Old FortiNet Vulnerabilities exploited by State Sponsored Actors
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) has released a joint advisory warning stating that ATP actors are gaining access to the FortiNet VPN servers through …
F5 zero day vulnerabilities being targeted by several threat actors
THREAT LEVEL: RED Seven zero day vulnerabilities have been discovered in F5 products BIG-IP, BIG-IQ and BIG-IP Advanced WAF/ASM. The exploits of these vulnerabilities are currently unavailable according to the F5 group and Cyber Center. However, Hive Pro Threat Research team has observed several threat …
The Havoc of MS Exchange Servers: Is it only Hafnium or somebody else as well?
As per the recent attacks on Microsoft Exchange Server by the Chinese threat group named Hafnium, at least 60,000 companies have been affected all over the world. The attack has affected on-premises versions of Microsoft Exchange Server and targeted a varied set of organizations such …
60,000+ organizations susceptible to Microsoft Exchange Server Zero Day Vulnerability
THREAT LEVEL: RED At least 60,000 companies have been affected by the recent sophisticated attacks on Microsoft Exchange Server that have been carried out by threat actors affecting small and medium sized companies. The actor group has been breaking into the company’s computer networks through the …
Is it time for evolution of Vulnerability Management?
We all know that vulnerability is a weakness in any type of system which can be exploited by hackers to achieve their objectives. If we investigate any organization, each vulnerability could be affecting multiple devices which could be in tens, or hundreds or more. On …
Multiple Zero Day Vulnerabilities in Accelion FTA server exploited for data exfiltration and extortion
THREAT LEVEL: RED Multiple Zero Day Vulnerabilities have been discovered in Accellion’s legacy File Transfer Appliance (FTA) targeted by threat actors for data exfiltration, extortion, and ransomware. Accellion patched the vulnerabilities and continues its mitigations efforts. The company “strongly recommends that FTA customers migrate to Kiteworks” …
Hive Pro strengthens its Middle East presence with a new office in Dubai
New bigger facility equipped with world class infrastructure to enable the company to expand its business and consolidate its growth in the region Dubai, UAE – 05 October 2020: Hive Pro, a cybersecurity company that specializes in Predictive Vulnerability Analytics, just announced the expansion of …
Use Case – Automating Cybersecurity Deployment in the Oil & Gas Industry
The oil and gas industry heavily depends on Operational Technology for managing the industrial process. However, industrial systems are highly exposed to the risk and danger of cyber-attacks which makes cybersecurity solutions as a vital requirement for the Oil & Gas sector. The flawless delivery …
Why Penetration Testing as a Service
Introduction Security vulnerabilities are a reality faced by the digital world at an increasing fast pace. Given this reality, penetration testing has become a critical method for protecting systems and applications from security vulnerabilities. Penetration Testing helps in assessing the security posture and discovers potential …