Lucene search
K

7 matches found

Rapid7 Blog
Rapid7 Blog
added 2021/09/02 3:44 p.m.182 views

Active Exploitation of Confluence Server & Confluence Data Center: CVE-2021-26084

This attack is ongoing. See the Updates section at the end of this post for new information as it comes to light. On August 25, 2021, Atlassian published details on CVE-2021-26084, a critical remote code execution vulnerability in Confluence Server and Confluence Data Center. The vulnerability...

7.5CVSS0.3AI score0.99999EPSS
Exploits45
MSRC
MSRC
added 2021/03/02 9:7 p.m.49 views

On-Premises Exchange Server Vulnerabilities Resource Center – updated March 25, 2021

MSRC / By MSRC Team / March 2, 2021 On March 2nd, we released several security updates for Microsoft Exchange Server to address vulnerabilities that are being used in ongoing attacks. Due to the critical nature of these vulnerabilities, we recommend that customers protect their organizations by...

7.1AI score
Exploits0
Securelist
Securelist
added 2018/10/10 10:0 a.m.38 views

MuddyWater expands operations

Summary MuddyWater is a relatively new APT that surfaced in 2017. It has focused mainly on governmental targets in Iraq and Saudi Arabia, according to past telemetry. However, the group behind MuddyWater has been known to target other countries in the Middle East, Europe and the US. We recently...

1.5AI score
Exploits0
ThreatPost
ThreatPost
added 2011/10/27 12:13 p.m.11 views

NSA Director Says U.S. Working to Push Attack Data to ISPs

WASHINGTON–The commander of the U.S. Cyber Command said that the federal government is working on a system now that would allow it to work with ISPs and others to help stop ongoing attacks against government and private networks by pushing intelligence and attack signatures to them. Gen. Keith...

0.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2010/11/16 7:41 p.m.49 views

Adobe Releases Emergency Fix for Critical Reader Flaws

Adobe on Tuesday released an emergency patch for several critical vulnerabilities in Adobe Reader, including the recent Adobe Flash bug and a separate flaw that was disclosed earlier this month. The patch released Tuesday is outside of the company’s normal quarterly update schedule for Reader and...

9.3CVSS3.4AI score0.69679EPSS
Exploits14References3
ThreatPost
ThreatPost
added 2010/09/21 3:4 p.m.73 views

Microsoft Warns of Attacks Against ASP.NET Flaw

Microsoft is warning customers that it has seen ongoing attacks against the recently disclosed padding oracle vulnerability in ASP.NET and is encouraging them to implement a workaround that will help protect against the publicly disclosed exploit for the bug. The workaround that Microsoft has...

9.3CVSS0.2AI score0.99945EPSS
Exploits33References6
ThreatPost
ThreatPost
added 2010/02/11 8:1 p.m.17 views

Operation Aurora Still Out There

The targeted attacks that hit Google, Adobe, and other U.S. organizations are still ongoing and have affected many more companies than the original 20 to 30 or so reported by Google and others. One researcher believes they are close to naming the suspected coder. Read the full article. Dark Readi...

2.9AI score
Exploits0References1
Rows per page
Query Builder