DoublePulsar

DoublePulsar

Kevin Beaumont

Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service

Being a provider of cloud SaaS (Software-as-a-service) solutions requires certain cybersecurity responsibilities — including being…

6d ago

Oracle attempt to hide serious cybersecurity incident from customers in Oracle SaaS service

6d ago

Kevin Beaumont

No, there isn’t a world ending Apache Camel vulnerability

Posts have been circulating publicly on the internet for several days about a “critical”, end of the world “zero day” in Apache Camel…

Mar 9

No, there isn’t a world ending Apache Camel vulnerability

Mar 9

Kevin Beaumont

Use one Virtual Machine to own them all — active exploitation of ESXicape

A chain of three zero days allow threat actors to escape a Virtual Machine.

Mar 5

Use one Virtual Machine to own them all — active exploitation of ESXicape

Mar 5

Kevin Beaumont

2022 zero day was used to raid Fortigate firewall configs. Somebody just released them.

Back in 2022, Fortinet warned that somebody had a zero day vulnerability and was using it to exploit Fortigate firewalls…

Jan 16

2022 zero day was used to raid Fortigate firewall configs. Somebody just released them.

Jan 16

Kevin Beaumont

Handala attempts a supply chain hack via ReutOne

During the week, Handala — a group painfully in love with Israel, tried a forward supply chain attack.

Dec 27, 2024

Handala attempts a supply chain hack via ReutOne

Dec 27, 2024

Kevin Beaumont

Burning Zero Days: FortiJump FortiManager vulnerability used by nation state in espionage via MSPs

Yes, I’ve made a logo in crayon and named this FortiJump.

Oct 22, 2024

Burning Zero Days: FortiJump FortiManager vulnerability used by nation state in espionage via MSPs

Oct 22, 2024

Kevin Beaumont

EIW — ESET Israel Wiper — used in active attacks targeting Israeli orgs

A look at wiping of Israeli orgs.

Oct 17, 2024

EIW — ESET Israel Wiper — used in active attacks targeting Israeli orgs

Oct 17, 2024

Kevin Beaumont

Hacker group Handala Hack Team claim battery explosions linked to Israeli battery company.

Tracking Iran linked group claims

Sep 19, 2024

Hacker group Handala Hack Team claim battery explosions linked to Israeli battery company.

Sep 19, 2024

Kevin Beaumont

CrowdStrike trying to use legal threats to suppress criticism and parody of global IT outage

CrowdStrike attempts to hush up customers.

Aug 5, 2024

CrowdStrike trying to use legal threats to suppress criticism and parody of global IT outage

Aug 5, 2024

Kevin Beaumont

Microsoft need to be transparent about customer impacting DDoS attacks

Microsoft are hiding another customer impacting DDoS attack.

Jul 30, 2024

Microsoft need to be transparent about customer impacting DDoS attacks

Jul 30, 2024

DoublePulsar

Cybersecurity from the trenches, written by Kevin Beaumont. Opinions are of the author alone, not their employer.

Connect with DoublePulsar

Editors

Kevin Beaumont

Everything here is my personal work and opinions.

Sign up for Cybersecurity Threat Context and Response

By DoublePulsar

Cyber Threat Content and Response, from porgs, direct to your email box. Take a look.

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech