Threat Group Assessment: Muddled Libra (Updated) 36,469 people reacted Threat Group Assessment: Muddled Libra (Updated) By Kristopher Russo, Austin Dever and Amer Elsad March 8, 2024 at 2:58 PM 40 13 min. read
Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (Volt Typhoon) 58,017 people reacted Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (Volt Typhoon) By Unit 42 February 14, 2024 at 2:30 PM 28 9 min. read
Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) 23,223 people reacted Threat Brief: Multiple Ivanti Vulnerabilities (Updated Feb. 29) By Unit 42 January 16, 2024 at 3:30 PM 88 19 min. read
Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific 9,021 people reacted Stately Taurus Targets the Philippines As Tensions Flare in the South Pacific By Unit 42 November 17, 2023 at 3:00 AM 93 6 min. read
Chinese APT Targeting Cambodian Government 11,764 people reacted Chinese APT Targeting Cambodian Government By Unit 42 November 7, 2023 at 9:01 PM 49 5 min. read
Conducting Robust Learning for Empire Command and Control Detection 3,226 people reacted Conducting Robust Learning for Empire Command and Control Detection By Qian Feng, Chris Navarrete, Yanhui Jia, Yu Fu, Iris Dai, Nina Smith and Brad Duncan November 1, 2023 at 3:00 AM 16 10 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) 51,152 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated Oct 4) By Unit 42 October 4, 2023 at 6:00 AM 69 10 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 7,917 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 4 5 min. read
Chinese Alloy Taurus Updates PingPull Malware 80,209 people reacted Chinese Alloy Taurus Updates PingPull Malware By Unit 42 April 26, 2023 at 3:00 AM 19 6 min. read
Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation 86,961 people reacted Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation By Unit 42 March 31, 2023 at 12:06 AM 19 5 min. read
Threat Brief: OWASSRF Vulnerability Exploitation 65,557 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 15 9 min. read
Cobalt Strike Analysis and Tutorial: Identifying Beacon Team Servers in the Wild 74,493 people reacted Cobalt Strike Analysis and Tutorial: Identifying Beacon Team Servers in the Wild By Durgesh Sangvikar, Chris Navarrete, Matthew Tennis, Yanhui Jia, Yu Fu and Siddhart Shibiraj November 3, 2022 at 6:00 AM 27 9 min. read
Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows 60,130 people reacted Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows By Shawn Westfall November 2, 2022 at 6:00 PM 18 7 min. read
Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) 80,794 people reacted Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) By Shawn Westfall October 4, 2022 at 4:30 PM 110 8 min. read