Cybercriminals Offer Malvertisement-as-a-Service by Abusing Google Ads
Increase in supply and demand for services that are abusing Google Ads to deliver malware payloads and loaders, across various dark web and cybercrime forums.
May 20, 2022
Latest Threat Intel. Here and Now.
Darkweb Mentions
Redline Stealer Exploits CVE-2022-1096 in Chromium Browsers to Target Millions of Users
Category: Vulnerability Intelligence Vulnerability Class: Access of Resource Using Incompatible Type CVE ID: CVE-2022-1096 CVSS:3.0 Score: 9.1 Executive Summary CloudSEK’s Threat Research Team has
May 12, 2022
Axxes Ransomware Group Appears to be the Rebranded Version of Midas Group
We have discovered a financially motivated threat actor group, named Axxes ransomware, that is considered to be a rebrand of a formerly known Midas ransomware group.
May 11, 2022
Missing Endpoint Authentication in F5 BIG-IP Leads to Remote Code Execution
The severity of the newly identified vulnerability CVE-2022-1388 is present in the F5 BIG-IP. The vulnerability was identified by F5 internally and a patch was released but the difference in code allowed threat actors to make a working exploit for the CVE.
May 11, 2022
Cyber Attacks on Energy Sector: Targeting US, Middle East, & South America
We are unearthing the scale and scope of cyber threats targeting oil and energy companies across the world. This might be a Russian state-sponsored cyberattack on the Energy Sectors of their competitors.
April 22, 2022
AutoWarp Vulnerability: How hackers unauthorisedly accessing Microsoft Azure Accounts
AutoWarp vulnerability in the Azure Automation service that allows unauthorized access to other Azure customer accounts.
April 20, 2022
Multiple VMware Products Found Vulnerable to Server-Side Template Injection CVE-2022-22954
Category: Vulnerability Intelligence Vulnerability Class: Server-Side Template Injection/RCE CVE ID: CVE-2022-22954 CVSS:3.0 Score: 9.8 Executive Summary CloudSEK’s Customer Threat Research Team analyzed remote code
April 15, 2022
Android Malware Targeting Indian Banks
CloudSEK’s Customer Threat Research Team discovered a malware sample in the wild (ITW) that targeted the customers of Indian Banks.
April 4, 2022
Unpatched Java Spring Core Zero-Day Vulnerability: “Spring4Shell”
Category: Vulnerability Intelligence Vulnerability Class: Remote code execution CVE ID: To be assigned CVSS:3.0 Score: To be assigned Spring4Shell – Executive Summary A new critical zero-day vulnerability in the
March 31, 2022
Google Zero Day Vulnerability (CVE-2022-1096) Affects 3.2 Billion Chrome Users
Category: Vulnerability Intelligence Vulnerability Class: Zero-Day Vulnerability CVE ID: CVE-2022-1096 CVSS:3.0 Score: To be assigned Executive Summary Google released a security update to patch a critical zero-day vulnerability in
March 30, 2022
Not another Threat intel platform
Threatintel Redefined
Keep up with the latest strains of Malware, Phishing Lures, Indicators of Compromise, and Data Leaks which are precise and Specific.
Get Alerted
Sign up for our Daily Cyber Brief, and be the first to receive the latest cyber news and threat alerts, from across the world.
CloudSEK is a Digital risk protection Enterprise HQ in Singapore
Product and Modules
About us