| Aug 5, 2022 Flash Notice: Large Scale Phishing Attack Targeting Microsoft Email Servers A large-scale phishing campaign disclosed this week is primarily targeting corporate enterprise users of Microsoft email servers.
| Jul 29, 2022 Flash Notice: Atlassian Confluence Critical Hardcoded Password Vulnerability Under Active Exploitation A hardcoded credentials vulnerability was found by Atlassian last week in the Questions for Confluence app and is under active exploitation.
| Jul 14, 2022 Flash Notice: [CVE-2022-22047] Microsoft Zero-Day Actively Exploited, Impacting Server & Client Windows Platforms A zero-day, local privilege escalation vulnerability was found in the latest Widows 11 & Windows Server 2022 releases. It's being tracked as CVE-2022-22047
| Jul 13, 2022 Flash Notice: New Ransomware Family, HavanaCrypt, Disguises Itself as Fake Google Update Researchers at Trend Micro discovered a new ransomware family that’s being delivered as a fake Google software update - HavanaCrypt.
| Jul 6, 2022 Google Chrome Zero-Day Vulnerability Exploit [CVE-2022-2294] Over the 4th of July weekend, Google released a patch for a high-severity zero-day Chrome vulnerability. Learn everything you need to know in our blog.
| Jun 27, 2022 Flash Notice: [CVE-2022-29499] Critical Zero-Day Vulnerability Found in Mitel VoIP Appliance A ransomware attack was deployed against an unnamed mark using Mitel’s VoIP appliance as an entry point. CVE-2022-29499 is actively being used in the wild
| Jun 6, 2022 Flash Notice: Critical Confluence Zero-Day Vulnerability Exploited by Attackers A critical unpatched remote code execution vulnerability (CVE-2022-26134) was found in Atlassian’s Confluence Server and Data Center products.
| Jun 1, 2022 Flash Notice: "Follina" a Microsoft Office Zero-Day RCE Vulnerability Over the holiday weekend, a Windows/Office zero-day vulnerability, given the name Follina, was discovered and found to be exploited in the wild.
| May 20, 2022 Flash Notice: VMWare Vulnerabilities Found in Multiple Products 5/19/22 - VMware issued patches for security flaws CVE-2022-22972 & CVE-2022-22973 found in Workspace ONE Access, Identity Manager, + vRealize Automation.
| May 18, 2022 CVE-2022-1040: Critical Sophos Firewall RCE Vulnerability CVE-2022-1040 is an authentication bypass vulnerability located in the User Portal and Webadmin areas of Sophos Firewall. Learn more!
