Volt Typhoon: International Cybersecurity Authorities Detail Activity Linked to Chinese-State Sponsored Threat ActorMay 25, 2023
Volt Typhoon: International Cybersecurity Authorities Detail Activity Linked to Chinese-State Sponsored Threat Actor Several international cybersecurity authorities from the United States, Unit...
U.S. and Australian Agencies Publish Joint Cybersecurity Advisory on BianLian Ransomware GroupMay 18, 2023
U.S. and Australian Agencies Publish Joint Cybersecurity Advisory on BianLian Ransomware Group The FBI, ACSC and CISA have released a joint cybersecurity advisory discussing the BianLian ransom...
Microsoft’s May 2023 Patch Tuesday Addresses 38 CVEs (CVE-2023-29336)May 9, 2023
Microsoft addresses 38 CVEs including three zero-day vulnerabilities, two of which were exploited in the wild.
CVE-2023-20864: VMware Aria Operations for Logs Deserialization VulnerabilityApril 21, 2023
VMware issues advisory to address two flaws in its VMware Aria Operations for Logs solution, including a critical deserialization flaw assigned a CVSSv3 score of 9.8. Background On April 20, V...
Oracle April 2023 Critical Patch Update Addresses 231 CVEsApril 19, 2023
Oracle April 2023 Critical Patch Update Addresses 231 CVEs Oracle addresses 231 CVEs in its second quarterly update of 2023 with 433 patches, including 74 critical updates. Background On ...
Microsoft’s April 2023 Patch Tuesday Addresses 97 CVEs (CVE-2023-28252)April 11, 2023
Microsoft’s April 2023 Patch Tuesday Addresses 97 CVEs (CVE-2023-28252) Microsoft addresses 97 CVEs, including one that was exploited in the wild as a zero day 7Critical 90Important 0Moderat...
3CX Desktop App for Windows and macOS Reportedly Compromised in Supply Chain AttackMarch 30, 2023
A softphone desktop application from 3CX, makers of a popular VoIP PBX solution used by over 600,000 organizations, has reportedly been trojanized as part of a supply chain attack
OpenAI’s ChatGPT and GPT-4 Used as Lure in Phishing Email, Twitter Scams to Promote Fake OpenAI TokensMarch 17, 2023
Hoping to cash in on the massive interest around OpenAI’s GPT-4 – ChatGPT’s new multimodal model – scammers have launched phishing campaigns via email and Twitter designed to steal cryptocurrency. Check out how they’re carrying out the scams and how you can avoid becoming a victim.
Microsoft’s March 2023 Patch Tuesday Addresses 76 CVEs (CVE-2023-23397)March 14, 2023
Microsoft’s March 2023 Patch Tuesday Addresses 76 CVEs (CVE-2023-23397) Microsoft addresses 76 CVEs including two zero-days exploited in the wild, one of which was publicly disclosed. 9Critica...
FBI and CISA Release Cybersecurity Advisory on Royal Ransomware GroupMarch 3, 2023
The FBI and CISA have released a joint Cybersecurity Advisory discussing the Royal ransomware group.
South Korean and American Agencies Release Joint Advisory on North Korean RansomwareFebruary 16, 2023
Several South Korean and American agencies have released a joint cybersecurity advisory on North Korean state-sponsored ransomware operators.
Microsoft’s February 2023 Patch Tuesday Addresses 75 CVEs (CVE-2023-23376)February 14, 2023
Microsoft’s February 2023 Patch Tuesday Addresses 75 CVEs (CVE-2023-23376) Microsoft addresses 75 CVEs including three zero-day vulnerabilities that were exploited in the wild. 9Critical 66Im...