Security Intelligence

Ivanti discloses two actively exploited zero-day vulnerabilities

Ivanti has disclosed two vulnerabilities in Policy Secure and Connect Secure gateways that are being actively exploited...

Security Intelligence

The top 10 phishing trends of 2023

Field Effect's Security Intelligence team explores the top 10 phishing threats observed in 2023.

Security Intelligence

Critical Bluetooth vulnerability affects Apple, Android, and Linux

New critical Bluetooth vulnerability allows threat actors to take control of Android, Linux, macOS, and iOS devices.

Security Intelligence

Russian APT28 hackers exploiting known flaws in latest campaign

Russia’s Military Intelligence Directorate exploits several known vulnerabilities to target government, energy,...

Security Intelligence

Apple's latest update patches two actively exploited zero-days

Apple released emergency updates to address two actively exploited zero-day vulnerabilities discovered in the WebKit...

Security Intelligence

Iran-linked Cyber Av3ngers group compromises U.S. water authority

The Iran-linked threat actor Cyber Av3ngers compromises Municipal Water Authority in Pennsylvania.

Security Intelligence

ownCloud the latest file-sharing platform to be exploited

Security researchers observed unnamed threat actors exploiting a critical vulnerability in the widely adopted...

Security Intelligence

Citrix NetScaler users urged to kill user sessions to stop the bleed

NetScaler ADC and Gateway product users urged to kill all previous and active user sessions in addition to patching...

Security Intelligence

Two infostealers flex new ability to restore expired Google cookies

Two developers of information-stealing malware, known as infostealers, recently advertised a new capability to restore...

Security Intelligence

Patch CrushFTP servers to flatten risk of exploit

Proof-of-concept exploit code released for CrushFTP vulnerability that allows threat actors to access files on the...

Security Intelligence

The FBI untangles Scattered Spider’s web

The FBI and CISA have released a joint Cybersecurity Advisory (CSA) on Scattered Spider.

Security Intelligence

Exploit code for Apache ActiveMQ flaw gets leveled up

Security researchers have developed a new method to exploit a critical vulnerability in Apache ActiveMQ.