Resources

CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials

Cybersecurity researchers have discovered over a dozen vulnerabilities in enterprise secure vaults from CyberArk and HashiCorp that, if successfully exploited, can allow remote attackers to crack open corporate identity systems and extract enterprise secrets and tokens from them.
The 14 vulnerabilities, collectively named Vault Fault, affect CyberArk Secrets Manager, Self-Hosted, and

Related resources

23 August 2025

GeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional Botnets

Cybersecurity researchers are calling attention to multiple campaigns that leverage known security vulnerabilities and expose Redis servers to various malicious activities, including leveraging the compromised devices as IoT botnets, residential […]

16 December 2025

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

An ongoing campaign has been observed targeting Amazon Web Services (AWS) customers using compromised Identity and Access Management (IAM) credentials to enable cryptocurrency mining. The activity, first detected by Amazon’s […]

17 September 2025

TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks

The threat actor known as TA558 has been attributed to a fresh set of attacks delivering various remote access trojans (RATs) like Venom RAT to breach hotels in Brazil and […]

Friday Squid Blogging: New Vulnerability in Squid HTTP Proxy Server

TR-25-0188 (Microsoft Azure Güvenlik Bildirimi)

Resources

CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials

Related resources

GeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional Botnets

Compromised IAM Credentials Power a Large AWS Crypto Mining Campaign

TA558 Uses AI-Generated Scripts to Deploy Venom RAT in Brazil Hotel Attacks

Links

Enterprise Solutions

SMB Solutions

Contact Us

Follow Us