Threat Brief: Citrix Bleed CVE-2023-4966 9,521 people reacted Threat Brief: Citrix Bleed CVE-2023-4966 By Unit 42 November 1, 2023 at 3:00 PM 18 5 min. read
Conducting Robust Learning for Empire Command and Control Detection 3,358 people reacted Conducting Robust Learning for Empire Command and Control Detection By Qian Feng, Chris Navarrete, Yanhui Jia, Yu Fu, Iris Dai, Nina Smith and Brad Duncan November 1, 2023 at 3:00 AM 16 10 min. read
Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) 8,224 people reacted Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) By Unit 42 October 18, 2023 at 5:30 PM 77 4 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) 51,346 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) By Unit 42 October 4, 2023 at 6:00 AM 69 10 min. read
Wireshark Tutorial: Display Filter Expressions 267,985 people reacted Wireshark Tutorial: Display Filter Expressions By Brad Duncan September 8, 2023 at 6:00 AM 124 12 min. read
RedLine Stealer: Answers to Unit 42 Wireshark Quiz 7,501 people reacted RedLine Stealer: Answers to Unit 42 Wireshark Quiz By Brad Duncan September 1, 2023 at 6:00 AM 15 11 min. read
Crossing the Line: Unit 42 Wireshark Quiz for RedLine Stealer 13,606 people reacted Crossing the Line: Unit 42 Wireshark Quiz for RedLine Stealer By Brad Duncan August 18, 2023 at 6:00 AM 20 4 min. read
When a Zero Day and Access Keys Collide in the Cloud: Responding to the SugarCRM Zero-Day Vulnerability 6,896 people reacted When a Zero Day and Access Keys Collide in the Cloud: Responding to the SugarCRM Zero-Day Vulnerability By Margaret Zimmermann August 10, 2023 at 3:15 PM 18 13 min. read
NodeStealer 2.0 – The Python Version: Stealing Facebook Business Accounts 7,702 people reacted NodeStealer 2.0 – The Python Version: Stealing Facebook Business Accounts By Lior Rochberger August 1, 2023 at 6:00 AM 13 14 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 8,034 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 4 5 min. read
P2PInfect: The Rusty Peer-to-Peer Self-Replicating Worm 11,218 people reacted P2PInfect: The Rusty Peer-to-Peer Self-Replicating Worm By William Gamazo and Nathaniel Quist July 19, 2023 at 10:00 AM 16 11 min. read
Detecting Popular Cobalt Strike Malleable C2 Profile Techniques 20,028 people reacted Detecting Popular Cobalt Strike Malleable C2 Profile Techniques By Durgesh Sangvikar, Matthew Tennis, Chris Navarrete, Yanhui Jia, Yu Fu and Nina Smith June 27, 2023 at 3:00 PM 21 6 min. read
IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits 33,943 people reacted IoT Under Siege: The Anatomy of the Latest Mirai Campaign Leveraging Multiple IoT Exploits By Chao Lei, Zhibin Zhang, Yiheng An and Cecilia Hu June 22, 2023 at 6:00 AM 16 11 min. read
Cold as Ice: Answers to Unit 42 Wireshark Quiz for IcedID 43,424 people reacted Cold as Ice: Answers to Unit 42 Wireshark Quiz for IcedID By Brad Duncan May 30, 2023 at 6:00 AM 14 13 min. read
Old Wine in the New Bottle: Mirai Variant Targets Multiple IoT Devices 55,407 people reacted Old Wine in the New Bottle: Mirai Variant Targets Multiple IoT Devices By Chao Lei, Zhibin Zhang and Cecilia Hu May 25, 2023 at 6:00 AM 15 8 min. read