×
2021-11-9

CVE-2021-40539 – ZOHO ADSelfService Plus authentication bypass vulnerability – Nov 09, 2021

Introduction iSecurity is publishing threat advisory about critical vulnerabilities that need special attention: An actively exploited authentication bypass vulnerability was identified in ManageEngine ADSefService Plus….

2021-10-18

CVE-2021-40444: Similar Techniques Observed + New IoC’s – Oct 15, 2021

Introduction On October 14th, the SOC at iSecurity observed an active threat where C2 traffic was attempting to contact beacons to the below-mentioned IP addresses….

2021-09-12

Microsoft MSHTML Remote Code Execution Vulnerability (CVE-2021-40444) – Sep 11, 2021

Introduction Microsoft has published information regarding a zero-day remote code execution vulnerability that exploits MSHTML via a crafted ActiveX control. A successful exploit of MSHTML…

2021-08-16

Spear Phishing Attempts – August 8, 2021

Action A confirmed Phishing email is attempting to harvest credentials anyone who entered credentials or suspect to enter credentials needs to reset the password. We…

2021-07-22

Fortinet Remote Code Execution – July 20, 2021

Introduction Fortinet has released updates for its FortiManager and FortiAnalyzer network management solutions to fix a serious vulnerability that could be exploited to execute arbitrary…

2021-07-19

SolarWinds new Vulnerability CVE-2021-35211 – July 15, 2021

Introduction A 0-day remote code execution exploit is being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence…

2021-07-2

Mitigation Strategy – Print Spooler Remote Code Execution Vulnerability – July 2, 2021

Mitigation Strategy – Print Spooler Remote Code Execution Vulnerability The vulnerabilities are as follows: • CVE-2021-34527: a remote code execution vulnerability that affects Windows Print…