Blog
-
Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN
Since early August, there has been a significant increase in Fog and Akira ransomware intrusions targeting SonicWall SSL VPN users…
-
Increased Fog and Akira Ransomware Activity Linked to SonicWall SSL VPN
Since early August, there has been a significant increase in Fog and Akira ransomware intrusions targeting SonicWall SSL VPN users…
-
Investigating FortiManager ZeroDay Exploitation (CVE202447575)
A new threat cluster, UNC5820, has been observed exploiting a zero-day vulnerability in FortiManager appliances across multiple industries. The vulnerability…
-
Investigating FortiManager ZeroDay Exploitation (CVE202447575)
A new threat cluster, UNC5820, has been observed exploiting a zero-day vulnerability in FortiManager appliances across multiple industries. The vulnerability…
-
Investigating FortiManager ZeroDay Exploitation (CVE202447575)
A new threat cluster, UNC5820, has been observed exploiting a zero-day vulnerability in FortiManager appliances across multiple industries. The vulnerability…
-
Understanding the Initial Stages of Web Shell and VPN Threats: An MXDR Analysis
This analysis examines two cybersecurity incidents: a web shell attack and a VPN compromise. The web shell attack involved uploading…
-
New Bumblebee Loader Infection Chain Signals Possible Resurgence
A new infection chain for the Bumblebee loader malware has been discovered, potentially indicating its resurgence after Operation Endgame. The…
-
Inside the Latrodectus Malware Campaign
The Latrodectus malware campaign employs a combination of traditional phishing techniques and innovative payload delivery methods to target financial, automotive,…
-
Analyzing the familiar tools used by the Crypt Ghouls hacktivists
The Crypt Ghouls group is targeting Russian businesses and government agencies with ransomware attacks. They utilize a toolkit including utilities…
-
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
Unknown threat actors have been observed attempting to exploit a now-patched security flaw…