(this blog-post was initially published by our colleague Mouad Kondah on Medium) On March 29, 2022, a critical Remote Code Execution vulnerability CVE-2022-22965 was disclosed
Cyclops Blink Malware Targeting WatchGuard Firewalls
Summary On February 23rd, the UK National Cyber Security Center (NCSC) with the US Cybersecurity &Infrastructure Security Agency (CISA) and other security agencies released information
CFC Response to Russia / Ukraine Tensions and Potential Cyber-Attacks in Retaliation to Western Sanctions
As the current situation continues to evolve, the Kudelski Security Cyber Fusion Center iscontinuously adapting our response to events, intelligence, and new details being released.
Lapsus$ Threat Actor Demonstrates Access to Backend Okta Tooling
Summary Okta is one of the premier identity providers in the World and is trusted by thousands of customers. The recently known Lapsus$ threat actor
“Dirty Pipe” Linux Kernel Local Privilege Escalation (LPE) Vulnerability (CVE-2022-0847)
Summary CVE-2022-0847 was disclosed on March 7th and since has been named “Dirty Pipe”. This linuxkernel vulnerability is caused by improperly handling flags on Linux
Web3 and Security: It’s Time To Grow Up
Hello Web3/blockchain world, great job. You got people to take you seriously, trusting your projects and investing their money. You’ve sold people on your innovations,
Kudelski Security Research 