Introduction In this blog post we are going to talk about a security incident which involved an open-source library developed by a student working on
Tag: vulnerability
CVE-2023-23397 – Microsoft Outlook Privilege Elevation Critical Vulnerability
Written by Lina Jiménez Becerra, Anton Jörgensson and Mark Stueck of the Kudelski Security Threat Detection & Research Team CVE-2023-23397: Ability to exploit an Elevation
CVE-2023-27532 – Veeam Backup & Replication Vulnerability Exposes Stored Credentials, No Auth Necessary
Written by Mark Stueck and Scott Emerson of the Kudelski Security Threat Detection & Research Team CVE-2023-27532: Unauthenticated Access to Cleartext Credentials Possible Through Veeam Backup
Ransomware as a Service – Nevada Ransomware campaign targeting VMWare ESXi servers
Written by Michal Nowakowski of the Kudelski Security Threat Detection & Research Team UPDATE – February 14th 2023 After the first wave of ESXiArgs ransomware
“SynLapse” – Azure Synapse Pipeline and Data Factory Vulnerability (CVE-2022-29972)
This bulletin was written by Eric Dodge of the Kudelski Security Threat Detection & Research Team Summary Microsoft has recently mitigated a vulnerability that was
High Severity VMware Vulnerabilities Under Active Exploitation
This bulletin was written by Travis Holland and Eric Dodge of the Kudelski Security Threat Detection & Research Team Executive Summary On May 18th, 2022,