Severity High Analysis Summary CVE-2023-33170 CVSS:8.1 Microsoft SharePoint Server could allow a remote attacker to bypass security restrictions. By winning a race condition, an attacker could […]

Severity High Analysis Summary Lumma is an information stealer that is sold as a Malware-as-a-Service (MaaS) on Russian-speaking underground forums and Telegram. Lumma is an information […]

Severity High Analysis Summary CVE-2023-32049 CVSS:8.8 Microsoft Windows could allow a remote attacker to bypass security restrictions, caused by a flaw in the SmartScreen component. By […]

Severity High Analysis Summary CVE-2022-23447 CVSS:7.5 Fortinet FortiExtender could allow a remote attacker to traverse directories on the system, caused by improper validation of user requests. […]

Severity Medium Analysis Summary CVE-2023-3600 Mozilla Firefox is vulnerable to a denial of service, caused by a use-after-free during the worker lifecycle. By persuading a victim […]

Severity High Analysis Summary BlueNoroff is a sophisticated Advanced Persistent Threat (APT) group that has been active since at least 2014. The group is believed to […]

Severity High Analysis Summary APT-C-35 (also known as “Donot APT Group”) is a cyber espionage group that has been active since at least 2013. The group […]

Severity Medium Analysis Summary DCRat – a Russian backdoor, was initially introduced in 2018, but rebuilt and relaunched a year later. The DCRat backdoor appears to […]

Severity High Analysis Summary Progress Software has recently announced a significant security development regarding their widely used secure file transfer software, MOVEit Transfer. The company has […]