CVE-2023-47246 Detection: Lace Tempest Hackers Actively Exploit a Zero-Day Vulnerability in SysAid IT Software
This November, a set of new zero-days in the popular software products are emerging in the cyber domain, like CVE-2023-22518…
Threats
What Is Threat-Informed Defense?
Organizations have to constantly struggle with an avalanche of threats while relying on a straightforward and proactive method to dynamically…
Agonizing Serpens Attack Detection: Iran-Backed Hackers Target Israeli Tech Firms and Educational Institutions
The increasing menace posed by nation-state actors continuously increases with new sophisticated attack methods adopted by APT collectives and a…
China-Backed APT Attack Detection: Withstanding the Escalating Sophistication & Maturity of Chinese State-Sponsored Offensive Operations Based on the Recorded Future’s Insikt Group Research
In the last five years, Chinese nation-backed offensive campaigns have evolved into more sophisticated, stealthy, and well-coordinated threats as compared…
CVE-2023-22518 Detection: Exploitation of a New Critical Vulnerability in Atlassian Confluence Leads to Cerber Ransomware Deployment
Just over a month after the disclosure of a critical Confluence zero-day tracked as CVE-2023-22515, a novel vulnerability emerges in…
CVE-2023-46604 Detection: HelloKitty Ransomware Maintainers Exploits RCE Vulnerability in Apache ActiveMQ
At the turn of November, hot over the heels of disclosing CVE-2023-43208, the Mirth Connect vulnerability, another security bug comes…
CVE-2023-43208 Detection: NextGen’s Mirth Connect RCE Vulnerability Exposes Healthcare Data to Risks
Vulnerabilities affecting popular software expose thousands of organizations in diverse industry sectors to severe threats. October has been rich in…
Detection Content to Address Attacker Techniques Covered in the “Domain of Thrones: Part I” Research
Offensive forces continuously look for new ways to gain access to the domain environment and sustain their presence by leveraging…
CVE-2023-4966 Detection: Critical Citrix NetScaler Vulnerability Actively Exploited In the Wild
Adding to the list of critical Citrix NetScaler zero-days, security researchers warn of a new dangerous vulnerability (CVE0-2023-4966) continuously exploited…
GraphRunner Activity Detection: Hackers Apply a Post-Exploitation Toolset to Abuse Microsoft 365 Default Configurations
Microsoft 365 (M365) is leveraged by over a million global companies, which can pose severe threats to the customers relying…