Threat Flash Alert: Multiple Zero-Day Vulnerabilities Found in SonicWALL Email Security Products

SonicWall

Threat Flash Alert: Multiple Zero-Day Vulnerabilities Found in SonicWALL Email Security Products 22 April 2021 Event Summary SonicWALL has disclosed multiple zero-day vulnerabilities in their email security products and has issued a statement urging customers to apply updated firmware and security patches.  These vulnerabilities affect both their on-premises and hosted email security products.  They have […]

Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities

Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities 6 April 2021 Executive Summary The FBI recently released a joint cybersecurity advisory disclosing that several Advanced Persistent Threat (APT) groups are actively scanning devices for three FortiOS vulnerabilities. It is advised that anyone who has not already applied patches for these vulnerabilities to apply them […]

Important Update to Threat Flash Alert: Microsoft Exchange Zero-Day Exploits

exchange servers

Important Update to Threat Flash Alert: Microsoft Exchange Zero-Day Exploits 10 March 2021 Event Summary Security On-Demand sent out a flash alert on March 2, 2021 regarding the disclosure of critical vulnerabilities in Microsoft’s Exchange servers, known as the exchange zero-day exploits. Since then, our sources have determined that the number of organizations compromised is […]

Threat Flash Alert: Four Microsoft Zero-Day Vulnerabilities Disclosed

Threat Flash Alert: Four Microsoft Zero-Day Vulnerabilities Disclosed Executive Summary Microsoft recently discovered evidence of an attack campaign currently in action which leverages several previously unknown vulnerabilities with on-premises Microsoft Exchange Servers. The vulnerabilities enable access to email accounts, and allow for installation of additional malicious entities to maintain persistence within a target’s environment in […]

Zero Day Exploits of SonicWall Firewalls

globe

Zero Day Attack of SonicWall Firewalls SonicWall Firewall Event Summary Sonicwall, this weekend disclosed an Zero Day Attack that exploited a flaw on the company’s remote access products.  The attack compromised SonicWalls’ NetExtender VPN client and SMB-oriented Secure Mobile Access 100 Series product, which are used to provide employees and users with remote access to […]

Threat Flash Alert: Sunburst SolarWinds Supply Chain Attack

solarwinds

Threat Flash Alert: Sunburst SolarWinds Supply Chain Attack UPDATED SOLARWINDS ALERT According to the latest information available, the current hotfix for the Orion platform released by Solarwinds is functioning properly and can be applied. The current patch update is 2020.2.1 HF 2. If you were on a compromised version, we are also linking a password […]