Threat Overview A significant cyber threat has been identified and detailed in a report published by AlienVault. The report, titled "No Honor Among Thieves: Uncovering a Trojanized XWorm RAT Builder Propagated by Threat Actors and Disrupting
Continue ReadingAuthor: essadmin
Threat Report: Hidden in Plain Sight – PDF Mishing Attack
Threat Overview A sophisticated phishing campaign targeting mobile devices has been discovered, hiding malicious links within PDF files using an advanced obfuscation technique. Disguised as documents from the United States Postal Service (USPS), this novel attack
Continue Reading
Cyber Threat Report: CISA Adds Aviatrix Vulnerability to Exploited List
Threat Overview Cybersecurity and Infrastructure Security Agency (CISA) has added a new vulnerability, CVE-2024-50603 affecting Aviatrix software-defined network (SDN), to its Known Exploited Vulnerabilities catalog. This addition serves as a warning to organizations that this vulnerability
Continue Reading
Threat Report: 2024 macOS Malware Review | Infostealers, Backdoors, and APT Campaigns Targeting the Enterprise
Threat Overview The year 2024 witnessed a significant surge in malware campaigns targeting macOS users, especially within enterprise environments. Published by SentinelOne, the threat report titled "2024 macOS Malware Review" underscored the growing sophistication and prevalence
Continue Reading
Threat Report: MintsLoader – StealC & BOINC Delivery
Threat Overview The eSentire Threat Response Unit has identified a sophisticated malware campaign involving MintsLoader, a PowerShell-based malware loader, targeting organizations in the US and Europe. This report provides insights into the tactics, techniques, procedures (TTPs),
Continue Reading
Cyber Threat Report: Ivanti Vulnerabilities Exploited in the Wild
Threat Overview A recently published threat report by AlienVault, titled "Threat Brief: CVE-2025-0282 and CVE-2025-0283", highlights critical vulnerabilities in Ivanti Connect Secure, Policy Secure, and ZTA gateway products that are being actively exploited. Vulnerabilities The report
Continue Reading
Threat Report: Under the Cloak of UEFI Secure Boot – Introducing CVE-2024-7344
Threat Overview Researchers at ESET have uncovered a critical vulnerability in the Universal Extended Firmware Interface (UEFI) Secure Boot system that could allow attackers to bypass security measures on most systems worldwide. The threat report, published
Continue Reading
PSIRT Threat Report: FortiGuard Labs Security Incident Response
Threat Overview FortiGuard Labs has published a comprehensive threat report on security incident response, providing insights and recommendations for organizations to improve their response capabilities. Published on 2025-01-15, the report titled "PSIRT | FortiGuard Labs" highlights
Continue Reading
Threat Report: fasthttp Used in New Bruteforce Campaign
Threat Overview SpearTip has published a report detailing a new brute-force campaign leveraging the fasthttp library to gain unauthorized access to accounts. The campaign targets Azure Active Directory Graph API, resulting in a high volume of
Continue Reading
Threat Report: Deep Dive Into Linux Rootkit Malware
Threat Overview A recent threat report published by AlienVault provides insights into a malicious Linux rootkit malware that has been used to compromise CentOS systems. The report, titled "Deep Dive Into a Linux Rootkit Malware", highlights
Continue Reading