Severity High Analysis Summary A threat actor has leaked a list of almost 500,000 Fortinet VPN login names and passwords that were allegedly scraped from exploitable devices […]

Severity Medium Analysis Summary CVE-2021-34870 Multiple NETGEAR XR1000 could allow a remote attacker to obtain sensitive information, caused by missing authentication in SOAPAction when processing SOAP […]

Severity High Analysis Summary Phobos ransomware appeared at the beginning of 2019. It has been noted that this new strain of ransomware is strongly based on […]

Severity Medium Analysis Summary CVE-2020-29012 Fortinet FortiSandbox could allow a remote attacker to obtain sensitive information, caused by insufficient session expiration. By reusing the unexpired admin […]

Severity High Analysis Summary CVE-2021-38540 Apache Airflow could allow a remote attacker to execute arbitrary code on the system, caused by improper authentication validation by the […]

Severity High Analysis Summary CVE-2021-3773 OpenVPN for Linux and FreeBSD is vulnerable to a denial of service, caused by the lack of port sanity checking in […]

Severity High Analysis Summary CVE-2021-3051 Palo Alto Networks Cortex XSOAR could allow a remote attacker to bypass security restrictions, caused by improper verification of cryptographic signature […]

Severity High Analysis Summary Dridex is a sophisticated strain of banking malware that targets the Windows platform, delivering spam campaigns to infect computers and steal banking […]

Severity High Analysis Summary Cyber espionage actors, aka APT32 (OceanLotus Group), are carrying out intrusions into private sector companies across multiple industries and have also targeted […]