Active exploitation of the ServiceNow RCE
Background ServiceNow provides a platform for corporate transformation. ServiceNow can be used for various purposes, including HR and employee administration, […]
CVE-2024-41110: Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins
Background Docker released an advisory on July 23, 2024, addressing a vulnerability in the authorization plugins (AuthZ) used to control […]
Recent CrowdStrike Outage and It Being Abused
Background On 19th July 2024, Friday, a critical disruption was unintentionally caused across several infrastructures and organizations by a regular […]
July 2024 – Microsoft Patch Tuesday Highlights
Background Microsoft has released the July 2024 Patch Tuesday updates to improve and reinforce its products’ security against a variety […]
Eldorado: A New Ransomware Targeting ESXi VMs
Background Researchers have noticed a consistent rise in ransomware attacks against VMware ESXi infrastructure and other virtualized systems in recent […]
regreSSHion: RCE Vulnerability in OpenSSH Server (CVE-2024-6387)
The Secure Shell (SSH) protocol, which is essential for secure communication over unprotected networks, is the foundation of the OpenSSH […]