Project Hyphae


the latest cybersecurity threat alerts

MailChimp Discloses New Breach After Employees Got Hacked Article Link: T-Mobile Suffers 8th Data Breach in Less Than 5 Years

BianLian, a Windows ransomware variant written in Go, the Google-created open source programming language, has been steadily increasing in popularity among

Sneaky New Stealer Woos Corporate Workers Through Fake Zoom Downloads Article Link: CircleCI, LastPass, Okta, and Slack: Cyberattackers Pivot to

An IcedID malware attack enabled the threat actor to compromise the Active Directory domain of an unnamed target less than 24

Cisco has announced that it will not be releasing patches for a critical vulnerability (CVE-2023-20025) that affects small business RV016, RV042,

The Control Web Panel (CWP) is actively being targeted by hackers who are attempting to exploit a recently patched critical vulnerability

Hackers Abuse Windows Error Reporting Tool to Deploy Malware Article Link: Windows 7 to Stop Receiving Extended Security Updates on

Back on December 20th, 2022, CrowdStrike published a blog about a new exploit of Exchange servers via OWA utilizing CVE-2022-41080 and

CISA is alerting that Veeam versions 9.5, 10, and 11 contain 2 critical vulnerabilities that are actively being exploited in the

**Note: With the holidays coming up soon, this will be the last Security News posting (outside of possible one-off posts by

A vulnerability has been discovered in Citrix ADC and Citrix Gateways that can allow for unauthorized Remote Code Execution (RCE). This

Fortinet released PSIRT Advisory on December 12, 2022 for its FortiOS SSL-VPN summarizing a vulnerability that could potentially allow for remote

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.