Threat Briefs and Assessments Archives

A pictorial representation of the ProxyNotShell bypass threat brief

40,864

people reacted

Threat Brief: OWASSRF Vulnerability Exploitation

By Robert Falcone and Lior Rochberger
December 22, 2022 at 5:30 PM

9 min. read

An illustrative example of Kerberos attacks using golden, diamond, or sapphire tickets

48,258

people reacted

Precious Gemstones: The New Generation of Kerberos Attacks

By Oz Soprin and Shachar Roitman
December 12, 2022 at 6:00 AM

14 min. read

Cybercrime conceptual image, covering activity such as the Luna Moth callback phishing campaign

65,504

people reacted

Threat Assessment: Luna Moth Callback Phishing Campaign

By Kristopher Russo
November 21, 2022 at 3:00 AM

8 min. read

Threat brief image, covering vulnerabilities such as CVE-2022-3786 and CVE-2022-3602, OpenSSL X.509 Buffer Overflows

56,465

people reacted

Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows

By Shawn Westfall
November 2, 2022 at 6:00 PM

7 min. read

Ransomware conceptual image, covering threat actors such as Ransom Cartel

66,531

people reacted

Ransom Cartel Ransomware: A Possible Connection With REvil

By Amer Elsad and Daniel Bunce
October 14, 2022 at 6:00 AM

17 min. read

Threat Brief Image for CVE-2022-41040, CVE-2022-41082, ProxyNotShell

73,682

people reacted

Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell)

By Shawn Westfall
October 4, 2022 at 4:30 PM

108

8 min. read

72,233

people reacted

Threat Assessment: Black Basta Ransomware

By Amer Elsad
August 25, 2022 at 12:00 PM

12 min. read

Threat brief cover image for overviews of vulnerabilities such as CVE-2022-26809, CVE-2022-26923 and CVE-2022-26925

56,775

people reacted

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)

By Chao Lei, Tao Yan, Haozhe Zhang and Qi Deng
July 27, 2022 at 4:00 PM

6 min. read

A conceptual image illustrating the concept of an adversary, underscoring the ethical discussion around red-teaming tools such as Brute Ratel

111,789

people reacted

When Pentest Tools Go Brutal: Red-Teaming Tool Being Abused by Malicious Actors

By Mike Harbison and Peter Renals
July 5, 2022 at 6:00 AM

15 min. read

A conceptual image representing ransomware, including HelloXD.

51,208

people reacted

Exposing HelloXD Ransomware and x4k

By Daniel Bunce and Doel Santos
June 10, 2022 at 6:00 PM

15 min. read

A conceptual image representing ransomware, such as LockBit 2.0, discussed here.

60,036

people reacted

LockBit 2.0: How This RaaS Operates and How to Protect Against It

By Amer Elsad, JR Gumarin and Abigail Barr
June 9, 2022 at 6:00 AM

16 min. read

Threat Brief image, representing brief analyses of vulnerabilities such as CVE-2022-26134

46,085

people reacted

Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated)

By Abhishek Anbazhagan, Shawn Westfall, Josh Grunzweig, Daniela Shalev and Eli Barr
June 3, 2022 at 5:00 PM

5 min. read

An image representing threat briefs, such as the one covering CVE-2022-30190

54,606

people reacted

Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability

By Shawn Westfall
May 31, 2022 at 2:45 PM

4 min. read

Threat brief standard image, in this case used for a threat brief on CVE-2022-22954 and other VMware vulnerabilities.

45,979

people reacted

Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)

By Ruchna Nigam
May 20, 2022 at 6:00 AM

5 min. read

A conceptual image representing a vulnerability, such as CVE-2022-1388, discussed in this threat brief

40,414

people reacted

Threat Brief: CVE-2022-1388

By Unit 42
May 10, 2022 at 1:45 PM

2 min. read

Category: Threat Briefs and Assessments

Threat Brief: OWASSRF Vulnerability Exploitation

Precious Gemstones: The New Generation of Kerberos Attacks

Threat Assessment: Luna Moth Callback Phishing Campaign

Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows

Ransom Cartel Ransomware: A Possible Connection With REvil

Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell)

Threat Assessment: Black Basta Ransomware

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925)

When Pentest Tools Go Brutal: Red-Teaming Tool Being Abused by Malicious Actors

Exposing HelloXD Ransomware and x4k

LockBit 2.0: How This RaaS Operates and How to Protect Against It

Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated)

Threat Brief: CVE-2022-30190 – MSDT Code Execution Vulnerability

Threat Brief: VMware Vulnerabilities Exploited in the Wild (CVE-2022-22954 and Others)

Threat Brief: CVE-2022-1388

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account