CYBER Threat Intelligence Reports
LATEST CTIs
CISA Alert: Fortinet Security Updates Address Critical Vulnerabilities CVE-2023-48788 and CVE-2023-42789
CISA has issued an alert regarding security updates released by Fortinet for multiple products to address critical vulnerabilities, including SQL injection (CVE-2023-48788) and out-of-bounds write…
Read more >
WordPress Plugin Vulnerability Leads to Malware Infection on Over 3,300 Sites
Hackers have exploited a vulnerability in the Popup Builder plugin for WordPress, impacting over 3,300 websites with malware infections. The flaw, tracked as CVE-2023-6000, affects…
Read more >
XSS Vulnerability in Ultimate Member Plugin Exposes Over 200,000 WordPress Websites to Risk
Over 200,000 WordPress websites are at risk due to a Cross-Site Scripting (XSS) vulnerability in the Ultimate Member plugin. Discovered by researcher stealthcopter and addressed…
Read more >
CISA Adds CVE-2024-27198 to Known Exploited Vulnerabilities Catalog
CISA has added CVE-2024-27198, an authentication bypass vulnerability in JetBrains TeamCity, to its Known Exploited Vulnerabilities Catalog. Organizations are urged to update to TeamCity version…
Read more >
CISA Advisory: Apple Security Updates for Multiple Products
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory regarding security updates released by Apple for multiple products, including Safari, macOS, watchOS, tvOS,…
Read more >
“Spinning YARN” Cyberattacks Target Cloud Servers Running Apache Hadoop, Atlassian Confluence, Docker, and Redis
The "Spinning YARN" cyberattack campaign targets cloud servers running Apache Hadoop, Atlassian Confluence, Docker, and Redis. Attackers exploit common misconfigurations and a known Confluence vulnerability…
Read more >
