This weeks' briefing covers:

00:00 - Intro and Situational Awareness

4:04 - (Out of Band) Two Zero-Day Vulnerabilities Impacting 3 Ivanti Products

5:17 - Ivanti Patches Available Following Delay and Widespread Exploitation

7:36 - POC Exploit Released for CVE-2023-35636, Allowing NTLM Hash Theft via Outlook

10:41 - Malware Spotlight: WHITESNAKE

14:41 - Local Privilege Elevation Vulnerability Discovered in Glibc

15:55 - Ransomware Roundup

Dive deeper:

Two Zero-Day Vulnerabilities Impacting Ivanti Connect Secure and Policy Secure Gateways: https://www.kroll.com/en/insights/publications/cyber/2-ivanti-zero-day-vulnerabilities

Kroll Cyber Blog: https://www.kroll.com/en/insights/publications/cyber

Kroll Cyber Threat Intelligence: https://www.kroll.com/en/services/cyber-risk/managed-security/threat-intelligence-services

Kroll Threat Intelligence Reports: https://www.kroll.com/en/insights/publications/cyber/threat-intelligence-reports

Kroll Responder MDR: https://www.kroll.com/en/services/cyber-risk/managed-security/kroll-responder

#krollcyber #threatintelligence #cyberthreats