You are reading community | early security alerts

Giving back to security community!

We help security community to stay efficient by creating actionable Early Security Alerts

Windows Processes

Windows processes mind map. Test.UNDERSTAND.Improve.Repeat.

Severity

Attack complexity

Type

n/a

n/a

Just for #SOCtober

Threat / Attack Vector

n/a

Date

26 Oct 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Malware Taxonomy

Understand malware taxonomy and assess your organization's ransomware readiness.

Severity

Attack complexity

Type

n/a

n/a

Just for #SOCtober

Threat / Attack Vector

n/a

Date

20 Oct 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Cloudflare

Cloudflare: bypass & protection.

Severity

Attack complexity

Type

Critical

Low

Poor security configuration

Threat / Attack Vector

Network

Date

12 Oct 2021

We help security community to stay efficient by creating actionable Early Security Alerts

VPN Attack Vectors

Analysis of VPN attack vectors & best security practices

Severity

Attack complexity

Type

High

Low / Medium

Poor security configuration

Threat / Attack Vector

Network

Date

5 Oct 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Most common O365 attack vectors

Included: Azure AD PowerShell, domain and user enumeration, bruteforce via OWA, EWS, OAuth, Auto Login, AAD sign-in form, golden SAML and others.

Severity

Attack complexity

Type

High

Low/Medium

Poor security configuration

Threat / Attack Vector

Local / Network

Date

28 Sept 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Azure OMI

Azure OMI (Open Management Infrastructure) CVE-2021-38647

Severity

Attack complexity

Type

Critical

Low

Remote code execution

Threat / Attack Vector

Network

Date

21 Sept 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Most common vulnerabilities exploited by ransomware groups

List of vulnerabilities ransomware groups (or their access brokers) use to gain initial access

Severity

Attack complexity

Type

High

-

Multiple vulnerabilities

Threat / Attack Vector

Multiple

Date

14 Sept 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Microsoft MSHTML

Microsoft MSHTML Remote Code Execution Vulnerability CVE-2021-40444

Severity

Attack complexity

Type

High

-

Remote code execution vulnerability

Threat / Attack Vector

Network

Date

7 Sept 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Multiple vulnerabilities in Cisco products

Cisco has released a security bulletin where 15 vulnerabilities have been detected in multiple cisco products: 1 critical vulnerability, 6 high vulnerabilities and 8 medium vulnerabilities.

Severity

Attack complexity

Type

High

-

Remote code

Threat / Attack Vector

Multiple

Date

30 Aug 2021

We help security community to stay efficient by creating actionable Early Security Alerts

Top 30 vulnerabilities

Top 30 vulnerabilities commonly exploited in 2020 and during 2021.

Severity

Attack complexity

Type

High

-

Multiple vulnerabilities

Threat / Attack Vector

Multiple

Date

2 Aug 2021

We help security community to stay efficient by creating actionable Early Security Alerts

ProxyShell

Microsoft Exchange servers scanned for ProxyShell vulnerability

Severity

Attack complexity

Type

High

-

Multiple vulnerabilities

Threat / Attack Vector

Multiple

Date

11 Aug 2021