Cybercriminals Exploit CrowdStrike Update Mishap to Distribute Remcos RAT Malware
Cybersecurity firm CrowdStrike, which is facing the heat for causing worldwide IT disruptions by pushing out a flawed update to...
Ongoing Phishing Campaign Targeting CrowdStrike Users
On 19 July 2024, CrowdStrike, a major cybersecurity company, experienced a significant global outage that affected numerous organisations worldwide. The...
CrowdStrike Denial of Service Alert
On 19 Jul 2024, CrowdStrike Falcon Sensor caused crashes on Windows hosts. Windows hosts running on cloud such as Azure,...
17-Year-Old Linked to Scattered Spider Cybercrime Syndicate Arrested in U.K.
Law enforcement officials in the U.K. have arrested a 17-year-old boy from Walsall who is suspected to be a member...
Sunburst: US Judge Dismisses Most SEC Charges Against SolarWinds
A US judge has dismissed most of the US Securities and Exchange Commission (SEC) accusations against IT management software company...
CrowdStrike Fault Causes Global IT Outages
A suspected technical issue at cybersecurity vendor CrowdStrike is causing mass IT outages across the world, disrupting critical sectors such...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: AT&T Discloses Breach of Customer Data
AT&T Discloses Breach of Customer Data On July 12, AT&T released a public statement on unauthorized access of customer data...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on July 16, 2024. These...
CISA: CISA Releases Advisory Detailing Red Team Activity During Assessment of US FCEB Organization, Highlighting Necessity of Defense-in-Depth
CISA Releases Advisory Detailing Red Team Activity During Assessment of US FCEB Organization, Highlighting Necessity of Defense-in-Depth Today, CISA released...
CISA: Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products Cisco released security updates to address vulnerabilities in Cisco software. A cyber threat...
CISA: Oracle Releases Critical Patch Update Advisory for July 2024
Oracle Releases Critical Patch Update Advisory for July 2024 Oracle released its quarterly Critical Patch Update Advisory for July 2024...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on July 18, 2024. These...
CISA: Widespread IT Outage Due to CrowdStrike Update
Widespread IT Outage Due to CrowdStrike Update Note: CISA will update this Alert with more information as it becomes available....
CISA: Ivanti Releases Security Updates for Endpoint Manager
Ivanti Releases Security Updates for Endpoint Manager Ivanti released security updates to address vulnerabilities in Ivanti Endpoint Manager (EPM) and...
HackerOne Bug Bounty Disclosure: self-xss–xtrav
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:0xtravLink to Submitters Profile:https://hackerone.com/0xtrav Report Title:Self XSSReport Link:https://hackerone.com/reports/2521186Date Submitted:19...
HackerOne Bug Bounty Disclosure: -cve-cisco-vpn-path-traversal-on-the-hxxps-sp-d-rs
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:sp1d3rsLink to Submitters Profile:https://hackerone.com/sp1d3rs Report Title: Cisco VPN path...
HackerOne Bug Bounty Disclosure: -cve-cisco-vpn-path-traversal-on-the-hxxps-no-hostname-sp-d-rs
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:sp1d3rsLink to Submitters Profile:https://hackerone.com/sp1d3rs Report Title: Cisco VPN path...
HackerOne Bug Bounty Disclosure: unauth-idor-to-mass-account-takeover-without-user-interaction-on-the-hxxps-edu-sp-d-rs
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:sp1d3rsLink to Submitters Profile:https://hackerone.com/sp1d3rs Report Title:Unauth IDOR to mass...
HackerOne Bug Bounty Disclosure: unauthenticated-access-to-internal-api-at-edu-htus-matrixsoftsec
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:matrixsoftsecLink to Submitters Profile:https://hackerone.com/matrixsoftsec Report Title:Unauthenticated access to internal...
HackerOne Bug Bounty Disclosure: missing-access-control-allows-for-user-creation-and-privilege-escalation-bulldawg
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:bulldawgLink to Submitters Profile:https://hackerone.com/bulldawg Report Title:Missing Access Control Allows...
HackerOne Bug Bounty Disclosure: authentication-bypass-and-potential-rce-on-the-hxxps-due-to-exposed-cisco-telepresence-sx-with-default-credentials-sp-d-rs
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:sp1d3rsLink to Submitters Profile:https://hackerone.com/sp1d3rs Report Title:Authentication bypass and potential...
HackerOne Bug Bounty Disclosure: unauthenticated-arbitrary-file-upload-on-the-hxxps-mil-sp-d-rs
Company Name: U.S. Dept Of Defense Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:sp1d3rsLink to Submitters Profile:https://hackerone.com/sp1d3rs Report Title:Unauthenticated arbitrary file upload...
