Trustwave Action Response: Zero Day Vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019
Update Oct. 4: Microsoft released Security Update Guides for these two vulnerabilities.
Read MoreCVE-2022-37461: Two Reflected XSS Vulnerabilities in Canon Medical’s Vitrea View
Overview During a penetration test, Trustwave Spiderlabs’ researchers, Jordan Hedges and Avery ...
Read MoreRetaliation by the Pro-Russian Group KillNet
At the beginning of the Russia-Ukraine conflict, KillNet - a Russian cybergang - began actively ...
Read More2022 Trustwave SpiderLabs Telemetry Report
As organizations go about their regular routine of finding and adding new technologies to help ...
Read MoreOracle SBC: Multiple Security Vulnerabilities Leading to Unauthorized Access and Denial of Service
Oracle Communications Session Border Controller (SBC) is one of the most popular products worldwide ...
Read MoreOverview of the Cyber Weapons Used in the Ukraine - Russia War
Observing the ongoing conflict between Russia and Ukraine, we can clearly see that cyberattacks ...
Read MoreThe Price Cybercriminals Charge for Stolen Data
For the price of a Starbuck’s Caramel Frappuccino Grande and a cheese Danish, about $8, a ...
Read MoreIPFS: The New Hotbed of Phishing
A few months ago, we reported on an interesting site called the Chameleon Phishing Page. These ...
Read MoreWant To Become A Red Teamer? This Is What You Need To Know
Everyone loves buzz words, no? Red team is the newest (well... not that new) coolest thing on the ...
Read MoreDecade Retrospective: The State of Vulnerabilities
Decade Retrospective: The State of Vulnerabilities The Spanish philosopher George Santayana is ...
Read MoreCVE-2022-29593- Authentication Bypass by Capture Replay (Dingtian-DT-R002)
In the OT space it is increasingly common to see devices that are used to bridge the gap between ...
Read MoreInteractive Phishing Mark II: Messenger Chatbot Leveraged in a New Facebook-Themed Spam
Facebook Messenger is one of the most popular messaging platforms in the world, amassing 988 ...
Read MoreThe Importance of White-Box Testing: A Dive into CVE-2022-21662
I want to take some time to explain the importance of using a white-box approach when testing ...
Read MoreModBus 101: One Protocol to Rule the OT World
Ever wondered how large-scale power plants monitor or control the myriad of systems that fill their ...
Read MoreTrustwave's Action Response: More MSDT Fallout with “Dogwalk”
A zero-day vulnerability has been re-disclosed that is very similar to the Follina zero-day ...
Read MoreNot all "Internet Connections" are Equal
People commonly think that any “Internet Connection” is exactly the same, or they may be vaguely ...
Read MoreTrustwave's Action Response: Microsoft zero-day CVE-2022-30190 (aka Follina)
Update June 7 - In the event of a compromise related to the Follina vulnerability, IT teams can ...
Read MoreTrustwave's Action Response: Atlassian Confluence CVE-2022-26134
Updated June 5 - Atlassian issued a fix for CVE-2022-30190 for versions 7.4.17, 7.13.7, 7.14.3, ...
Read MoreGrandoreiro Banking Malware Resurfaces for Tax Season
Trustwave SpiderLabs in early April observed a Grandoreiro malware campaign targeting bank users ...
Read MoreInteractive Phishing: Using Chatbot-like Web Applications to Harvest Information
Phishing website links are commonly delivered via email to their respective targets. Once clicked, ...
Read MorePwnFox - An IDOR Hunter's Best Friend
Maybe I’m a bit late to the game on this one, but I recently discovered PwnFox and it has quickly ...
Read MoreTrustwave’s Action Response: F5 BIG-IP Vulnerability (CVE-2022-1388)
Trustwave SpiderLabs is tracking a new critical-rated vulnerability (CVE-2022-1388) affecting F5 ...
Read MoreStormous: The Pro-Russian, Clout Hungry Ransomware Gang Targets the US and Ukraine
May 2 Stormous update: The Trustwave SpiderLabs team has noted Stormous’ underground website became ...
Read MoreTough Times for Ukrainian Honeypot?
Intro We've recently been inundated with news of increased cyberattacks and a general increase in ...
Read MoreTrustwave’s Action Response: CVE-2022-22965 and CVE-2022-22963
Update 4/1: This blog was updated to reflect the release of IDS and ModSecurity rules.
Read MoreCyber Attackers Leverage Russia-Ukraine Conflict in Multiple Spam Campaigns
The Trustwave SpiderLabs email security team has been monitoring the ongoing Russia-Ukraine crisis ...
Read MoreVidar Malware Launcher Concealed in Help File
Appending a malicious file to an unsuspecting file format is one of the tricks our adversaries use ...
Read MoreTrustwave’s Action Response: The Lapsus$ Hacker Group Shows Us the Importance of Securing the Digital Supply Chain
Update March 24: This blog has been updated to reflect the new information provided by vendors ...
Read More