Mid-2023 Cyber Threat Briefing for UK SME Sector
As we move through 2023, the cyber threat landscape continues to evolve, yet some things remain the same. The UK SME sector, like many others around the globe, continues to…
The Rising Threat of Abyss Locker Ransomware to VMware’s ESXi Servers
A long overdue update to the Abyss Locker is shared here. A new emerging threat, Abyss Locker ransomware has been making headlines for its targeted attacks on VMware’s ESXi virtualised…
The Hidden Dangers of Android’s Patch Delays: N-Days Masquerading as Zero-Days
Google’s annual 0-day vulnerability report has brought to light a persistent issue within the Android platform that increases the risk and usage of disclosed vulnerabilities for extended periods. The report…
CVE-2023-21716: A Critical Heap Corruption Vulnerability in Microsoft Word
CVE-2023-21716 (NVD), a critical flaw in Microsoft Office Word’s RTF parser, has been a focal point in the cybersecurity community since its private disclosure to Microsoft in November 2022. Microsoft…
The Cascading Effect of Vulnerability Discovery
The announcement of a Common Vulnerabilities and Exposures (CVE) identifier for a product often triggers a cascade of further vulnerability discoveries in the same product. This phenomenon, known as the…
Ivanti Patches another Zero-Day Exploited in Norwegian Government Attacks – Active Exploitation Observed
Ivanti has patched another critical vulnerability in its Endpoint Manager Mobile software (formerly MobileIron Core), which was exploited as a zero-day to breach the IT systems of several ministries in…
CVE-2023-37580 Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability
Introduction Zimbra Collaboration Suite (ZCS) is an open-source email collaboration suite widely used by a variety of organizations, including government agencies, universities, and companies. It has been the target of…
High Severity RCE Vulnerability in Atlassian’s Confluence Data Center & Server
Atlassian, a leading provider of team collaboration and productivity software, has recently addressed a high severity Remote Code Execution (RCE) vulnerability in its Confluence Data Center & Server. The vulnerability,…
MikroTik RouterOS Vulnerability: CVE-2023-30799
Introduction In a recent blog post by VulnCheck, a vulnerability in MikroTik RouterOS was discussed in detail. The vulnerability, identified as CVE-2023-30799, affects MikroTik RouterOS up until version 6.49.8 (July…
The Future of APT Analysis: Navigating the Evolving Threat Landscape
The cybersecurity landscape is a complex and ever-evolving space, with Advanced Persistent Threat (APT) actors and ransomware attackers continuously developing their skills and learning from their mistakes and peers. As…