Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 36,937 people reacted Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) By Unit 42 March 30, 2024 at 7:15 PM 46 6 min. read
Exposing a New BOLA Vulnerability in Grafana 3,026 people reacted Exposing a New BOLA Vulnerability in Grafana By Ravid Mazon and Jay Chen March 27, 2024 at 7:00 AM 22 8 min. read
New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 4,962 people reacted New Vulnerability in QNAP QTS Firmware: CVE-2023-50358 By Chao Lei, Jeff Luo and Zhibin Zhang February 13, 2024 at 3:00 AM 8 5 min. read
Fighting Ursa Aka APT28: Illuminating a Covert Campaign 12,548 people reacted Fighting Ursa Aka APT28: Illuminating a Covert Campaign By Unit 42 December 7, 2023 at 6:00 AM 48 6 min. read
In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 11,072 people reacted In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 By Eli Birkan, Dan Yashnik, Oriel Cochavi, Bar Lahav and Mike Harbison November 13, 2023 at 3:00 AM 79 18 min. read
High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites 4,455 people reacted High Traffic + High Vulnerability = an Attractive Target for Criminals: The Dangers of Viewing Clickbait Sites By Shresta Bellary Seetharam, Tao Yan, Nabeel Mohamed, Tim Hofmockel, Alex Starov and Brad Duncan November 9, 2023 at 12:00 PM 52 8 min. read
Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT 11,406 people reacted Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT By Robert Falcone September 19, 2023 at 6:00 AM 13 10 min. read
CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) 24,011 people reacted CVE-2023-36884 - Microsoft Office and Windows HTML Remote Code Execution: Threat Brief (Updated) By Unit 42 July 12, 2023 at 11:45 AM 30 4 min. read
Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 22,341 people reacted Inside Win32k Exploitation: Analysis of CVE-2022-21882 and CVE-2021-1732 By Shawn Westfall June 20, 2023 at 6:00 AM 3 37 min. read
Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies 26,905 people reacted Inside Win32k Exploitation: Background on Implementations of Win32k and Exploitation Methodologies By Shawn Westfall June 13, 2023 at 6:00 AM 5 18 min. read
Mirai Variant V3G4 Targets IoT Devices 69,456 people reacted Mirai Variant V3G4 Targets IoT Devices By Chao Lei, Zhibin Zhang, Cecilia Hu and Aveek Das February 15, 2023 at 6:00 AM 16 9 min. read
Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats 68,539 people reacted Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats By Yiheng An, Chao Lei, Adam Robbie, Aveek Das, Zhibin Zhang and Shehroze Farooqi January 24, 2023 at 6:00 AM 43 8 min. read
Network Security Trends: August-October 2022 55,296 people reacted Network Security Trends: August-October 2022 By Yiheng An January 12, 2023 at 6:00 AM 21 8 min. read
Security Issue in JWT Secret Poisoning (Updated) 131,795 people reacted Security Issue in JWT Secret Poisoning (Updated) By Artur Oleyarsh January 9, 2023 at 6:00 AM 57 8 min. read
Network Security Trends: May-July 2022 56,221 people reacted Network Security Trends: May-July 2022 By Yiheng An November 16, 2022 at 6:00 AM 14 7 min. read