Ivanti Connect Secure CVE-2024-22024 – Are We Now Part Of Ivanti?

As astute readers of our Twitter account (https://twitter.com/watchtowrcyber) and blog will know, we’ve recently been…

New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group

UPDATE: Following our initial release, we have been contacted by our fellow researchers at Jamf…

CVE-2023-44487 – Rapid Reset HTTP/2 vulnerability

The Fortinet Product Security team has evaluated the impact of the vulnerablity HTTP/2 Rapid Reset…

Attacking MSSQL Servers | Huntress

In addition to social engineering attacks, threat actors target organizations' attack surface, looking for exposed…

Micropatches Released For Microsoft Windows XAML diagnostics API Elevation of Privilege (CVE-2023-36003)

 December 2023 Windows Updates brought a patch for CVE-2023-36003, a privilege escalation vulnerability in Microsoft…

VT Livehunt Cheat Sheet

Today we are happy to announce the release of our “Livehunt Cheat Sheet”, a guide…

RATs! Remote Management Software from the Hacker’s Perspective | Huntress

Tips and tricks to hunt down RMM abuse. Remote access tools for persistence. Are RMMs…

Threat Advisory: Possible AnyDesk Stolen Code Signing Certificate | Huntress

Huntress is tracking concerns regarding the AnyDesk remote control software and provider. Read More

The "EventLogCrasher" 0day For Remotely Disabling Windows Event Log, And a Free Micropatch For It

 Update 2/14/2024: February Windows Updates did not patch this issue, so it remains a 0day.…