Zero-Day Vulnerability in SolarWinds Serv-U Products

Zero-Day Vulnerability in SolarWinds Serv-U Products 13 July, 2021 Event Summary The SolarWinds Serv-U product line contains a Zero-Day Vulnerability.  Microsoft discovered the exploits, reported it to SolarWinds and has evidence of exploitation in the wild.  This vulnerability exists in the Serv-U product line, and no other SolarWinds products are affected.  This is not related […]

PrintNightmare Zero-Day Vulnerability in the Windows Print Spooler Service

printnightmare

PrintNightmare Zero-Day Vulnerability in the Windows Print Spooler Service – Important Update PrintNightmare Zero-Day Alert Update 7/8/21 Event Summary The Windows Out-of-Band patch released on July 6th does not fully address the PrintNightmare Zero-Day vulnerability that exists in the Print Spooler Service.  This patch does address the remote vector of the vulnerability thus, further action […]

Threat Flash Alert: Nobelium Spear-Phishing Campaign

Threat Flash Alert: Nobelium Spear-Phishing Campaign Executive Summary Microsoft’s Threat Intelligence Center (MSTIC) has released an advisory pertaining to a new Spear-Phishing campaign by the Russian threat group dubbed Nobelium.  Nobelium has been labeled responsible for the Solar Winds compromise that took place in 2020.   The start date for this campaign dates back to January […]

Threat Flash Alert: RCE Vulnerability in VMWare Center

exchange servers

Threat Flash Alert: RCE Vulnerability in VMWare Center Event Summary VMWare has released a critical advisory regarding multiple vulnerabilities in their vCenter machines using the default configuration.  This affects the vSphere Client (HTML5).  This vulnerability has a CVSS rating of 9.8 out of 10.    Details – CVE-2021-21985 The vSphere Client (HTML5) contains a remote code […]

Threat Flash Alert: Multiple Zero-Day Vulnerabilities Found in SonicWALL Email Security Products

SonicWall

Threat Flash Alert: Multiple Zero-Day Vulnerabilities Found in SonicWALL Email Security Products 22 April 2021 Event Summary SonicWALL has disclosed multiple zero-day vulnerabilities in their email security products and has issued a statement urging customers to apply updated firmware and security patches.  These vulnerabilities affect both their on-premises and hosted email security products.  They have […]

Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities

Threat Flash Alert: Threat Actors Actively Targeting Fortinet Vulnerabilities 6 April 2021 Executive Summary The FBI recently released a joint cybersecurity advisory disclosing that several Advanced Persistent Threat (APT) groups are actively scanning devices for three FortiOS vulnerabilities. It is advised that anyone who has not already applied patches for these vulnerabilities to apply them […]