Severity Medium Analysis Summary CVE-2023-3246 CVSS:4.3 GitLab Community Edition and Enterprise Edition are vulnerable to a denial of service. By sending a specially crafted request, a […]

Severity High Analysis Summary Shuckworm APT – aka Actinium, Armageddon, Primitive Bear, Gamaredon, and Trident Ursa – is a Russia-backed advanced persistent threat (APT) that has […]

Severity High Analysis Summary CVE-2023-22518 Atlassian Confluence Data Center and Server could allow a remote attacker to bypass security restrictions, caused by an improper authorization vulnerability. […]

Severity High Analysis Summary Patchwork is an Advanced Persistent Threat (APT) group that has been active since at least 2014. Patchwork primarily targets government, defense, and […]

Severity Medium Analysis Summary CVE-2023-33335 Sophos iView is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this […]

Severity High Analysis Summary SolarMarker, also known as Jupyter or Yellow Cockatoo, is a sophisticated and concerning infostealer malware that emerged in early 2021. It spreads […]

Severity High Analysis Summary Based in South Korea, DarkHotel is an advanced persistent threat (APT) group that has been operational since at least 2007. They have […]

Severity High Analysis Summary APT-C-35 (also known as “Donot APT Group”) is a cyber espionage group that has been active since at least 2013. The group […]

Severity High Analysis Summary STRRat is a Java-based Remote-Access Trojan (RAT) with a slew of malicious features, notably information theft and backdoor capabilities. This RAT was […]