Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated April 22) 91,194 people reacted Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated April 22) By Unit 42 April 12, 2024 at 10:00 AM 157 12 min. read
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 37,314 people reacted Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) By Unit 42 March 30, 2024 at 7:15 PM 48 6 min. read
Threat Brief: Citrix Bleed CVE-2023-4966 9,392 people reacted Threat Brief: Citrix Bleed CVE-2023-4966 By Unit 42 November 1, 2023 at 3:00 PM 18 5 min. read
Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) 8,118 people reacted Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) By Unit 42 October 18, 2023 at 5:30 PM 77 4 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) 51,200 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) By Unit 42 October 4, 2023 at 6:00 AM 69 10 min. read
Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) 7,191 people reacted Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) By Unit 42 July 28, 2023 at 5:42 PM 15 8 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 7,943 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 4 5 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 24,055 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 30 4 min. read
Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation 87,011 people reacted Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation By Unit 42 March 31, 2023 at 12:06 AM 19 5 min. read
Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) 80,209 people reacted Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) By Robert Falcone and Josh Grunzweig March 30, 2023 at 12:50 PM 29 8 min. read
Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows 60,160 people reacted Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows By Shawn Westfall November 2, 2022 at 6:00 PM 18 7 min. read
Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) 80,832 people reacted Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) By Shawn Westfall October 4, 2022 at 4:30 PM 110 8 min. read
Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925) 62,514 people reacted Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925) By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng July 27, 2022 at 4:00 PM 52 6 min. read
Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated) 49,853 people reacted Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated) By Abhishek Anbazhagan, Shawn Westfall, Josh Grunzweig, Daniela Shalev and Eli Barr June 3, 2022 at 5:00 PM 51 5 min. read
Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability 58,207 people reacted Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability By Shawn Westfall May 31, 2022 at 2:45 PM 46 4 min. read