Logo
Unit42 Logo
  • Tools
  • ATOMs
  • Security Consulting
  • About Us
  • Under Attack?

Category: Threat Briefs and Assessments

Threat Brief: OWASSRF Vulnerability ExploitationA pictorial representation of the ProxyNotShell bypass threat brief
40,864
people reacted

Threat Brief: OWASSRF Vulnerability Exploitation

  • By Robert Falcone and Lior Rochberger
  • December 22, 2022 at 5:30 PM

11

9 min. read

Precious Gemstones: The New Generation of Kerberos AttacksAn illustrative example of Kerberos attacks using golden, diamond, or sapphire tickets
48,258
people reacted

Precious Gemstones: The New Generation of Kerberos Attacks

  • By Oz Soprin and Shachar Roitman
  • December 12, 2022 at 6:00 AM

21

14 min. read

Trending

  • Machine Learning Versus Memory Resident Evil by Esmid Idrizovic
Threat Assessment: Luna Moth Callback Phishing CampaignCybercrime conceptual image, covering activity such as the Luna Moth callback phishing campaign
65,504
people reacted

Threat Assessment: Luna Moth Callback Phishing Campaign

  • By Kristopher Russo
  • November 21, 2022 at 3:00 AM

16

8 min. read

Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer OverflowsThreat brief image, covering vulnerabilities such as CVE-2022-3786 and CVE-2022-3602, OpenSSL X.509 Buffer Overflows
56,465
people reacted

Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows

  • By Shawn Westfall
  • November 2, 2022 at 6:00 PM

18

7 min. read

Ransom Cartel Ransomware: A Possible Connection With REvilRansomware conceptual image, covering threat actors such as Ransom Cartel
66,531
people reacted

Ransom Cartel Ransomware: A Possible Connection With REvil

  • By Amer Elsad and Daniel Bunce
  • October 14, 2022 at 6:00 AM

21

17 min. read

Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell)Threat Brief Image for CVE-2022-41040, CVE-2022-41082, ProxyNotShell
73,682
people reacted

Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell)

  • By Shawn Westfall
  • October 4, 2022 at 4:30 PM

108

8 min. read

Threat Assessment: Black Basta Ransomware
72,233
people reacted

Threat Assessment: Black Basta Ransomware

  • By Amer Elsad
  • August 25, 2022 at 12:00 PM

53

12 min. read

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)Threat brief cover image for overviews of vulnerabilities such as CVE-2022-26809, CVE-2022-26923 and CVE-2022-26925
56,775
people reacted

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)

  • By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng
  • July 27, 2022 at 4:00 PM

51

6 min. read

When Pentest Tools Go Brutal: Red-Teaming Tool Being Abused by Malicious ActorsA conceptual image illustrating the concept of an adversary, underscoring the ethical discussion around red-teaming tools such as Brute Ratel
111,789
people reacted

When Pentest Tools Go Brutal: Red-Teaming Tool Being Abused by Malicious Actors

  • By Mike Harbison and Peter Renals
  • July 5, 2022 at 6:00 AM

67

15 min. read

Exposing HelloXD Ransomware and x4kA conceptual image representing ransomware, including HelloXD.
51,208
people reacted

Exposing HelloXD Ransomware and x4k

  • By Daniel Bunce and Doel Santos
  • June 10, 2022 at 6:00 PM

20

15 min. read

LockBit 2.0: How This RaaS Operates and How to Protect Against ItA conceptual image representing ransomware, such as LockBit 2.0, discussed here.
60,036
people reacted

LockBit 2.0: How This RaaS Operates and How to Protect Against It

  • By Amer Elsad, JR Gumarin and Abigail Barr
  • June 9, 2022 at 6:00 AM

43

16 min. read

Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated)Threat Brief image, representing brief analyses of vulnerabilities such as CVE-2022-26134
46,085
people reacted

Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated)

  • By Abhishek Anbazhagan, Shawn Westfall, Josh Grunzweig, Daniela Shalev and Eli Barr
  • June 3, 2022 at 5:00 PM

50

5 min. read

Threat Brief: CVE-2022-30190 – MSDT Code Execution VulnerabilityAn image representing threat briefs, such as the one covering CVE-2022-30190
54,606
people reacted

Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability

  • By Shawn Westfall
  • May 31, 2022 at 2:45 PM

45

4 min. read

Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)Threat brief standard image, in this case used for a threat brief on CVE-2022-22954 and other VMware vulnerabilities.
45,979
people reacted

Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)

  • By Ruchna Nigam
  • May 20, 2022 at 6:00 AM

29

5 min. read

Threat Brief: CVE-2022-1388A conceptual image representing a vulnerability, such as CVE-2022-1388, discussed in this threat brief
40,414
people reacted

Threat Brief: CVE-2022-1388

  • By Unit 42
  • May 10, 2022 at 1:45 PM

15

2 min. read

Popular Resources

  • Resource Center
  • Blog
  • Communities
  • Tech Docs
  • Unit 42
  • Sitemap

Legal Notices

  • Privacy
  • Terms of Use
  • Documents

Account

  • Manage Subscriptions
  •  
  • Report a Vulnerability

© 2023 Palo Alto Networks, Inc. All rights reserved.