Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated) 75,750 people reacted Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 (Updated) By Unit 42 April 12, 2024 at 10:00 AM 109 9 min. read
Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 37,040 people reacted Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) By Unit 42 March 30, 2024 at 7:15 PM 46 6 min. read
Threat Group Assessment: Muddled Libra (Updated) 36,442 people reacted Threat Group Assessment: Muddled Libra (Updated) By Kristopher Russo, Austin Dever and Amer Elsad March 8, 2024 at 2:58 PM 40 13 min. read
Threat Brief: ConnectWise ScreenConnect Vulnerabilities (CVE-2024-1708 and CVE-2024-1709) 6,706 people reacted Threat Brief: ConnectWise ScreenConnect Vulnerabilities (CVE-2024-1708 and CVE-2024-1709) By Unit 42 February 21, 2024 at 5:00 PM 7 5 min. read
Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (Volt Typhoon) 57,973 people reacted Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (Volt Typhoon) By Unit 42 February 14, 2024 at 2:30 PM 28 9 min. read
Threat Assessment: BianLian 8,527 people reacted Threat Assessment: BianLian By Daniel Frank January 23, 2024 at 3:00 AM 29 10 min. read
Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) 23,202 people reacted Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) By Unit 42 January 16, 2024 at 3:30 PM 88 19 min. read
Threat Brief: Citrix Bleed CVE-2023-4966 9,348 people reacted Threat Brief: Citrix Bleed CVE-2023-4966 By Unit 42 November 1, 2023 at 3:00 PM 18 5 min. read
Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) 8,087 people reacted Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) By Unit 42 October 18, 2023 at 5:30 PM 77 4 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) 51,148 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) By Unit 42 October 4, 2023 at 6:00 AM 69 10 min. read
Threat Group Assessment: Turla (aka Pensive Ursa) 6,757 people reacted Threat Group Assessment: Turla (aka Pensive Ursa) By Unit 42 September 15, 2023 at 6:00 AM 19 14 min. read
Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) 7,158 people reacted Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access – CVE-2023-35078 – in Ivanti Endpoint Manager Mobile (Updated) By Unit 42 July 28, 2023 at 5:42 PM 15 8 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 7,913 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 4 5 min. read
Threat Group Assessment: Mallox Ransomware 13,170 people reacted Threat Group Assessment: Mallox Ransomware By Lior Rochberger and Shimi Cohen July 20, 2023 at 10:15 AM 19 10 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 24,020 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 30 4 min. read