM

5 min. read

A conceptual image representing cybersecurity trends, such as the uptick of worldwide phishing attacks observed at the peak of working from home

14,485

people reacted

Worldwide Phishing Attacks Ramped Up At the Peak of Working From Home

By Lucas Hu
August 25, 2021 at 6:00 AM

8 min. read

Personal VPN and Its Evasions: Risk Factors and How to Maintain Network Visibility

15,875

people reacted

Personal VPN and Its Evasions: Risk Factors and How to Maintain Network Visibility

By Saeed Abbasi and Kirti Parekh
August 16, 2021 at 6:00 PM

7 min. read

A conceptual image representing phishing, as discussed in this post. Here, we cover CAPTCHA-protected phishing campaigns and how they can be detected and mitigated.

18,597

people reacted

Discovering CAPTCHA Protected Phishing Campaigns

By Shresta Bellary Seetharam, Billy Melicher and Oleksii Starov
August 13, 2021 at 12:00 PM

8 min. read

A conceptual image representing the network-attached devices common in the small office and home office that are being targeted by the eCh0raix ransomware variant.

27,223

people reacted

New eCh0raix Ransomware Variant Targets QNAP and Synology Network-Attached Storage Devices

By Ruchna Nigam, Haozhe Zhang and Zhibin Zhang
August 10, 2021 at 3:00 AM

12 min. read

A conceptual image representing cloud misconfigurations, such as the IAM misconfigurations discussed here.

21,372

people reacted

Unit 42 Cloud Threat Report Update: Cloud Security Weakens as More Organizations Fail to Secure IAM

By Nathaniel Quist
August 5, 2021 at 3:00 PM

7 min. read

A conceptual image representing Siloscape, the Windows container escape that was recently prevented by a Microsoft patch.

20,125

people reacted

Microsoft Patched the Issue With Windows Containers That Enabled Siloscape

By Daniel Prizmant
August 5, 2021 at 8:00 AM

4 min. read

Ransomware Groups to Watch: Emerging Threats

Threat Brief: OMI Vulnerabilities (CVE-2021-38645, CVE-2021-38647, CVE-2021-38648 and CVE-2021-38649)

Cloud Threats: Original Research and In-Depth Analysis

Don't Panic!: The Unit 42 Podcast

Threat Brief: OMI Vulnerabilities (CVE-2021-38645, CVE-2021-38647, CVE-2021-38648 and CVE-2021-38649)

Dangling Domains: Security Threats, Detection and Prevalence

Phishing Eager Travelers

PhishingJS: A Deep Learning Model for JavaScript-Based Phishing Detection

Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances

Threat Brief: CVE-2021-26084

The Innocent Until Proven Guilty Learning Framework Helps Overcome Benign Append Attacks

DNS Rebinding Attack: How Malicious Websites Exploit Private Networks

New Mirai Variant Targets WebSVN Command Injection Vulnerability (CVE-2021-32305)

Worldwide Phishing Attacks Ramped Up At the Peak of Working From Home

Personal VPN and Its Evasions: Risk Factors and How to Maintain Network Visibility

Discovering CAPTCHA Protected Phishing Campaigns

New eCh0raix Ransomware Variant Targets QNAP and Synology Network-Attached Storage Devices

Unit 42 Cloud Threat Report Update: Cloud Security Weakens as More Organizations Fail to Secure IAM

Microsoft Patched the Issue With Windows Containers That Enabled Siloscape

Popular Resources

Legal Notices

Account

Get updates on Unit 42

Trending

Popular Resources

Legal Notices

Account