Threats

CVE-2023-22515 Detection: A Critical Zero-Day in Confluence Data Center & Server Under Active Exploitation

Atlassian has recently notified defenders of a critical privilege escalation vulnerability in its Confluence software. The uncovered issue identified as…

rooter October 5, 2023

Threats

Unmasking the Most Dangerous APTs Targeting the Financial Sector

Fortifying Your Defense with SOC Prime Platform Financial organizations have always been a juicy target for nation-backed adversaries since they…

rooter October 3, 2023

Threats

CVE-2023-42793 Detection: An Authentication Bypass Vulnerability Leading to RCE on JetBrains TeamCity Server

Hot on the heels of the adversary campaigns abusing the CVE-2023-29357 vulnerability in Microsoft SharePoint Server causing a pre-auth RCE…

rooter September 29, 2023

Threats

CVE-2023-29357 Detection: Microsoft SharePoint Server Elevation of Privilege Vulnerability Exploitation Can Lead to Pre-Auth RCE Chain

Threat actors frequently set eyes on Microsoft SharePoint Server products by weaponizing a set of RCE vulnerabilities, such as CVE-2022-29108…

rooter September 27, 2023

Threats

Engage, Empower, and Enjoy SOC Prime’s Community on Discord

Balance Your Cybersecurity Journey with a Single Community for Collective Cyber Defense In the ever-evolving landscape of technology, finding a…

rooter September 25, 2023

Threats

Snatch Ransomware Detection: FBI & CISA Issue a Joint Alert Warning of Growing Attacks by Snatch RaaS Operators

Proactive ransomware detection remains one of the top priorities for defenders, marked by a rise in intrusion complexity and continuously…

rooter September 21, 2023

Threats

CVE-2023-38146 Detection: Windows “ThemeBleed” RCE Bug Poses Growing Risks with the PoC Exploit Release

The new Microsoft Windows Themes security bug tracked as CVE-2023-38146, which enables attackers to perform RCE, emerges in the cyber…

rooter September 19, 2023

Threats

ShadowPad Trojan Detection: Redfly Hackers Apply a Nefarious RAT to Hit National Power Grid Organization in Asia

ShadowPad backdoor is popular among multiple state-backed APTs, including China-linked hacking groups, widely used in their cyber espionage campaigns. A…

rooter September 14, 2023

Threats

SOC Prime Threat Bounty Digest — August 2023 Results

Threat Bounty monthly digests cover what’s happening in the SOC Prime Threat Bounty community. Each month, we publish the Program…

rooter September 12, 2023

Threats

Frequent SIGMA Mistakes Series

Part 1: Unintentional Escaped Wildcards Overview of Series This is part 1 of a multi-part series covering frequent mistakes SOC…

rooter September 12, 2023

Threats

CVE-2023-22515 Detection: A Critical Zero-Day in Confluence Data Center & Server Under Active Exploitation

Unmasking the Most Dangerous APTs Targeting the Financial Sector

CVE-2023-42793 Detection: An Authentication Bypass Vulnerability Leading to RCE on JetBrains TeamCity Server

CVE-2023-29357 Detection: Microsoft SharePoint Server Elevation of Privilege Vulnerability Exploitation Can Lead to Pre-Auth RCE Chain

Engage, Empower, and Enjoy SOC Prime’s Community on Discord

Snatch Ransomware Detection: FBI & CISA Issue a Joint Alert Warning of Growing Attacks by Snatch RaaS Operators

CVE-2023-38146 Detection: Windows “ThemeBleed” RCE Bug Poses Growing Risks with the PoC Exploit Release

ShadowPad Trojan Detection: Redfly Hackers Apply a Nefarious RAT to Hit National Power Grid Organization in Asia

SOC Prime Threat Bounty Digest — August 2023 Results

Frequent SIGMA Mistakes Series

You Missed

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

OpenAI now wants ChatGPT to access your bank accounts

Samuel L. Jackson Is Just a Huge Fan of ‘The Boys,’ Apparently

Does Trump Mobile know how many stripes are on the American flag?

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Threats

You Missed

Oh hi there 👋It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Oh hi there 👋
It’s nice to meet you.