SUMMARY The Lazarus hacking group exploited a zero-day vulnerability in the Windows AFD.sys driver (CVE-2024-38193) to elevate privileges and...
Lazarus Group Exploits Windows Driver Zero-Day to Deploy Rootkit
read more
Threat Advisories
PEAKLIGHT Dropper Exploits Windows Systems via Pirated Movie Downloads to Deliver Malware
SUMMARY A novel dropper that launches PowerShell-based malware to infect Windows systems has been identified, which is distributed through...
Critical Kubernetes Flaw Exposes Clusters to Command Injection Attacks
SUMMARY A critical Kubernetes vulnerability allows attackers to execute command injection attacks, affecting default installations across...
OpenVPN Vulnerabilities Lead to RCE and LPE
SUMMARY Microsoft reported four medium-severity vulnerabilities in OpenVPN that could be combined to enable remote code...
Malware Campaign with Malicious Chrome and Edge Extensions
SUMMARY A current malware campaign is using malicious Google Chrome and Microsoft Edge extensions to install a trojan via...
Black Basta Ransomware Gang Changes Tactics
Summary The Black Basta ransomware gang has changed tactics since the disruption of its partner QBot. The group is now employing new custom...
Threat Advisory *CRITICAL* – CrowdStrike Causing Widespread Global Outages
CrowdStrike Causing Widespread Global Outages Summary An update pushed out by CrowdStrike within the past 12 hours has caused widespread...
Exim Mail Server Flaw
Exim Mail Server Flaw Summary A critical security vulnerability has been identified in the Exim mail transfer agent, potentially allowing...
EstateRansomware Threat Group Exploiting Veeam Backup Software Vulnerability (CVE-2023-27532)
EstateRansomware Threat Group Exploiting Veeam Backup Software Vulnerability (CVE-2023-27532) Summary A flaw in Veeam Backup & Replication...
FakeBat Loader Malware Spreading Rapidly
FakeBat Loader Malware Spreading Rapidly Summary FakeBat, a loader-as-a-service (LaaS) utilizes the drive-by download technique to download...