vulnerability – Kudelski Security Research

High Severity VMware Vulnerabilities Under Active Exploitation

May 20, 2022 KS Threat Research

This bulletin was written by Travis Holland and Eric Dodge of the Kudelski Security Threat Detection & Research Team Executive Summary On May 18th, 2022,

Active Directory Domain Services Elevation of Privilege Vulnerability

May 16, 2022 KS Threat Research

This bulletin was written by Michal Nowakowski of the Kudelski Security Threat Detection & Research Team Update June 1st, 2022, 1830h UTC (2.30PM EDT) Microsoft

“INCONTROLLER” / “PIPEDREAM” ICS Toolkit Targeting Energy Sector

April 25, 2022 KS Threat Research

This advisory was written by Travis Holland and Eric Dodge of the Kudelski Security Threat Detection & Research Team Summary Incontroller/Pipedream is a collection of

[Updated] Log4Shell: Critical Severity Apache Log4j Remote Code Execution Being Actively Exploited (CVE-2021-44228 & CVE-2021-45046)

December 10, 2021 Francisco Donoso

Update December 17th, 2021: Log4j 2.15.0 Vulnerability Upgraded from Low to Critical Severity (CVSS 9.0) – RCE possible in non-default configurations The Apache Software Foundation

SWD Bonus – MEM-AP security

June 15, 2020 Nicolas Oberli

Disclaimer : Since this vulnerability has been made public, here is a small blog post explaining the methodology we used to find and exploit the

1 2 »