Qi Deng, Author at Unit 42

Protect Against Russia-Ukraine Cyber Activity

Threat brief cover image for overviews of vulnerabilities such as CVE-2022-26809, CVE-2022-26923 and CVE-2022-26925

20,523

people reacted

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)

By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng
July 27, 2022 at 4:00 PM

5

6 min. read

A conceptual image representing a vulnerability, such as CVE-2022-22965, aka SpringShell, discussed here.

89,394

people reacted

CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated)

By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone
March 31, 2022 at 4:30 PM

61

12 min. read

A conceptual image representing a vulnerability, such as the Apache log4j remote code execution vulnerability discussed here, CVE-2021-44228.

277,365

people reacted

Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated)

By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu, Josh Grunzweig, Mike Harbison and Robert Falcone
December 10, 2021 at 1:00 PM

435

15 min. read

A conceptual image representing an adversary. The new attack surface discussed here is an example of what can be possible for an adversary able to perform remote attacks.

34,078

people reacted

Palo Alto Networks Discloses New Attack Surface Targeting Microsoft IIS and SQL Server at Black Hat Asia 2021

By Tao Yan, Qi Deng, Bo Qu and Zhibin Zhang
July 30, 2021 at 3:00 PM

32

7 min. read

33,236

people reacted

Are Your Nagios XI Servers Turning Into Cryptocurrency Miners for Attackers?

By Haozhe Zhang, Vaibhav Singhal, Zhibin Zhang and Qi Deng
April 15, 2021 at 11:44 AM

16

6 min. read

This conceptual image illustrates the idea of cybercrime.

32,542

people reacted

Two New IoT Vulnerabilities Identified with Mirai Payloads

By Ken Hsu, Yue Guan, Vaibhav Singhal and Qi Deng
October 14, 2020 at 12:00 PM

11

5 min. read

This image illustrates the concept of a vulnerability.

39,194

people reacted

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2020-17496

By Haozhe Zhang, Qi Deng, Zhibin Zhang and Ruchna Nigam
September 3, 2020 at 12:00 PM

10

9 min. read

40,262

people reacted

Exploits in the Wild for Citrix ADC and Citrix Gateway Directory Traversal Vulnerability CVE-2019-19781

By Yue Guan, Qi Deng, Zhibin Zhang, Siddhart Shibiraj, Zhanhao Chen, Cecilia Hu and John Harrison
January 16, 2020 at 6:00 AM

29

4 min. read

46,506

people reacted

Exploits in the Wild for vBulletin Pre-Auth RCE Vulnerability CVE-2019-16759

By Qi Deng, Zhibin Zhang and Hui Gao
October 9, 2019 at 6:00 AM

13

5 min. read

38,620

people reacted

Exploits in the Wild for WordPress Social Warfare Plugin CVE-2019-9978

By Qi Deng, Zhibin Zhang and Hui Gao
April 22, 2019 at 9:00 AM

5

5 min. read