Ivanti Connect Secure CVE-2024-22024 – Are We Now Part Of Ivanti?
As astute readers of our Twitter account (https://twitter.com/watchtowrcyber) and blog will know, we’ve recently been…
New macOS Backdoor Written in Rust Shows Possible Link with Windows Ransomware Group
UPDATE: Following our initial release, we have been contacted by our fellow researchers at Jamf…
CVE-2023-44487 – Rapid Reset HTTP/2 vulnerability
The Fortinet Product Security team has evaluated the impact of the vulnerablity HTTP/2 Rapid Reset…
Attacking MSSQL Servers | Huntress
In addition to social engineering attacks, threat actors target organizations' attack surface, looking for exposed…
Micropatches Released For Microsoft Windows XAML diagnostics API Elevation of Privilege (CVE-2023-36003)
December 2023 Windows Updates brought a patch for CVE-2023-36003, a privilege escalation vulnerability in Microsoft…
VT Livehunt Cheat Sheet
Today we are happy to announce the release of our “Livehunt Cheat Sheet”, a guide…
RATs! Remote Management Software from the Hacker’s Perspective | Huntress
Tips and tricks to hunt down RMM abuse. Remote access tools for persistence. Are RMMs…
Threat Advisory: Possible AnyDesk Stolen Code Signing Certificate | Huntress
Huntress is tracking concerns regarding the AnyDesk remote control software and provider. Read More
The "EventLogCrasher" 0day For Remotely Disabling Windows Event Log, And a Free Micropatch For It
Update 2/14/2024: February Windows Updates did not patch this issue, so it remains a 0day.…