Cyber Threat Intelligence – Alerts

March 20, 2023

Ransomware Attacks in Pakistan – LockBit 3.0

Ransomware attacks have been a growing threat to the Pakistani business and industry for a number of years — and recent research has shown they are increasing in prevalence during the COVID-19 pandemic. According to […]
January 16, 2023

Prompt Engineering – GPT-3 Enhancing phishing and BEC scams

Cyber Security experts have utilized the GPT-3 natural language generation model and its ChatGPT chatbot to showcase how deep learning models can be used to make social engineering attacks, such as phishing or business email […]
January 1, 2023

The Wiper Malware

A wiper is a type of malware with a single purpose: to erase user data beyond recovery. Wipers are used to destroy computer networks in public or private companies ranging from industrial to government sectors. […]
December 13, 2022

Fortinet Warns of Active Exploitation of New SSL-VPN Pre-auth RCE Vulnerability

Fortinet on Monday issued emergency patches for a severe security flaw affecting its FortiOS SSL-VPN product that it said is being actively exploited in the wild. Tracked as CVE-2022-42475 (CVSS score: 9.3), the critical bug […]
October 3, 2021

Rise of Cybercrime during COVID-19 Pandemic

Before the COVID-19 pandemic, cybersecurity strategy was primarily focused on securing the network perimeter. But COVID-19 blurred the borders around businesses’ critical applications and data. The network perimeter has been extended to employees' homes, and accessibility needs from anywhere have accelerated the migration to cloud and adoption of other digital technologies.
August 20, 2021

IoT (Internet of Things) CyberSecurity Checklist

Pakistani businesses can reap impressive benefits from the Internet of Things (IoT). But more IoT devices and a more complex IoT ecosystem also mean increased security vulnerabilities from edge to cloud.Sadly, many companies still put off adopting […]
May 5, 2021

CVE 2018-13379, CVE-2020-12812, and CVE-2019-5591- Exploited to gain access

The FBI and CISA believe the APT actors are likely exploiting these Fortinet FortiOS vulnerabilities—CVE 2018-13379, CVE-2020-12812, and CVE-2019-5591—to gain access to multiple government, commercial, and technology services networks.
December 14, 2020

SOLARWINDS ORION NETWORK MANAGEMENT PRODUCTS – Vulnerability

There is a known vulnerability and SolarWinds Orion products (affected versions are 2019.4 through 2020.2.1 HF1) are currently being exploited by malicious actors. This attack tactic permits an attacker to gain access to network traffic […]