ManageEngine's CVE-2022-47966 vulnerability is a critical issue that allows an attacker to gain remote code execution on the server...

In recent months, we have seen a surge in attacks targeting Exchange Servers. These attacks have been made possible by exploiting the...

The Play ransomware group has been making headlines recently due to its use of a new method to exploit vulnerabilities in Microsoft...

Citrix is a global leader in providing digital workspace solutions, and as such, it is a popular target for cyber attackers. One such...

CVE-2022-27516 is a severe vulnerability recently discovered in Citrix, a widely-used software program. This vulnerability has the...

CVE-2022-42475 is a recently discovered vulnerability in the software that powers Fortinet, a popular cybersecurity company. This...

What are Jump Lists? Jump Lists are windows features introduced with Windows 7, and they contain information about recently accessed...

We have recently observed threat actors evolving their procedures in light of Microsoft disabling macros by default in office documents....

A user account is created in Active Directory for each user in your environment. Over time as users leave the organization, their...

What are Profile Lists? Windows keeps track of user-profiles and their locations in the registry. The profile location is stored under...

CVE-2022-1388 is a critical CVE (CVSS 9.8) in F5 Networks’ BIG-IP solution management interface. This CVE will allow threat actors to...

Business continuity and disaster recovery (BCDR or BC/DR) is a collection of processes and procedures that assist a company in recovering...

What is Windows Prefetch? Windows Prefetch creates files when a user opens an application on a Windows host. The Windows Operating system...

Phishing attacks remain the number one technique used in cyberattacks. Some of the most common phishing attacks leveraged attachments to...

A critical vulnerability CVE-2022-22965 (Spring4Shell or SpringShell) was found on March 29, 2022, in an open-source Java framework while...

On patch Tuesday, April 12, 2022, Microsoft released patches for CVE-2022-26809. A vulnerability that is a zero-click exploit targeting...

As we look across the landscape, we see that cyberattacks continue to succeed in all business sectors. In the cases we have observed, the...

Endpoint Detection & Response (EDR) A critical task for most organizations has become setting up advanced threat protection as...

Flexibility: A virtual Chief Information Security Officer (vCISO) can be reached immediately via a simple phone call, whether the vCISO...

Cybersecurity is full of buzzwords like XDR, MDR, and EDR. A new buzzword has been stealing the scene: secure access service edge (SASE)....