| Mar 1, 2022 Flash Notice: HermeticWizard, HermeticRansom, and IsaacWiper Target Ukraine This week, ESET researchers discovered three new cyber attacks against Ukraine: HermeticWizard, HermeticRansom, and IsaacWiper.
| Feb 24, 2022 Cyber Threat Hunting & Workflow (Prevent Cyber Attacks) Cyber threat hunting is a proactive security strategy that searches through networks to detect & isolate advanced threats before they present themselves.
| Feb 24, 2022 Flash Notice: [New Malware] - CISA Warns of Renewed Russian Threat as New Activity is Seen in Ukraine Tension between Russia and Ukraine is at an all-time high. While there are currently no credible threats to the U.S., there is still imminent possibility.
| Feb 22, 2022 Flash Notice: [CVE-2021-24086] Critical RCE Bug in Adobe Commerce, Magento On February 18, 2022, Adobe released a patch for CVE-2021-24086 that fixes an RCE bug in the Magento Open Source and Adobe Commerce platforms.
| Feb 15, 2022 Flash Notice: Moxa MXview Network Management Software has Critical Security Flaws On February 14, 2022, researchers from Claroty’s Team82 disclosed several security flaws in the Moxa MXview web-based network management system.
| Feb 9, 2022 Flash Notice: LockBit 2.0 - FBI Releases New IoCs for Ransomware Attacks On Friday, February 4, 2022, the FBI released technical details and new indicators of compromise associated with LockBit 2.0.
| Jan 26, 2022 Flash Notice: “PwnKit”: Linux PolicyKit Security Vulnerability Discovered in Polkit’s Pkexec, Hiding in Plain Sight for 12 years A memory corruption vulnerability was discovered in Polkit’s pkexec. CVE-2021-4034, aka PwnKit, could allow unprivileged users to gain root privileges by exploiting it in its default configuration.
| Jan 26, 2022 Flash Notice: Threat Actors Target SonicWall RCE Vulnerability (CVE-2021-20038) New exploits of a critical vulnerability (CVE-2021-20038) affecting SonicWall's Secure Mobile Access (SMA) gateway was discovered yesterday.
| Jan 19, 2022 Cybersecurity Best Practices & Principles [Updated 2022] In order to use more sophisticated cyber security tools & techniques, organizations need to have a decent understanding of cybersecurity best practices.
| Jan 18, 2022 Flash Notice: Microsoft Warns - Ukrainian Organizations Targeted by Destructive Malware Disguised as Ransomware Microsoft published a report detailing their discovery of malware disguised as ransomware being used to corrupt systems of several Ukrainian organizations.