Update Now: Microsoft Exchange Server Zero-Days
What Happened A China-based Advanced Persistent Threat (APT) actor codenamed HAFNIUM is known to be actively targeting U.S. organizations across multiple industry sectors, accordi...
Read MoreCritical VMware vCenter RCE (CVE-2021-21972) Exploits Released
What Happened Positive Technologies discovered a vulnerability in VMware vCenter/vSphere that allows an unauthenticated attacker to remotely execute code on the VMware hypervisor ...
Read MoreAnatomy of the SolarWinds Attack: Five Types of Malware
The term “malware” (short for “Malicious Software”) describes the software that is used to compromise or cause damage to a system or network. Essentially, malware is code w...
Read MoreMicrosoft to Enable Domain Controller Enforcement Mode by Default on Feb. 9
What Happened When CVE-2020-1472 was released on Aug 11, 2020, Microsoft addressed a critical remote code execution vulnerability targeting how the Netlogon secure channel is used...
Read MoreUpdate Blumira Sensors: Sudo Privilege Escalation (CVE-2021-3156)
What Happened? On January 26, a new critical vulnerability to the Sudo binary across nearly all Linux hosts was disclosed. Known as CVE-2021-3156, this vulnerability potentially a...
Read MoreSonicWall Privilege Escalation: CVE-2020-5144
As of late Friday morning, SonicWall was in the early stages of advising its customers of a breach which may have impacted its security products. While initial reports indicated a ...
Read More