Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 38,038 people reacted Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) By Unit 42 March 30, 2024 at 7:15 PM 51 6 min. read
Exposing a New BOLA Vulnerability in Grafana 3,479 people reacted Exposing a New BOLA Vulnerability in Grafana By Ravid Mazon and Jay Chen March 27, 2024 at 7:00 AM 22 8 min. read
New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 5,271 people reacted New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 By Chao Lei, Jeff Luo and Zhibin Zhang February 13, 2024 at 3:00 AM 8 5 min. read
Fighting Ursa Aka APT28: Illuminating a Covert Campaign 12,916 people reacted Fighting Ursa Aka APT28: Illuminating a Covert Campaign By Unit 42 December 7, 2023 at 6:00 AM 48 6 min. read
In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 11,408 people reacted In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 By Eli Birkan, Dan Yashnik, Oriel Cochavi, Bar Lahav and Mike Harbison November 13, 2023 at 3:00 AM 79 18 min. read
High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites 4,604 people reacted High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites By Shresta Bellary Seetharam, Tao Yan, Nabeel Mohamed, Tim Hofmockel, Alex Starov and Brad Duncan November 9, 2023 at 12:00 PM 52 8 min. read
Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT 11,611 people reacted Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT By Robert Falcone September 19, 2023 at 6:00 AM 13 10 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 24,197 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 30 4 min. read
Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 22,506 people reacted Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 By Shawn Westfall June 20, 2023 at 6:00 AM 3 37 min. read
Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies 27,124 people reacted Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies By Shawn Westfall June 13, 2023 at 6:00 AM 5 18 min. read
Mirai Variant V3G4 Targets IoT Devices 69,617 people reacted Mirai Variant V3G4 Targets IoT Devices By Chao Lei, Zhibin Zhang, Cecilia Hu and Aveek Das February 15, 2023 at 6:00 AM 16 9 min. read
Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats 68,762 people reacted Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats By Yiheng An, Chao Lei, Adam Robbie, Aveek Das, Zhibin Zhang and Shehroze Farooqi January 24, 2023 at 6:00 AM 43 8 min. read
Network Security Trends: August-October 2022 55,407 people reacted Network Security Trends: August-October 2022 By Yiheng An January 12, 2023 at 6:00 AM 21 8 min. read
Security Issue in JWT Secret Poisoning (Updated) 131,990 people reacted Security Issue in JWT Secret Poisoning (Updated) By Artur Oleyarsh January 9, 2023 at 6:00 AM 57 8 min. read
Network Security Trends: May-July 2022 56,325 people reacted Network Security Trends: May-July 2022 By Yiheng An November 16, 2022 at 6:00 AM 14 7 min. read