Sharp panda 🐼 APT
Posted inAPT cybersecurity Security

Sharp panda 🐼 APT

Researchers discovered a new backdoor while investigating a cyber espionage campaign conducted by Chinese APT group SharpPanda and aimed at Southeast Asian government’s Ministry of Foreign Affairs. The attackers use…
Sonic Wall NSM Critical bug

Sonic Wall NSM Critical bug

SonicWall urges customers to 'immediately' patch a post-authentication vulnerability impacting on-premises versions of the Network Security Manager (NSM) multi-tenant firewall management solution. The vulnerability tracked as CVE-2021-20026 affects NSM 2.2.0-R10-H1…
Vcenter RCE : Patch to escape

Vcenter RCE : Patch to escape

VMware is urging its vCenter users to update vCenter Server versions 6.5, 6.7,7.0 . Since a pair of Vulnerability persist in the Vcenter. CVSSv3 scores, CVE-2021-21985 hit an 9.8, while…
Lemon Ducks Exchange Servers

Lemon Ducks Exchange Servers

ProxyLogon exploit, impact on-prem Microsoft Exchange Server 2013, 2016, and 2010. Patches, vulnerability detection tools, and mitigation instructions were made available in March, but it is still estimated that up…
Zero Day Everywhere

Zero Day Everywhere

Zero-day vulnerabilities are among the deadliest threats leveraged by attackers to accomplish their malicious attacks. Damage done by recent ProxyLogon zero-day attacks. Several cybercriminals are continuously striving to discover new…
Malware traffic too TLS Encypted

Malware traffic too TLS Encypted

After years of warnings about security, surveillance, and unwanted state intrusion, one group of internet-connected folk has taken heed: malware operators. Just under half of malware traffic it saw in…
VPN Vulnerabilities Exposed

VPN Vulnerabilities Exposed

Russian APT operators are exploiting five known -- and already patched -- vulnerabilities in corporate VPN infrastructure products, insisting it is “critically important” to mitigate these issues immediately. The five…
Cring Ransomware Exploits Forti OS Bug

Cring Ransomware Exploits Forti OS Bug

Threat actors are actively exploiting the CVE-2018-13379 path traversal vulnerability in Fortinet VPNs to deploy a new piece of ransomware, tracked as Cring ransomware to organizations in the industrial sector.…