Severity Medium Analysis Summary CVE-2023-40068 Advanced Custom Fields plugin for WordPress and Advanced Custom Fields Pro plugin for WordPress is vulnerable to cross-site scripting, caused by […]

Severity High Analysis Summary Lumma is an information stealer that is sold as a Malware-as-a-Service (MaaS) on Russian-speaking underground forums and Telegram. Lumma is an information […]

Severity High Analysis Summary Stealc is a new malware that was first marketed by an actor named Plymouth on the XSS and BHF Russian-speaking underground forums […]

Severity High Analysis Summary Kimsuky is a North Korean advanced persistent threat (APT) group, also known as “Black Banshee”. The group has been active since at […]

Severity High Analysis Summary CVE-2022-46751 Apache Ivy could allow a remote attacker to obtain sensitive information, caused by improper handling of XML external entity (XXE) declarations […]

Severity High Analysis Summary Gafgyt is a type of malware that is used to conduct Distributed Denial of Service (DDoS) attacks. These attacks involve overwhelming a […]

Severity High Analysis Summary A significant security vulnerability has been resolved in WinRAR v6.22, a widely-used Windows utility for archiving files. Tracked as CVE-2023-40477, this flaw […]

Severity Medium Analysis Summary AsyncRAT is an open-source tool designed for remote monitoring via encrypted connections. However, it could be utilized by threat actors as it […]

Severity High Analysis Summary Patchwork is an Advanced Persistent Threat (APT) group that has been active since at least 2014. Patchwork primarily targets government, defense, and […]