Subscribe to NetSec NewsSign up to receive our biweekly newsletter that covers what's happening in cybersecurity including news, trends, and thought leadership.
3 min read
Cyrus Robinson: Dec 14, 2022 9:15:24 AM
This security advisory notice addresses the critical unauthenticated remote code execution vulnerability in FortisOS: CVE-2022-42475. Read on to...
3 min read
Cyrus Robinson: Nov 14, 2022 2:19:00 PM
It's important that organizations deploy last week's "Patch Tuesday" patches as soon as possible. These patches include several critical, high, and...
5 min read
Cyrus Robinson: Nov 1, 2022 2:23:52 PM
Qakbot Conversation Hijacking Phishing Campaigns Targeting Government, Law Enforcement, and Financial Sector Organizations. Beginning July 2022, the...
3 min read
Cyrus Robinson: Apr 4, 2022 11:35:24 AM
Spring4Shell: This new vulnerability was released as a Proof-of-Concept by AntGroup FG Security Lab on March 29, 2022, and it was found to lead to a...
2 min read
Cyrus Robinson: Mar 24, 2022 8:55:36 AM
On March 22, 2022, the Lapsus$ threat group (aka DEV-0537), who recently gained notoriety for compromises including Microsoft, Samsung, Nvidia, and...
3 min read
Cyrus Robinson: Mar 15, 2022 1:30:42 PM
The Veeam Distribution Service installed on Veeam Backup & Replication servers runs on TCP 9380 with default settings, and allows unauthenticated...
3 min read
Cyrus Robinson: Dec 15, 2021 9:58:38 AM
Apache Log4j2 <=2.14.1 JNDI features used in the configuration, log messages, and parameters do not protect against attacker-controlled LDAP and...
