CYBER Threat Intelligence Reports
LATEST CTIs
VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws
VMware has released security patches for four vulnerabilities in ESXi, Workstation, and Fusion. Critical flaws CVE-2024-22252 and CVE-2024-22253, use-after-free vulnerabilities in the XHCI USB controller,…
Read more >
CISA: Active Exploitation of Windows Kernel Vulnerability (CVE-2024-21338)
A high-severity Windows Kernel vulnerability (CVE-2024-21338) is being actively exploited, granting attackers SYSTEM-level access on affected systems. The Lazarus group, linked to North Korea, has…
Read more >
CVE-2023-50378 Apache Ambari Stored Cross-Site Scripting Vulnerability
The security flaw CVE-2023-50378 in Apache Ambari, a Hadoop cluster management tool, is a stored cross-site scripting (XSS) vulnerability that allows attackers to inject malicious…
Read more >
Microsoft Resolves Outlook Sync Issue Over Exchange ActiveSync
Microsoft has addressed a synchronization issue affecting some Microsoft 365 users' Outlook desktop clients, which prevented them from connecting to email servers via Exchange ActiveSync…
Read more >
Addition of CVE-2023-29360 to CISA’s Known Exploited Vulnerabilities Catalog
CISA has updated its Known Exploited Vulnerabilities Catalog with CVE-2023-29360, a vulnerability in Microsoft Streaming Service. This addition, based on evidence of active exploitation, highlights…
Read more >
U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp
In a significant legal victory for Meta, a U.S. judge has ordered NSO Group to provide the source code for its Pegasus spyware, following a…
Read more >
