Another Series of Critical CVE for QNAP
Three of the other bugs QNAP warned its customers about also received 9.8/10 severity ratings (i.e., CVE-2022-23125, CVE-2022-23122, CVE-2022-0194), all of them also
Read more
Risk
Atlassian Authentication Bypass
Atlassian has published a security advisory to alert that its Jira and Jira Service Management products are affected by a
Read more
Apache Struts Remote Code Execution
Forced OGNL evaluation, when evaluated on raw not validated user input in tag attributes, may lead to remote code execution
Read more
PANOS OpenSSL Updates
The Palo Alto Networks Product Security Assurance team is evaluating the OpenSSL infinite loop vulnerability (CVE-2022-0778) as it relates to
Read more
Sonicwall Critical Firewall Patch
Date: March 29th, 2021 Risk: Critical CVE: CVE-2022-22274 Security hardware manufacturer SonicWall has fixed a critical vulnerability in the SonicOS security operating
Read more
Google Releases Emergency Patch for Zero-Day
Date: March 28th, 2021 Risk: Critical CVE: CVE-2022-1096 Affected Versions: Versions prior to 99.0.4844.84 Google has urged its 3 billion+ users to update to
Read more
Sophos Firewall Authentication bypass
Date: March 28th, 2021 Risk: Critical CVE: CVE-2022-1040 Affected Versions: Sophos Firewall v18.5 MR3 (18.5.3) and older Summary Sophos on Friday announced
Read more
Weekly Round-Up Chrome Zero-Day
Daily Round of IOC Daily dump of IOC with more to follow where a regular IOC feed will be crafted.
Read more
Trickbot Malware Review
Technical Details TrickBot is an advanced Trojan dating back to 2016 that malicious actors spread primarily by spearphishing campaigns using
Read more
Conti Group – Indicators of Compromise
Since the end of February, we have seen news about Conti Group including leaked information and which included detailed operations
Read more