In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 7,425 people reacted In-Depth Analysis of July 2023 Exploit Chain Featuring CVE-2023-36884 and CVE-2023-36584 By Eli Birkan, Dan Yashnik, Oriel Cochavi, Bar Lahav and Mike Harbison November 13, 2023 at 3:00 AM 76 18 min. read
Chinese APT Targeting Cambodian Government 8,840 people reacted Chinese APT Targeting Cambodian Government By Unit 42 November 7, 2023 at 9:01 PM 44 5 min. read
Conducting Robust Learning for Empire Command and Control Detection 1,964 people reacted Conducting Robust Learning for Empire Command and Control Detection By Qian Feng, Chris Navarrete, Yanhui Jia, Yu Fu, Iris Dai, Nina Smith and Brad Duncan November 1, 2023 at 3:00 AM 14 10 min. read
CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys 6,134 people reacted CloudKeys in the Air: Tracking Malicious Operations of Exposed IAM Keys By William Gamazo and Nathaniel Quist October 30, 2023 at 4:40 AM 22 15 min. read
Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) 6,938 people reacted Threat Brief: Cisco IOS XE Web UI Privilege Escalation Vulnerability (Updated) By Unit 42 October 18, 2023 at 5:30 PM 72 4 min. read
When a Zero Day and Access Keys Collide in the Cloud: Responding to the SugarCRM Zero-Day Vulnerability 5,752 people reacted When a Zero Day and Access Keys Collide in the Cloud: Responding to the SugarCRM Zero-Day Vulnerability By Margaret Zimmermann August 10, 2023 at 3:15 PM 16 13 min. read
Six Malicious Python Packages in the PyPI Targeting Windows Users 6,625 people reacted Six Malicious Python Packages in the PyPI Targeting Windows Users By Shaul Ben Hai July 11, 2023 at 6:00 AM 16 11 min. read
Analyzing Web Application and API Attacks: The Cloud as a Target and a Launch Pad 39,150 people reacted Analyzing Web Application and API Attacks: The Cloud as a Target and a Launch Pad By Aviv Sasson June 2, 2023 at 6:00 AM 9 5 min. read
Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon) 50,904 people reacted Threat Brief: Attacks on Critical Infrastructure Attributed to Insidious Taurus (aka Volt Typhoon) By Unit 42 May 26, 2023 at 2:30 PM 15 7 min. read
Network Security Trends: November 2022-January 2023 63,486 people reacted Network Security Trends: November 2022-January 2023 By Yiheng An May 2, 2023 at 6:00 AM 12 11 min. read
Threat Actors Rapidly Adopt Web3 IPFS Technology 77,375 people reacted Threat Actors Rapidly Adopt Web3 IPFS Technology By Amanda Tanner, Kristopher Bleich, Anthony Galiette and Joseph Opacki April 19, 2023 at 6:00 AM 9 16 min. read
Unit 42 Unveils Most ‘Expansive’ Cloud Threat Research Yet: Cloud Threat Report Volume 7 Examines the Expanding Attack Surface 72,944 people reacted Unit 42 Unveils Most ‘Expansive’ Cloud Threat Research Yet: Cloud Threat Report Volume 7 Examines the Expanding Attack Surface By Unit 42 April 18, 2023 at 3:00 AM 28 4 min. read
Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation 84,051 people reacted Threat Brief - CVE-2023-23397 - Microsoft Outlook Privilege Escalation By Unit 42 March 31, 2023 at 12:06 AM 19 5 min. read
Bee-Ware of Trigona, An Emerging Ransomware Strain 70,681 people reacted Bee-Ware of Trigona, An Emerging Ransomware Strain By Frank Lee and Scott Roland March 16, 2023 at 6:00 AM 27 18 min. read
Mitigating RBAC-Based Privilege Escalation in Popular Kubernetes Platforms 66,575 people reacted Mitigating RBAC-Based Privilege Escalation in Popular Kubernetes Platforms By Yuval Avrahami January 27, 2023 at 6:00 AM 30 9 min. read