Customer Awareness Advisory

Deepwatch Threat Intel Teams' open-source analysis provides our assessment, mitigation, and recommendations for the latest critical threats and vulnerabilities.

Filter Labs by:

03.30.23

Customer Advisory | 3CX Suffers Supply Chain Attack: Electron Windows App Drops an Unknown Infostealer

Read More
03.21.23

Customer Advisory | Threat Actors Exploited Microsoft Outlook for Windows (CVE-2023-23397) as Early as April 2022

Read More
03.09.23

PoC Exploit Released for Critical Windows Word Vulnerability CVE-2023-21716

Read More
01.20.23

Customer Advisory | Threat Actors Actively Exploiting ManageEngine Vulnerability CVE-2022-47966

Read More
12.14.22

Customer Advisory: Citrix ADC and Citrix Gateway Critical Vulnerability (CVE-2022-27518) Actively Exploited

Read More
12.13.22

Customer Advisory: FortiOS SSL-VPN Vulnerability (CVE-2022-42475) Exploited in the Wild

Read More
10.22.22

Customer Advisory: Adversaries Are Scanning For and Exploiting Text4Shell Vulnerability (CVE-2022-42889)

Read More
09.30.22

Customer Advisory | Microsoft Exchange Zero-day Vulnerabilities CVE-2022-41040 and CVE-2022-41082, Actively Exploited

Read More
08.18.22

Customer Advisory | Exploit Code Released for Critical Vulnerability, CVE-2022-27255, Affecting Thousands of Routers

Read More
08.10.22

Customer Advisory | Microsoft’s Support Diagnostic Tool Vulnerability, AKA DogWalk, Actively Exploited

Read More
07.26.22

Customer Advisory | Brace for Exploitation; Hardcoded Password for Questions for Confluence App Leaked

Read More
06.22.22

Customer Advisory | Splunk Critical Vulnerability

Read More
06.03.22

Customer Advisory | Critical RCE Vulnerability in Atlassian’s Confluence Server and Data Center Actively Exploited

Read More
05.31.22

Customer Advisory | Microsoft Office Used to Exploit “Follina” (CVE-2022-30190) an RCE Vulnerability in Microsoft’s Support Diagnostic Tool

Read More
05.16.22

Customer Advisory | Critical Vulnerability in Zyxel Firewalls and VPNs Actively Exploited

Read More
05.10.22

Customer Advisory | Exploit Code Released for Critical RCE Vulnerability in F5s BIG-IP

Read More
04.25.22

Customer Advisory | Threat Actors Exploiting Critical WSO2 Vulnerability

Read More
04.15.22

Customer Advisory | Threat Actors Exploiting Critical VMWare Vulnerability

Read More
03.31.22

Customer Advisory | Spring4Shell: What You Need to Know

Read More
03.23.22

Customer Advisory | President Warns of Russian Government Exploring Options for Cyber Attacks

Read More
03.09.22

Customer Advisory | Linux Vulnerability: Dirty Pipe Has Exploit Code Released

Read More
03.02.22

Customer Advisory | NVIDIA Confirms Data Was Stolen as Lapsus$ Takes Credit

Read More
02.22.22

Customer Advisory | Cyber Attacks in Ukraine: What You Need to Know

Read More
02.17.22

Customer Advisory | Exploit Code Released for Critical Cisco Vulnerability: CVE-2022-20699

Read More
02.15.22

Customer Advisory | Critical 0-Day Vulnerability in Adobe Commerce and Magento Open Source Platforms Under Active Exploitation

Read More
02.02.22

Customer Advisory | Exploit Code Released for Windows 10 Vulnerability: CVE-2022-21882

Read More
01.27.22

Customer Advisory | PwnKit: Exploit Released for Polkit’s pkexec Component

Read More
01.20.22

Customer Advisory | Exploit Code Released for CVE-2022-21907: Critical Windows HTTP Vulnerability

Read More
12.08.21

Customer Advisory for Awareness | Grafana Issues a Security Patch After an Exploit for CVE-2021-43798 is Made Public

Read More
12.03.21

Customer Advisory for Awareness | With an Active Campaign Against ServiceDesk Plus, APT Expands Attack on ManageEngine

Read More
11.15.21

Customer Advisory for Awareness | Zero-Day Disclosed in Palo Alto Networks GlobalProtect VPN (CVE-2021-3064)

Read More
10.05.21

Customer Advisory for Awareness | Apache HTTP Server Actively Exploited, Patch is Available, Patch Now!

Read More
09.23.21

Customer Advisory for Awareness | CISA, FBI, and NSA Issue Joint Advisory Regarding Increased Conti Ransomware Attacks

Read More
09.08.21

Customer Advisory for Awareness | Microsoft Warns of New RCE Zero-Day Exploited in Targeted Office Attacks

Read More
09.01.21

Customer Advisory for Awareness | Confluence Enterprise Server & Data Center are Being Actively Exploited

Read More
08.27.21

Customer Advisory for Awareness | Azure Cosmos DB Flaw Could Allow for Complete Database Compromise

Read More
08.16.21

Customer Awareness: Windows Print Spooler RCE Vulnerability CVE-2021-36958

Read More
07.26.21

PetitPotam NTLM Relay Attack

Read More
07.21.21

CVE-2021-33909 & CVE-2021-33910 – Long Path Name in Mountpoint Flaws in the Kernel and Systemd

Read More
07.19.21

U.S. Federal Cybersecurity Advisory: TTPs of Chinese State-Sponsored Cyber Operations

Read More
07.02.21

Kaseya VSA Compromise – REvil Ransomware Attack

Read More
07.01.21

CVE-2021-1675 – PrintNightmare Vulnerability

Read More
06.22.21

CVE-2021-3044 Vulnerability: Cortex XSOAR

Read More
05.26.21

CVE-2021-21985 – Vulnerability Found in VMware vCenter Servers and Cloud Foundation

Read More
04.22.21

CVE-2021-22893 – Pulse Secure VPN Zero-Day & Active Exploits

Read More
03.03.21

Microsoft Exchange Server Zero-Days

Read More
02.26.21

Chasing Silver Sparrow: Keeping an Eye on the Mysterious macOS Malware

Read More
02.25.21

CVE-2021-21972 – Vulnerability Found in VMware vCenter Servers and Cloud Foundation

Read More
02.22.21

Windows Event 4688 – Part I – Eh to Excellent

Read More
02.18.21

SolarWinds Attack – Part II – Is MITRE ATT&CK Falken’s Maze?

Read More
01.27.21

Sudo Vulnerability

Read More
12.29.20

SolarWinds Attack – Part I – From Infrastructure to Endpoint

Read More
12.18.20

Summary of Deepwatch’s Actions in Response to Sunburst IOC

Read More
11.04.20

Oracle WebLogic Vulnerability

Read More
10.19.20

ZeroLogon Threat Review

Read More
10.14.20

Bad Neighbor Vulnerability

Read More
09.14.20

Zerologon Vulnerability

Read More
07.29.20

BootHole Vulnerability SPOT Report

Read More
07.14.20

SAP RECON Vulnerability

Read More
07.06.20

F5 Networks BIG-IP Vulnerabilities

Read More
06.30.20

SPOT Report – Palo Alto Networks Authentication Bypass

Read More
05.15.20

Palo Alto Networks & Cisco Kerberos Authentication Bypass

Read More
04.03.20

SPOT Report – Zoom Zero-Day

Read More
03.05.20

SPOT Report – Apache Tomcat – GhostCat

Read More
02.06.20

SPOT Report – Cisco – CDPwn Vulnerabilities

Read More
01.15.20

SPOT Report – Microsoft Crypt32 Certificate Validation flaw

Read More
12.24.19

SPOT Report – Citrix ADC & Gateway Vulnerability

Read More
08.28.19

SPOT Report – Imperva Security Breach

Read More
08.16.19

Seven Monkeys Vulnerability – SPOT Report – August 2019 Patch Tuesday

Read More
06.20.19

SPOT Report – WebLogic Remote Code Execution

Read More
06.20.19

SPOT Report – SACK Vulnerabilities

Read More
05.15.19

SPOT Report – ZombieLoad

Read More
05.15.19

SPOT Report – Patch Tuesday Vulnerabilities

Read More
05.15.19

SPOT Report – Cisco – Thrangrycat

Read More
05.01.19

SPOT Report – Oracle WebLogic Remote Code Execution CVE-2019-2725

Read More
04.25.19

1-day Vulnerabilities: The Limits of Following the Patch Tuesday Cycle

Read More
03.07.19

Google Chrome FileReader Vulnerability

Read More
02.11.19

Runc Docker Vulnerability

Read More
01.25.19

MS Exchange Privilege Escalation Attack

Read More
01.10.19

DNS Infrastructure Hijacking Campaign

Read More
12.21.18

IE – Scripting Engine Memory Corruption Vulnerability CVE-2018-8653

Read More
12.02.18

Zoom Desktop Conferencing CVE-2018-15715

Read More