Rescana Blog
1092 posts | Page 12 of 46
CVE Analysis Center
SolarWinds Web Help Desk Critical Vulnerabilities: Unauthenticated RCE and Authentication Bypass Fixed in Emergency Patch
Active Exploitation Alert
ShinyHunters Vishing Attacks Bypass MFA to Breach Okta, Microsoft 365, and Google Workspace SaaS Platforms
Active Exploitation Alert
RedKitten APT Targets Microsoft Excel Vulnerabilities in Cyber-Espionage Campaign Against Iranian Human Rights NGOs and Activists
Active Exploitation Alert
Ivanti Endpoint Manager Mobile (EPMM) Zero-Day RCE Vulnerabilities (CVE-2023-35078 & CVE-2023-35081) Actively Exploited: Security Updates and Mitigation Guidance
Active Exploitation Alert
Hugging Face Abused to Distribute Polymorphic Android RAT TrustBastion Malware Campaign Targeting Asia-Pacific Users
Active Exploitation Alert
eScan Antivirus Supply Chain Attack: Malicious Update Delivers Malware to South Asian Users
Active Exploitation Alert
CERT Polska Report: Coordinated Cyberattacks Disrupt Poland’s FortiGate-Managed Wind and Solar Farms
Cybersecurity Incident Analysis
CVE-2025-15467: Critical Remote Code Execution Vulnerability in OpenSSL Patched – Update Now to Prevent Exploitation
Cybersecurity Incident Analysis
WinRAR Path Traversal Vulnerability (CVE-2023-38831): Ongoing Exploitation by APTs and Cybercriminals
Cybersecurity Incident Analysis
SoundCloud Data Breach 2025: 29.8 Million Accounts Exposed and Indexed by Have I Been Pwned
Cybersecurity Incident Analysis
Mustang Panda Targets Government Systems with CoolClient Backdoor and Infostealer Modules in Asia and Eastern Europe
Cybersecurity Incident Analysis
Microsoft Office CVE-2026-21509 Zero-Day: Emergency Patch Released to Counter Active Exploitation
Cybersecurity Incident Analysis
Microsoft Office Zero-Day CVE-2026-21509: Emergency Patch Released for Actively Exploited OLE Vulnerability
Cybersecurity Incident Analysis
CVE-2026-24061: Critical Authentication Bypass in GNU InetUtils telnetd Exposes 800,000 Devices to Remote Root Attacks
Cybersecurity Incident Analysis
CVE-2026-24002: Critical Grist-Core Vulnerability Enables Remote Code Execution via Spreadsheet Formula Sandbox Escape
Cybersecurity Incident Analysis
ClickFix Malware Attacks Targeting Microsoft Windows: Fake CAPTCHAs, Signed Scripts, and Trusted Web Service Exploitation
Cybersecurity Incident Analysis
APT36 (Transparent Tribe) Escalates Cyber-Espionage Against Indian Government and Defense Networks Through Advanced Spear-Phishing and LNK Malware (2024-2025)
CVE Analysis Center
Under Armour Customer Data Breach 2025: Technical Analysis of Everest Ransomware Attack and Exposed Email Addresses
CVE Analysis Center
StackWarp (CVE-2025-29943): Critical SEV-SNP Vulnerability in AMD Zen 1–5 CPUs Exposes Confidential Computing to Privilege Escalation and Key Theft
CVE Analysis Center
Sophisticated Multi-Stage Phishing Attack Exploits Microsoft Windows in Russian Organizations Using Amnesia RAT and Hakuna Matata Ransomware
CVE Analysis Center
Sandworm’s DynoWiper Attack Targeting Polish Combined Heat and Power and Renewable Energy Management Systems: Incident Analysis and Lessons Learned
CVE Analysis Center
Okta SSO Accounts Targeted by Sophisticated Vishing and Adversary-in-the-Middle (AiTM) Phishing Attacks Leading to Data Theft and Extortion
CVE Analysis Center
Konni APT Targets Blockchain Development Environments with AI-Generated PowerShell Malware via Discord Exploits
Technology