Category: alerts

Hundreds of thousands of email credentials, many of which double as Active Directory domain credentials, came through to credential-trapping domains in clear text. Read more

Unauthenticated cyberattackers can also wreak havoc on networking device configurations. Read more

One of the bugs, which affects macOS as well as older versions of iPhones, could allow an attacker to execute arbitrary code with kernel privileges. Read more

Casey Ellis, founder, CTO and chairman of Bugcrowd, discusses a roadmap for lowering risk from cyberattacks most effectively. Read more

A high-severity vulnerability could cause system crashes, knocking out sensors, medical equipment and more. Read more

A custom “SparrowDoor” backdoor has allowed the attackers to collect data from targets around the globe. Read more

The issue lies in a parental-control function that’s always enabled by default, even if users don’t configure for child security. Read more

All a user needs to do is click on an email attachment, and boom — the code is silently executed without the victim knowing. It affects Big Sur and prior versions of macOS. Read more

VMware urged immediate patching of the max-severity, arbitrary file upload flaw in Analytics service, which affects all appliances running default 6.5, 6.7 and 7.0 installs. Read more

Original release date: September 22, 2021 Summary Immediate Actions You Can Take Now to Protect Against Conti Ransomware • Use multi-factor authentication. • Segment and segregate networks and functions. • Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, version 9. See the ATT&CK… Read more