Severity High Analysis Summary Ardent Health Services, a major healthcare provider operating 30 hospitals across six U.S. states, faced a ransomware attack on November 23, 2023. […]

Severity High Analysis Summary CVE-2023-6351 CVSS:8.8 Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in libavif. […]

Severity High Analysis Summary Threat actors linked to North Korea behind the recent distribution of macOS malware strains like KANDYKORN and RustBucket have been discovered combining […]

Severity Medium Analysis Summary CVE-2023-42502 CVSS:4.8 Apache Superset could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the HTTP […]

Severity High Analysis Summary CVE-2023-40363 IBM InfoSphere Information Server 11.7 could allow an authenticated user to change installation files due to incorrect file permission settings. Impact […]

Severity High Analysis Summary CVE-2022-41678 Apache ActiveMQ could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – has been a Russia-backed advanced persistent threat (APT) since […]

Severity Medium Analysis Summary IcedID, aka BokBot – a banking trojan – first appeared in 2017. The threat actor behind IcedID is Lunar Spider. IcedID malware […]

Severity Medium Analysis Summary CVE-2023-46589 Apache Tomcat is vulnerable to HTTP request smuggling, caused by improper parsing of the HTTP trailer headers. By sending a specially […]