Weekly Threat Landscape Digest – Week 18
This week’s threat landscape underscores the increasing sophistication of cyber adversaries, who are actively exploiting newly disclosed and unpatched vulnerabilities. […]
Weekly Threat Landscape Digest – Week 17
This week’s threat landscape reflects the continuous advancement of threat actors and their growing focus on exploiting newly disclosed and […]
FortiGate Devices Targeted by Persistent Symlink Backdoor: Over 16,000 Devices Compromised
FortiGate devices have become a target for cybercriminals due to a critical symlink vulnerability in FortiOS. With over 16,000 devices […]
Weekly Threat Landscape Digest – Week 16
This week’s threat landscape reflects the continuous advancement of threat actors and their growing focus on exploiting newly disclosed and […]
Weekly Threat Landscape Digest – Week 15
This week’s threat landscape reinforces the continuous evolution of threat actors and their increasingly advanced tactics. From targeted ransomware attacks […]
Fortinet Alert: Critical Flaw in FortiSwitch Lets Attackers Hijack Admin Accounts
Two critical vulnerabilities in VMware’s vCenter Server platform were recently patched by Broadcom, with the more severe of the two […]
Weekly Threat Landscape Digest – Week 14
This week’s cybersecurity developments highlight the growing sophistication of modern threats and the pressing need for a proactive, multi-layered defense […]
Weekly Threat Landscape Digest – Week 13
This week’s cybersecurity landscape underscores the increasing complexity of today’s threats and the critical importance of maintaining a proactive, layered […]
Weekly Threat Landscape Digest – Week 12
This week’s cybersecurity developments highlight the growing sophistication of modern threats and the need for a proactive and resilient security […]
Critical Remote Code Execution (RCE) Vulnerability in Apache Tomcat (CVE-2025-24813)
A newly discovered critical remote code execution (RCE) vulnerability (CVE-2025-24813) has been identified in Apache Tomcat, allowing attackers to fully […]
Weekly Threat Landscape Digest – Week 49
This week’s cybersecurity digest delves into critical vulnerabilities and emerging threat actor activities, underscoring the urgent need for proactive security […]
Weekly Threat Landscape Digest – Week 48
This week’s cybersecurity digest highlights multiple critical vulnerabilities and threat actor activities, emphasizing the importance of proactive mitigation strategies. Vulnerabilities […]
Microsoft November 2024 Patch Tuesday- Critical Updates and Key Vulnerabilities
Introduction Microsoft’s November 2024 Patch Tuesday addresses 87 vulnerabilities across its software suite, including critical zero-day vulnerabilities actively exploited in […]
Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited
Background Three recently identified zero-day vulnerabilities in Ivanti’s Cloud Service Appliance (CSA) are being actively exploited, the company has notified […]
CVE-2024-9487: Critical Vulnerability Affecting GitHub Enterprise Server
Background The most recent GitHub Enterprise Server (GHES) security update fixes three recently found vulnerabilities, one of which is a […]
Critical vulnerabilities in Palo Alto Expedition
Background To facilitate the process of transferring configurations from different vendors to Palo Alto Networks’ PAN-OS, Expedition is an enhanced […]
October 2024 – Microsoft patch tuesday highlights
Background Microsoft’s October 2024 Patch Tuesday updates are now available. They provide essential safety enhancements that IT professionals should apply. […]
CVE-2024-38812: VMware vCenter Server RCE Vulnerability
Background Two critical vulnerabilities in VMware’s vCenter Server platform were recently patched by Broadcom, with the more severe of the […]
September 2024 – Microsoft Patch Tuesday Highlights
Background Microsoft’s September 2024 Patch Tuesday rollout includes security patches for 79 vulnerabilities. Among these are four zero-days that are […]
CISA Warning: CVE-2024-38856 Apache OFBiz RCE Vulnerability under active exploitation
Background A pre-authentication vulnerability in Apache OFBiz can result in remote code execution. With a CVSS score of 9.8, the […]
CVE-2024-6800: A critical authentication bypass vulnerability affects the GitHub Enterprise Server
Background Concerns have been raised by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) over the potential exploitation of a […]
CVE-2024-40766: Critical SonicWall Firewall Vulnerability
Background SonicWall has released a patch to address a severe vulnerability discovered in certain SonicOS-based firewall devices. The vulnerability, CVE-2024-40766 […]
August 2024 – Microsoft Patch Tuesday Highlights
Background Microsoft’s August 2024 Patch Tuesday release includes security patches for 85 vulnerabilities. These are six actively exploited zero-day vulnerabilities […]
CVE-2024-37085: VMware ESXi Hypervisor Vulnerability Exploited by Ransomware Groups
Background On Monday, July 29, Microsoft issued a comprehensive threat intelligence blog detailing the observed exploitation of CVE-2024-37085, an Active […]