Bedrohungswarnzentrum
Seien Sie der Erste, der von den neusten Cyber-Bedrohungen erfährt. Unsere Warnmeldungen informieren Sie rechtzeitig über aktuelle Sicherheitsprobleme, Schwachstellen und Missbräuche.
3CX Supply Chain Attack ‘SmoothOperator’
Written by Anton Jörgensson, Eric Dodge & Yann Lehmann of the Kudelski Security Threat Detec...
Read More
CVE-2023-23397 – Microsoft Outlook Privilege Elevation Critical Vulnerability
Written by Lina Jiménez Becerra, Anton Jörgensson and Mark Stueck of the Kudelski Security Threat...
Read More
CVE-2023-27532 – Veeam Backup & Replication Vulnerability Exposes Stored Credentials, No Auth Necessary
Written by Mark Stueck and Scott Emerson of the Kudelski Security Threat Detection & Re...
Read More
Ransomware as a Service – Nevada Ransomware campaign targeting VMWare ESXi servers
Written by Michal Nowakowski of the Kudelski Security Threat Detection & Research Team UPDAT...
Read More
Linux Kernel ksmbd Remote Code Execution Vulnerability
Note: This bulletin was written by Eric Dodge of the Kudelski Security Threat Detection & Re...
Read More
Active exploitation of Citrix ADC and Gateway Critical Remote Code Execution Vulnerability by Suspected Chinese APT5 (CVE-2022-27518)
Written by Harish Segar of the Kudelski Security Threat Detection & Research Team Summary On...
Read More
SPNEGO NEGOEX: Critical Pre-Authentication RCE Vulnerability in Modern Microsoft Windows Operating Systems (CVE-2022-37958)
Written by Mark Stueck of the Kudelski Security Threat Detection & Research Team Summary On ...
Read More
Critical Severity Buffer Overflow 0-Day Vulnerability in Fortinet SSL-VPN Under Active Exploitation (CVE-2022- 42475)
This bulletin was authored by Mark Stueck of the Kudelski Security Threat Detection & Resear...
Read More
OpenSSL 3 Buffer overflow vulnerabilities: CVE-2022-3786 and CVE-2022-3602
Note: This Bulletin was contributed to by Kudelski Security’s Threat Detection & Resea...
Read More
Critical VMware Authentication Bypass and RCE Vulnerabilities: CVE-2022-31656 and CVE-2022-31659
Proof-of-Concept (PoC) exploit recently released by security researchers. VMware recommends patch...
Read More
“SynLapse” – Azure Synapse Pipeline and Data Factory Vulnerability (CVE-2022-29972)
This bulletin was written by Eric Dodge of the Kudelski Security Threat Detection & Research...
Read More
“Follina” (CVE-2022-30190): Microsoft Support Diagnostic Tool 0-Day Vulnerability Being Actively Exploited
This bulletin was written by Michal Nowakowski of the Kudelski Security Threat Detection & R...
Read More
High Severity VMware Vulnerabilities Under Active Exploitation
This bulletin was written by Travis Holland and Eric Dodge of the Kudelski Security Threat Detect...
Read More
Active Directory Domain Services Elevation of Privilege Vulnerability
This bulletin was written by Michal Nowakowski of the Kudelski Security Threat Detection & R...
Read More
BIG-IP iControl REST API Authentication Bypass
This bulletin was written by Yann Lehmann of the Kudelski Security Threat Detection & Resear...
Read More