Kyber Ransomware Double Trouble: Windows and ESXi Attacks Explained

Overview For executive leadership, the emergence of Kyber ransomware represents a significant and immediate threat due to its specialized, dual-platform deployment capability targeting mission-critical virtualization infrastructure VMware ESXi and core Windows file systems. This cross-platform...

Not everything has to be a massive, global cyber attack

Some of my Webex rooms recently have been blowing up with memes about blaming Canada or wild speculation that a state-sponsored actor is carrying out some sort of major campaign. After a widespread outage of cellular service with AT&T and other carriers a few weeks ago, people were sure it was so...

GHSA-7V3X-H7R2-34JV Insufficient Session Expiration in Pterodactyl API

Impact A vulnerability exists in Pterodactyl Panel authenticateApiKey$request-bearerToken, $keyType; - $this-auth-guard-loginUsingId$model-userid; + $this-auth-guard-onceUsingId$model-userid; For more information If you have any questions or comments about this advisory please reach out to Tactic...

Insufficient Session Expiration in Pterodactyl API

Impact A vulnerability exists in Pterodactyl Panel authenticateApiKey$request-bearerToken, $keyType; - $this-auth-guard-loginUsingId$model-userid; + $this-auth-guard-onceUsingId$model-userid; For more information If you have any questions or comments about this advisory please reach out to Tactic...

SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know

Not content with the beating it laid down in January, 2021 continues to deliver with an unpatched zero-day exposure in some SonicWall appliances and three moderate-to-critical CVEs in SolarWinds software. We dig into the details below. Urgent mitigations required for SonicWall SMA 100 Series...

SonicWall SMA 100 Series 10.x Firmware Zero-Day Vulnerability

A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x. Recent assessments: wvu-r7 at February 04, 20...

Exclusive: SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product

SonicWall, a popular internet security provider of firewall and VPN products, on late Friday disclosed that it fell victim to a coordinated attack on its internal systems. The San Jose-based company said the attacks leveraged zero-day vulnerabilities in SonicWall secure remote access products suc...

CVE-2009-0164

The web interface for CUPS before 1.3.10 does not validate the HTTP Host header in a client request, which makes it easier for remote attackers to conduct DNS rebinding attacks...