Resources

Learn about CYREBRO’s platform, technology, and capabilities, read about industry insights, watch webinars with cyber experts, and much more in the resources below.  

  • Google has patched 3 remote code execution vulnerabilities in Chrome.  
    Threat Intelligence

    Google has patched 3 remote code execution vulnerabilities in Chrome.  

    June 23, 2022  Google has patched 3 remote code execution vulnerabilities in Chrome  The newly released Chrome version 103.0.5060.53 for Windows, Mac and Linux addresses 14 vulnerabilities overall.  The Vulnerabilities CVE-2022-2156, Critical severity – ‘Use after free’ in ‘Base’.  CVE-2022-2157, High severity – Use after free in ‘Interest groups’.  CVE-2022-2161, Medium severity – Use after free…

  • Ransomware Attack Prevented: CYREBRO Incident Response Case Study
    Case Studies

    Ransomware Attack Prevented: CYREBRO Incident Response Case Study

    A global manufacturing company was established well over a century ago, with over 5,000 employees today and an annual revenue of over 1 billion USD

  • Citrix Patches ADM Account Takeover Vulnerability 
    Threat Intelligence

    Citrix Patches ADM Account Takeover Vulnerability 

    June 15, 2022   Citrix Patches ADM Account Takeover Vulnerability Citrix has patched an improper access control vulnerability affecting the Application Delivery Management solution (Citrix ADM), which may lead to an account takeover.  The Vulnerability CVE-2022-27511 – Corruption of the system by a remote, unauthenticated user potentially leading to the reset of the administrator password,…

  • Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities  
    Threat Intelligence

    Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities  

    June 15, 2022  Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities As part of June’s monthly security rollup updates, Microsoft has patched the recent ‘Follina‘ 0-Day as well as 27 Remote Code Execution vulnerabilities.  Overall, Microsoft has patched 55 vulnerabilities across Windows, Azure, Office, SQL Server, Hyper-V, Edge, RVSS, .NET & Visual Studio.  The 0-Day Vulnerability CVE-2022-30190…

  • Incident Response Analysis Report
    Guides & E-books

    Incident Response Analysis Report

    After analyzing numerous internal incident response (IR) reports, CYREBRO discovered a shocking statistic: 75% of reported security incidents were caused by inadequate investment in security solutions that caused blind spots in network visibility. Given that a single, minor blind spot can put your business at risk, ensuring that you achieve 100% visibility is critical.

  • Google Patches 7 Chrome Vulnerabilities, 1 RCE
    Threat Intelligence

    Google Patches 7 Chrome Vulnerabilities, 1 RCE

    June 12, 2022  Google Patches 7 Chrome Vulnerabilities, 1 RCE Google has patched a remote code execution vulnerability in Chrome.   The newly released Chrome version 102.0.5005.115 for Windows, Mac and Linux addresses 7 vulnerabilities overall.  The RCE Vulnerability CVE-2022-2007, High Severity – Use after free in WebGPU. The vulnerability is remotely exploitable and doesn’t require…

  • Incident Response Analysis Report
    Guides & E-books

    Incident Response Analysis Report

    After analyzing numerous internal incident response (IR) reports, CYREBRO discovered a shocking statistic: 75% of reported security incidents were caused by inadequate investment in security solutions that caused blind spots in network visibility. Given that a single, minor blind spot can put your business at risk, ensuring that you achieve 100% visibility is critical.

  • How to Build a SOC: A Complete Guide
    Guides & E-books

    How to Build a SOC: A Complete Guide

    Building a SOC is no small feat. A company should be ready to invest extensive resources into the technology and personnel needed to get a SOC up and running, plan long-term to maintain and optimize tools and systems, and provide regular training for SOC analysts. Before you embark down this path, we recommend learning what it really takes to build and maintain a SOC.

  • 2022 Attack Vector Landscape Analysis
    Guides & E-books

    2022 Attack Vector Landscape Analysis

    This report details this attack vector landscape analysis and provides readers with insights that can help inform their cybersecurity strategy in 2022 and beyond.

  • The 6 Critical Capabilities of a Complete SOC Solution
    Guides & E-books

    The 6 Critical Capabilities of a Complete SOC Solution

    A SOC solution is an ideal way for businesses to maintain proper protection and response against cyberattacks, especially before they occur.

  • 7 Steps to Effective Incident Response
    Guides & E-books

    7 Steps to Effective Incident Response

    This guide is meant to help you take the first steps to creating an effective incident response plan. Every organization is different, so use this guide as a framework to create an incident response plan (IRP) that is uniquely tailored to your organization.  

  • Predictions for 2022
    Guide

    Predictions for 2022

    Cybersecurity should be considered a right, not a privilege. As such, investment into solutions that can transform chaos into clarity, as well as improving employee awareness, will be critical when facing threats into 2022 and beyond

  • Google has patched 3 remote code execution vulnerabilities in Chrome.  
    Threat Intelligence

    Google has patched 3 remote code execution vulnerabilities in Chrome.  

    June 23, 2022  Google has patched 3 remote code execution vulnerabilities in Chrome  The newly released Chrome version 103.0.5060.53 for Windows, Mac and Linux addresses 14 vulnerabilities overall.  The Vulnerabilities CVE-2022-2156, Critical severity – ‘Use after free’ in ‘Base’.  CVE-2022-2157, High severity – Use after free in ‘Interest groups’.  CVE-2022-2161, Medium severity – Use after free…

  • Citrix Patches ADM Account Takeover Vulnerability 
    Threat Intelligence

    Citrix Patches ADM Account Takeover Vulnerability 

    June 15, 2022   Citrix Patches ADM Account Takeover Vulnerability Citrix has patched an improper access control vulnerability affecting the Application Delivery Management solution (Citrix ADM), which may lead to an account takeover.  The Vulnerability CVE-2022-27511 – Corruption of the system by a remote, unauthenticated user potentially leading to the reset of the administrator password,…

  • Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities  
    Threat Intelligence

    Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities  

    June 15, 2022  Microsoft Patches ‘Follina’ 0-Day & 27 RCE Vulnerabilities As part of June’s monthly security rollup updates, Microsoft has patched the recent ‘Follina‘ 0-Day as well as 27 Remote Code Execution vulnerabilities.  Overall, Microsoft has patched 55 vulnerabilities across Windows, Azure, Office, SQL Server, Hyper-V, Edge, RVSS, .NET & Visual Studio.  The 0-Day Vulnerability CVE-2022-30190…

  • Google Patches 7 Chrome Vulnerabilities, 1 RCE
    Threat Intelligence

    Google Patches 7 Chrome Vulnerabilities, 1 RCE

    June 12, 2022  Google Patches 7 Chrome Vulnerabilities, 1 RCE Google has patched a remote code execution vulnerability in Chrome.   The newly released Chrome version 102.0.5005.115 for Windows, Mac and Linux addresses 7 vulnerabilities overall.  The RCE Vulnerability CVE-2022-2007, High Severity – Use after free in WebGPU. The vulnerability is remotely exploitable and doesn’t require…

  • GitLab Patches a Critical Account Takeover Vulnerability
    Threat Intelligence

    GitLab Patches a Critical Account Takeover Vulnerability

    June 6, 2022  GitLab Patches a Critical Account Takeover Vulnerability GitLab has released a critical security update, patching a critical account takeover vulnerability, as well as 7 other, less severe vulnerabilities. The critical vulnerability affects only GitLab Enterprise Edition (EE) under certain conditions, described in the next section below. The Critical Vulnerability CVE-2022-1680, (CVSS 3.0:…

  • Atlassian Patches a Critical Confluence RCE Vulnerability Exploited in the Wild
    Threat Intelligence

    Atlassian Patches a Critical Confluence RCE Vulnerability Exploited in the Wild

    June 6, 2022  Atlassian Patches a Critical Confluence RCE Vulnerability Exploited in the Wild Atlassian has released new Confluence ‘Server’ and ‘Data Center’ versions addressing an exploited in the wild critical remote code execution vulnerability. The Vulnerability CVE-2022-26134, Critical Severity – OGNL injection vulnerability allows an unauthenticated user to execute arbitrary code on a Confluence…