Vulnerability Archives - Unit 42

A stylized portrayal of APT Fighting Ursa. The marks from bear claws in bright orange against the backdrop of a night sky.

210

people reacted

Fighting Ursa (APT28) の隠密作戦で学ぶ APT 脅威の被害者学

By Unit 42
December 7, 2023 at 11:03 PM

0

3 min. read

A pictorial representation of a vulnerability like CVE-2023-36884, CVE-2023-36584,. A laptop screen displays lines of text. A magnifying glass examining the screen has within it a warning icon.

506

people reacted

CVE-2023-36884、CVE-2023-36584 を悪用する 2023 年 7 月のエクスプロイトチェーンの詳解

By Eli Birkan, Dan Yashnik, Oriel Cochavi, Bar Lahav and Mike Harbison
November 13, 2023 at 9:58 PM

1

8 min. read

A collection of icons representing the dangers of clickbait sites. Warning icons, a figure wearing a mask, phishing and more. The Palo Alto Networks and Unit 42 logos.

224

people reacted

トラフィック量↑ + 脆弱性数↑ = 魅惑の犯罪ターゲット: クリックベイト・広告サイト閲覧のリスク

By Shresta Bellary Seetharam, Tao Yan, Nabeel Mohamed, Tim Hofmockel, Alex Starov and Brad Duncan
November 9, 2023 at 12:00 PM

0

4 min. read

WinRAR の CVE-2023-40477 脆弱性のエクスプロイトを謳う偽 PoC (概念実証) が見つかる − PoC 実行で VenomRAT に感染

808

people reacted

WinRAR の CVE-2023-40477 脆弱性のエクスプロイトを謳う偽 PoC (概念実証) が見つかる − PoC 実行で VenomRAT に感染

By Robert Falcone
September 21, 2023 at 12:42 AM

0

5 min. read

Unit 42 Threat

1,852

people reacted

[2023-08-14 更新] 脅威の概要: Microsoft OfficeおよびWindows HTMLにおけるリモートコード実行の脆弱性(CVE-2023-36884)

By Unit 42
July 12, 2023 at 6:39 PM

1

2 min. read

A pictorial representation of vulnerabilities like CVE-2021-1732 and CVE-2022-21882

549

people reacted

インサイドWin32kエクスプロイト: CVE-2022-21882とCVE-2021-1732の分析

By Shawn Westfall
July 3, 2023 at 12:35 AM

0

9 min. read

A pictorial representation of vulnerabilities like CVE-2021-1732 and CVE-2022-21882

1,486

people reacted

インサイドWin32kエクスプロイト: Win32kの実装の背景とエクスプロイトの方法論

By Shawn Westfall
June 12, 2023 at 5:25 PM

0

4 min. read

A pictorial representation of the Mirai Variant V3G4

3,409

people reacted

IoTデバイスを狙うMiraiの亜種「V3G4」

By Chao Lei, Zhibin Zhang, Cecilia Hu and Aveek Das
February 15, 2023 at 6:00 AM

0

5 min. read

A pictorial representation of network attack trends such as CVE-2021-35394 featuring a stylized bug on IoT-related products.

3,864

people reacted

Realtek SDKの脆弱性攻撃 IoTサプライチェーンの脅威を浮き彫りに(CVE-2021-35394)

By Yiheng An, Chao Lei, Adam Robbie, Aveek Das, Zhibin Zhang and Shehroze Farooqi
January 24, 2023 at 6:00 AM

1

3 min. read

A pictorial representation of a security vulnerability. It shows a checkmark on a shield within a crystal ball.

2,547

people reacted

ネットワークセキュリティ動向: 2022年8月～10月

By Yiheng An
January 12, 2023 at 10:53 PM

0

3 min. read

A pictorial representation of the JsonWebToken vulnerability.

14,594

people reacted

[2023-01-31 12:00 JST 更新] JWTのシークレットポイズニングに関する問題

By Artur Oleyarsh
January 10, 2023 at 12:33 AM

2

2 min. read

Network security trends conceptual image

3,507

people reacted

ネットワークセキュリティ動向: 2022年5月〜7月

By Yiheng An
November 16, 2022 at 4:43 PM

0

4 min. read

Cloud vulnerabilities conceptual image, covering topics such as OpenLiteSpeed vulnerabilities

2,383

people reacted

Unit 42がOpenLiteSpeed Web サーバーに3つの脆弱性を発見

By Artur Avetisyan
November 10, 2022 at 6:00 AM

0

< 1 min. read

Threat brief image, covering vulnerabilities such as CVE-2022-3786 and CVE-2022-3602, OpenSSL X.509 Buffer Overflows

4,240

people reacted

脅威に関する情報: OpenSSL X.509のバッファオーバーフロー脆弱性 (CVE-2022-3786、CVE-2022-3602)

By Shawn Westfall
November 3, 2022 at 10:27 PM

0

2 min. read

Threat Brief Image for CVE-2022-41040, CVE-2022-41082, ProxyNotShell

5,130

people reacted

脅威に関する情報: Microsoft Exchange Server (ProxyNotShell) の脆弱性 (CVE-2022-41040、CVE-2022-41082)

By Shawn Westfall
October 4, 2022 at 11:40 PM

0

4 min. read