ذكاء التهديدات

CloudSEK threat intelligence advisory on UNC2452 compromised a module in the SolarWinds Orion IT monitoring and management system.

Access to Acronis Cloud instance used by 43 US-based companies on sale.

Private crypting services offer strong protection and obfuscation. Any malicious tool can be encrypted to avoid detection by antivirus software or reverse engineering.

A blind XML External Entity (XXE) injection vulnerability in Wordpress, tracked as CVE-2021-29447 allows authenticated users to steal files.

CloudSEK Threat Intelligence Advisory on Windows SMBv3 RCE, tracked as CVE-2020-0796, rated as critical with a CVSS score of 9.0.

VenomRAT is a remote access tool discovered by 2020, and it is used by threat actors to control the infected systems remotely.

CloudSEK discovers leaked database that contains sensitive information of management job site users, which includes username, phone number.

CloudSEK’s contextual AI digital risk platform XVigil discovered an unprecedented, sophisticated phishing technique, commonly known as Browser-in-the-Browser (BitB) attack, that has been targeting government websites across the world, including India.