Haozhe Zhang, Author at Unit 42

Protect Against Russia-Ukraine Cyber Activity

Threat brief cover image for overviews of vulnerabilities such as CVE-2022-26809, CVE-2022-26923 and CVE-2022-26925

20,533

people reacted

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)

By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng
July 27, 2022 at 4:00 PM

5

6 min. read

A conceptual image representing a vulnerability, such as CVE-2022-22965, aka SpringShell, discussed here.

89,394

people reacted

CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated)

By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone
March 31, 2022 at 4:30 PM

61

12 min. read

A conceptual image representing a vulnerability, such as the Apache log4j remote code execution vulnerability discussed here, CVE-2021-44228.

277,365

people reacted

Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated)

By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu, Josh Grunzweig, Mike Harbison and Robert Falcone
December 10, 2021 at 1:00 PM

435

15 min. read

A conceptual image representing a vulnerability, such as CVE-2021-32305, discussed in this post.

35,359

people reacted

New Mirai Variant Targets WebSVN Command Injection Vulnerability (CVE-2021-32305)

By Brock Mammen and Haozhe Zhang
August 30, 2021 at 6:00 AM

12

5 min. read

A conceptual image representing the network-attached devices common in the small office and home office that are being targeted by the eCh0raix ransomware variant.

50,627

people reacted

New eCh0raix Ransomware Variant Targets QNAP and Synology Network-Attached Storage Devices

By Ruchna Nigam, Haozhe Zhang and Zhibin Zhang
August 10, 2021 at 3:00 AM

34

12 min. read

33,236

people reacted

Are Your Nagios XI Servers Turning Into Cryptocurrency Miners for Attackers?

By Haozhe Zhang, Vaibhav Singhal, Zhibin Zhang and Qi Deng
April 15, 2021 at 11:44 AM

16

6 min. read

Conceptual image representing Satori, a Mirai botnet variant being spread by attackers exploiting CVE-2020-9020

24,650

people reacted

Satori: Mirai Botnet Variant Targeting Vantage Velocity Field Unit RCE Vulnerability

By Haozhe Zhang, Vaibhav Singhal, Zhibin Zhang and Jun Du
March 17, 2021 at 3:35 PM

13

4 min. read

This conceptual image illustrates the idea of malware, such as the njRAT spreading through active Pastebin command and control tunnel that is discussed in this blog.

32,091

people reacted

njRAT Spreading Through Active Pastebin Command and Control Tunnel

By Yanhui Jia, Chris Navarrete and Haozhe Zhang
December 9, 2020 at 6:00 AM

8

6 min. read

This image illustrates the concept of a vulnerability.

39,194

people reacted

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

By Haozhe Zhang, Qi Deng, Zhibin Zhang and Ruchna Nigam
September 3, 2020 at 12:00 PM

10

9 min. read

36,278

people reacted

Grandstream and DrayTek Devices Exploited to Power New Hoaxcalls DDoS Botnet

By Ken Hsu, Haozhe Zhang, Zhibin Zhang and Ruchna Nigam
April 3, 2020 at 1:07 PM

20

7 min. read