Zero-Day RCE Vulnerability CVE-2021-44228 aka Log4Shell Affects Java
Note: Blumira is not impacted by this vulnerability; our sensors do not utilize Java or Log4j at all, nor does our application infrastructure. Update 12/14 @ 9 AM ET: We discove...
Read MoreCritical Bugs Discovered In SonicWall SMA 100 Series Appliances
What Happened? Multiple bugs were discovered in SonicWall’s Secure Mobile Access (SMA) 100 Series VPN appliances. These bugs range from medium to critical, with more severe flaw...
Read MoreCVE 2021-42321: Microsoft Exchange RCE Vulnerability
What Happened Security researcher Janggggg (@testanull on Twitter) published a proof-of-concept exploit for CVE-2021-42321, a remote code execution (RCE) vulnerability in Microsof...
Read MoreZero-Day Windows Vulnerability for Admin Rights
What Happened? Security researcher Abdelhamid Naceri discovered a privilege escalation vulnerability in Microsoft Windows that can give admin rights to threat actors. The vul...
Read MoreMicrosoft MSHTML CVE-2021-40444 Zero-Day Windows Target
What Happened Microsoft, Mandiant and EXPMON researchers discovered a set of flaws in MSHTML (Internet Explorer’s browser engine) that remote, unauthenticated attackers can use ...
Read MoreNTLM Relay Attack PetitPotam Targets AD Certificate Services
What Happened? Lionel Gilles, a French-based Offensive Computer Security researcher at Sogeti, an IT services company based in Paris, France (@topotam77 on Twitter), recently publ...
Read MoreSAM Database in Windows 10 (HiveNightmare)
What Happened? On July 13, Microsoft released CVE-2021-33757, which enabled AES encryption by default to the remote protocol connection for MS-SAMR to mitigate the downgrade to RC...
Read MoreLessons Learned From REvil’s Ransomware Attack On Kaseya
On Friday, July 2, a vulnerability in Kaseya’s on-premises VSA software was used to launch a REvil “supply-chain” ransomware attack. The attack impacted 50 MSPs and up to 1,5...
Read MoreVerizon’s DBIR 2021 Highlights Threat Detection and Response
The 2021 edition of Verizon’s Data Breach Investigations Report (DBIR) highlighted the rise of ransomware and the importance of security monitoring, among other key cybersecurity...
Read MoreUpdate Blumira Sensors: Sudo Privilege Escalation (CVE-2021-3156)
What Happened? On January 26, a new critical vulnerability to the Sudo binary across nearly all Linux hosts was disclosed. Known as CVE-2021-3156, this vulnerability potentially a...
Read More