Posts

CVE-2024-45164 - Broken Access Control: ThreatAvert Policy Page in Akamai Applications Portal (SIA ThreatAvert)

LemonDuck Unleashes Cryptomining Attacks Through SMB Service Exploits

Inside the SharpPanda's Malware Targeting Malaysia

Empowering Your Splunk SOAR: Enriching with Splunk Enterprise Events for Next-Level Security Optimization

Increase Max Index Size and Archive Indexed Data

JetBrains TeamCity Vulnerability (CVE-2023-42793) - Observation of Active Exploitation In The Wild (ITW)

CVE-2023-46865 - Post-Auth Unrestricted File Upload and Code Execution via IDAT in Crater Invoice

Understand the Ransomware TTPs: The BlackBit Under the Microscope

SMS Stealer APK use "Kahwin" theme targeting Malaysian: Kad Kahwin Digital APK

Detection Engineering Part 1: Setting up Elastic, Kibana and Fleet Server for SIEM and EDR

Multiple Stored XSS vulnerability in phpMyFAQ

Post-Authenticate Stored XSS in Wordpress Plugin Similar Posts

Deserialization Journey: The case of CVE-2023-28115