Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 38,118 people reacted Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) By Unit 42 March 30, 2024 at 7:15 PM 51 6 min. read
Exposing a New BOLA Vulnerability in Grafana 3,533 people reacted Exposing a New BOLA Vulnerability in Grafana By Ravid Mazon and Jay Chen March 27, 2024 at 7:00 AM 22 8 min. read
New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 5,316 people reacted New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 By Chao Lei, Jeff Luo and Zhibin Zhang February 13, 2024 at 3:00 AM 8 5 min. read
Fighting Ursa Aka APT28: Illuminating a Covert Campaign 13,087 people reacted Fighting Ursa Aka APT28: Illuminating a Covert Campaign By Unit 42 December 7, 2023 at 6:00 AM 48 6 min. read
In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 11,449 people reacted In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 By Eli Birkan, Dan Yashnik, Oriel Cochavi, Bar Lahav and Mike Harbison November 13, 2023 at 3:00 AM 79 18 min. read
High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites 4,625 people reacted High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites By Shresta Bellary Seetharam, Tao Yan, Nabeel Mohamed, Tim Hofmockel, Alex Starov and Brad Duncan November 9, 2023 at 12:00 PM 52 8 min. read
Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT 11,634 people reacted Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT By Robert Falcone September 19, 2023 at 6:00 AM 13 10 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 24,223 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 30 4 min. read
Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 22,527 people reacted Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 By Shawn Westfall June 20, 2023 at 6:00 AM 3 37 min. read
Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies 27,158 people reacted Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies By Shawn Westfall June 13, 2023 at 6:00 AM 5 18 min. read
Mirai Variant V3G4 Targets IoT Devices 69,642 people reacted Mirai Variant V3G4 Targets IoT Devices By Chao Lei, Zhibin Zhang, Cecilia Hu and Aveek Das February 15, 2023 at 6:00 AM 16 9 min. read
Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats 68,803 people reacted Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats By Yiheng An, Chao Lei, Adam Robbie, Aveek Das, Zhibin Zhang and Shehroze Farooqi January 24, 2023 at 6:00 AM 43 8 min. read
Network Security Trends: August-October 2022 55,422 people reacted Network Security Trends: August-October 2022 By Yiheng An January 12, 2023 at 6:00 AM 21 8 min. read
Security Issue in JWT Secret Poisoning (Updated) 132,014 people reacted Security Issue in JWT Secret Poisoning (Updated) By Artur Oleyarsh January 9, 2023 at 6:00 AM 57 8 min. read
Network Security Trends: May-July 2022 56,340 people reacted Network Security Trends: May-July 2022 By Yiheng An November 16, 2022 at 6:00 AM 14 7 min. read