Emerging Threats

• 03/03/2021: Microsoft Exchange Server HAFNIUM Exploits
• 02/26/2021: vCenter Remote Code Execution Vulnerability
• 12/14/2020: SolarWinds Orion Code Compromise
• 12/09/2020: FireEye Attack Tool Leak
• 07/15/2020: SIGRED/Wormable Windows DNS Server Remote Code Execution
• 05/04/2020: SaltStack Remote Code Execution
• 01/14/2020: Citrix Application Delivery Controller and Citrix Gateway Vulnerability
• 09/25/19: vBulletin WidgetConfig Unauthenticated Remote Code Execution
• 07/16/19: Atlassian Jira ContactAdministrators Remote Code Execution
• 05/15/19: Microsoft Windows Remote Desktop Protocol RCE
• 04/29/19: Oracle WebLogic async Deserialization RCE
• 03/11/19: Remote Execution Via Critical Google Chrome and Windows 7 Linked Vulnerabilities
• 02/26/19: Drupal REST API Remote Code Execution
• 02/21/19: Jenkins Plugins Remote Code Execution
• 10/22/18: jQuery Plugin Code Arbitrary File Upload
• 10/18/18: Libssh Authentication Bypass Vulnerability (CVE-2018-10933)
• 08/23/18: CVE-2018-11776 Apache Struts Vulnerability
• 07/25/18: Oracle WebLogic JSP File Upload Vulnerability
• 05/08/18: Drupal Remote Code Execution
• 01/11/18: Oracle WebLogic WLS-WSAT Exploit
• 01/04/18: Meltdown and Spectre Vulnerabilities
• 10/16/17: KRACK Wi-Fi WPA2 Security Vulnerability
• 09/06/17: CVE-2017-9805 Apache Struts Xstream RCE Vulnerability
• 07/12/17: CVE-2017-9791 Apache Struts2 Showcase App Vulnerability
• 06/28/17: PetrWrap Server-Side Ransomware Threat
• 05/12/17: WannaCryptor Server-Side Ransomware Threat
• 05/08/17: WordPress Host Header RCE & Password Reset Exploits
• 04/24/17: Vault 7 Cisco Flaw
• 04/21/17: Shadow Brokers Release of Equation Group Toolset
• 03/14/17: Vault 7 CIA Hacking Tools

• 03/03/2021: Microsoft Exchange Server HAFNIUM Exploits
• 02/26/2021: vCenter Remote Code Execution Vulnerability
• 12/14/2020: SolarWinds Orion Code Compromise
• 12/09/2020: FireEye Attack Tool Leak
• 07/15/2020: SIGRED/Wormable Windows DNS Server Remote Code Execution
• 05/04/2020: SaltStack Remote Code Execution
• 01/14/2020: Citrix Application Delivery Controller and Citrix Gateway Vulnerability
• 09/25/19: vBulletin WidgetConfig Unauthenticated Remote Code Execution
• 07/16/19: Atlassian Jira ContactAdministrators Remote Code Execution
• 05/15/19: Microsoft Windows Remote Desktop Protocol RCE
• 04/29/19: Oracle WebLogic async Deserialization RCE
• 03/11/19: Remote Execution Via Critical Google Chrome and Windows 7 Linked Vulnerabilities
• 02/26/19: Drupal REST API Remote Code Execution
• 02/21/19: Jenkins Plugins Remote Code Execution
• 10/22/18: jQuery Plugin Code Arbitrary File Upload
• 10/18/18: Libssh Authentication Bypass Vulnerability (CVE-2018-10933)
• 08/23/18: CVE-2018-11776 Apache Struts Vulnerability
• 07/25/18: Oracle WebLogic JSP File Upload Vulnerability
• 05/08/18: Drupal Remote Code Execution
• 01/11/18: Oracle WebLogic WLS-WSAT Exploit
• 01/04/18: Meltdown and Spectre Vulnerabilities
• 10/16/17: KRACK Wi-Fi WPA2 Security Vulnerability
• 09/06/17: CVE-2017-9805 Apache Struts Xstream RCE Vulnerability
• 07/12/17: CVE-2017-9791 Apache Struts2 Showcase App Vulnerability
• 06/28/17: PetrWrap Server-Side Ransomware Threat
• 05/12/17: WannaCryptor Server-Side Ransomware Threat
• 05/08/17: WordPress Host Header RCE & Password Reset Exploits
• 04/24/17: Vault 7 Cisco Flaw
• 04/21/17: Shadow Brokers Release of Equation Group Toolset
• 03/14/17: Vault 7 CIA Hacking Tools