Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 22 of 28105

Heap-based buffer overflow in cw_stad daemon

Posted by Cyberthreat Blog | Aug 9, 2025 | Fortinet PSIRT Advisories |

A heap-based buffer overflow vulnerability [CWE-122] in FortiOS cw_stad daemon may allow an authenticated attacker to execute arbitrary code or commands via specifically crafted requests. Revised on 2025-07-08 00:00:00

Ransomware Attacks Fall by Almost Half in Q2

Posted by Cyberthreat Blog | Aug 9, 2025 | DARKREADING |

Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups

Posted by Cyberthreat Blog | Aug 9, 2025 | The Hacker News |

Microsoft has released an advisory for a high-severity security flaw affecting on-premise versions of Exchange Server that could allow an attacker to gain elevated privileges under certain conditions. The vulnerability, tracked...

VU#806555: A Vulnerability in UEFI Applications allows for secure boot bypass via misused NVRAM variable

Posted by Cyberthreat Blog | Aug 9, 2025 | CERT-Vulnerabilities |

Overview UEFI firmware applications DTBios and BiosFlashShell from DTResearch contain a vulnerability that allows Secure Boot to be bypassed using a specially crafted NVRAM variable. The vulnerability stems from improper...

How to Mitigate Insider Threats by Learning from Past Incidents

Posted by Cyberthreat Blog | Aug 9, 2025 | CERT Insider Threats |

This post summarizes a new best practice added to the new 7th edition of the Common Sense Guide to Mitigating Insider Threats, “Learn from Past Insider Threat Incidents.”

Author: Cyberthreat Blog

Heap-based buffer overflow in cw_stad daemon

Ransomware Attacks Fall by Almost Half in Q2

Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups

VU#806555: A Vulnerability in UEFI Applications allows for secure boot bypass via misused NVRAM variable

How to Mitigate Insider Threats by Learning from Past Incidents