AnyDesk Installer Targeted by Malvertising Campaign
THREAT LEVEL: Green. For a detailed advisory, download the pdf file here. A malvertising campaign, which was active since April 21, was established by hackers for a popular remote desktop application, AnyDesk. A fake app ad was pushed via Google ads when searching for “AnyDesk”. The …
Multiple vulnerabilities in Nagios IT Monitoring Software could be exploited for infrastructure hijacking
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. Nagios fusion is an open-source IT monitoring application that could be exploited by a threat actor to hijack the complete infrastructure. 13 vulnerabilities have been reported in all its version up to 4.1.8. Vulnerability …
FragAttacks – Allowing adversaries to steal data by intercepting vulnerable network traffic from Wi-Fi devices
THREAT LEVEL: Amber. For a detailed advisory, download the pdf file here. Multiple vulnerabilities aka FragAttacks(fragmentation and aggregation attacks) have been found in Wi-Fi devices that makes most of the smartphones, servers, and operating systems susceptible to these. These vulnerabilities not only affect the latest …
UNC2682 behind the Zero-day Exploit on SonicWall
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. UNC2682 is using 3 formerly unknown vulnerabilities of the SonicWall Email services to get authenticated access(CVE-2021-20021), read files (CVE-2021-20022), and modify file(CVE-2021-20023). A Behinder Webshell is planted in the already existing Tomcat Java …
Zero-Day Vulnerability in Pulse Secure VPN
THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. Zero-day vulnerability of authentication bypass (CVE-2021-22893) has been disclosed in Pulse Secure VPN. This Vulnerability is exploited in the wild by multiple threat actors in combination with the already existing vulnerabilities (CVE-2019-11510, CVE-2020-8243 …