Network Virtualization Could Lead to Privilege Escalation in AWS
A vulnerability in a library created by network virtualization firm Eltima and used by a variety of vendors, including Amazon has left more than a dozen cloud services vulnerable to…
Google Cloud IDS Generally Available for Network Threat Detection
Google announced that its Cloud IDS for network based threat detection is now generally available. The service acronym refers to “intrusion detection system,” is designed as a cloud native managed…
Windows Drive-By RCE Haunts.!
A drive-by remote code execution (RCE) vulnerability in Windows 10 that can be triggered simply by clicking a malicious URL could allow attackers full access to a victim’s files and…
Emotet Directs Cobalt Strike Now !
Emotet now directly installs the Cobalt Strike Beacon, giving threat actors immediate network access and making ransomware attacks imminent. Ironically, Emotet is a malware that spreads by spam emails containing…
QNAP Cryptomined
QNAP warns customers of threat actors targeting their NAS devices with cryptocurrency miners. Upon compromising the devices, the miner will create a new process named [oom_reaper] that allows threat actors…
Grafana Vulnerability
Open-source analytics and interactive visualization solution Grafana received an emergency update today to fix a high-severity, zero-day vulnerability that enabled remote access to local files. Grafana 8.3.1, 8.2.7, 8.1.8, and…
Rubrik Cloud Vault for Azure
Data security provider Rubrik announced Rubrik Cloud Vault, a fully managed, secure, and isolated cloud archival service built on Microsoft Azure that helps customers secure their data and defend against…