Severity High Analysis Summary QBot, often known as QakBot, is modular information malware. It has been operational since 2007. This banking Trojan, QakBot steals financial data […]

Severity High Analysis Summary CVE-2022-40754 Apache Airflow could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the /confirm endpoint. […]

Severity High Analysis Summary CVE-2022-40705 Apache SOAP is vulnerable to an XML external entity injection (XXE) attack when processing XML data, caused by a weakly configured […]

Severity Medium Analysis Summary CVE-2022-41218  Linux Kernel is vulnerable to a denial of service, caused by a use-after-free flaw in drivers/media/dvb-core/dmxdev.c due to refcount races. A […]

Severity Medium Analysis Summary CVE-2022-40616  IBM Maximo Asset Management 7.6.1.1, 7.6.1.2, and 7.6.1.3 could allow a user to bypass authentication and obtain sensitive information or perform […]

Severity High Analysis Summary KONNI is a remote access tool that North Korean cyber attackers have been using since at least 2014. The North Korean hacker […]

Severity High Analysis Summary Chaos is a customizable ransomware builder that emerged on June 9 2021 (in underground forums) by falsely marketing itself as the .NET […]

Severity High Analysis Summary Donot APT group has been actively dropping malicious samples and targeting Government users to exfiltrate data. The hackers’ targets include countries in […]