Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) 5,576 people reacted Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) By Unit 42 July 28, 2023 at 5:42 PM 13 8 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 6,164 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 3 5 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 22,086 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 29 4 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7) 45,513 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7) By Unit 42 June 6, 2023 at 2:30 PM 35 7 min. read
Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation 83,117 people reacted Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation By Unit 42 March 31, 2023 at 12:06 AM 18 5 min. read
Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) 78,941 people reacted Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) By Robert Falcone and Josh Grunzweig March 30, 2023 at 12:50 PM 29 8 min. read
Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows 59,375 people reacted Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows By Shawn Westfall November 2, 2022 at 6:00 PM 18 7 min. read
Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) 79,451 people reacted Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) By Shawn Westfall October 4, 2022 at 4:30 PM 110 8 min. read
Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925) 61,175 people reacted Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925) By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng July 27, 2022 at 4:00 PM 51 6 min. read
Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated) 49,104 people reacted Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated) By Abhishek Anbazhagan, Shawn Westfall, Josh Grunzweig, Daniela Shalev and Eli Barr June 3, 2022 at 5:00 PM 50 5 min. read
Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability 57,529 people reacted Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability By Shawn Westfall May 31, 2022 at 2:45 PM 45 4 min. read
Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others) 50,694 people reacted Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others) By Ruchna Nigam May 20, 2022 at 6:00 AM 29 5 min. read
Threat Brief: CVE-2022-1388 44,099 people reacted Threat Brief: CVE-2022-1388 By Unit 42 May 10, 2022 at 1:45 PM 15 2 min. read
CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) 106,987 people reacted CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone March 31, 2022 at 4:30 PM 89 12 min. read
Threat Brief: Lapsus$ Group 51,888 people reacted Threat Brief: Lapsus$ Group By Unit 42 March 24, 2022 at 12:15 PM 38 5 min. read
