Threat Group Assessment: Muddled Libra (Updated) 28,363 people reacted Threat Group Assessment: Muddled Libra (Updated) By Kristopher Russo, Austin Dever and Amer Elsad September 15, 2023 at 6:00 AM 16 11 min. read
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers 6,325 people reacted Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Servers By Unit 42 July 28, 2023 at 4:00 PM 3 5 min. read
Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7) 45,587 people reacted Threat Brief - MOVEit Transfer SQL Injection Vulnerabilities: CVE-2023-34362, CVE-2023-35036 and CVE-2023-35708 (Updated July 7) By Unit 42 June 6, 2023 at 2:30 PM 35 7 min. read
Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon) 50,183 people reacted Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon) By Unit 42 May 26, 2023 at 2:30 PM 15 7 min. read
Chinese Alloy Taurus Updates PingPull Malware 78,729 people reacted Chinese Alloy Taurus Updates PingPull Malware By Unit 42 April 26, 2023 at 3:00 AM 18 6 min. read
Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation 83,232 people reacted Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation By Unit 42 March 31, 2023 at 12:06 AM 18 5 min. read
Threat Brief: OWASSRF Vulnerability Exploitation 64,450 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 14 9 min. read
Cobalt Strike Analysis and Tutorial: Identifying Beacon Team Servers in the Wild 72,108 people reacted Cobalt Strike Analysis and Tutorial: Identifying Beacon Team Servers in the Wild By Durgesh Sangvikar, Chris Navarrete, Matthew Tennis, Yanhui Jia, Yu Fu and Siddhart Shibiraj November 3, 2022 at 6:00 AM 26 9 min. read
Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows 59,384 people reacted Threat Brief: CVE-2022-3786 and CVE-2022-3602: OpenSSL X.509 Buffer Overflows By Shawn Westfall November 2, 2022 at 6:00 PM 18 7 min. read
Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) 79,480 people reacted Threat Brief: CVE-2022-41040 and CVE-2022-41082: Microsoft Exchange Server (ProxyNotShell) By Shawn Westfall October 4, 2022 at 4:30 PM 110 8 min. read