the Lab

Get all the information you need to help your security teams analyse cyber attacks technically.

– Gatewatcher technical teams
Le Lab Gatewatcher D
Filters

Categories

Tags

Barometer
Cyber Threats Barometer – March 2024
Your monthly cyberthreat overview as seen by Gatewatcher’s CTI analysts
Blog Article
CTI
2023: In-depth examination of 3 attacks that shook the foundations of computer networks… 
2023 was marked by sophisticated network attacks, exposing security vulnerabilities in crucial applications. Among the most notable incidents were attacks on 3CX, MoveIT, and ESXi, which undermined confidence in the security of interconnected networks.
Blog Article
CTI
I-S00N: Chinese intelligence in all its states
On February 16, 2024, there is a significant advancement in the public understanding of the collaboration between the Chinese government and private companies in the field of intelligence.
Alert,Bulletin d’alerte
CVE
CVE-2024-27198 / CVE-2024-27199 : outrepassement d’authentification dans JetBrains TeamCity
As of March 4, 2024, JetBrains has released a new version of its TeamCity tool, a platform for deployment and continuous integration, addressing two detected vulnerabilities.
Barometer
Cyber Threats Barometer – February 2024
Your monthly cyberthreat overview as seen by Gatewatcher’s CTI analysts
Alert,Bulletin d’alerte
CVE
CVE-2024-21591 : Junos Jweb RCE OOB write 
On January 10, 2024, Juniper issued a security bulletin regarding a vulnerability in the web interface of their SRX (firewall) and EX (switch) series devices.
Alert,Bulletin d’alerte
CVE
CVE-2023-46805 / CVE-2024-21887 Ivanti 
Summary of the Ivanti alert on vulnerabilities affecting Ivanti Connect Secure and Ivanti Policy Secure Gateways.
Detection
Blog article
ZIP files, make it bigger to avoid EDR detection
Our Purple Team analysts have spotted a number of anomalies concerning ZIP files.
Alert
CVE
CVE-2023-40044: Progress WS_FTP
On 23 September 2023, Progress published a series of eight vulnerabilities ranging from medium (CVSS3.1: 5.3) to critical (CVSSv3.1: 10) in the WS_FTP software.
Alert
CVE
CVE Junos SRX/EX vulnerability chains to RCE
The CVSS rating system, which is useful for exchanging information about a given vulnerability, has certain limitations, such as those published by Juniper.
Report
CTI
Cyber Threats Semester Report – January to June 2023
Read the latest report from our Purple Team experts who continually analyse cyber threats based on the rich telemetry of Gatewatcher’s NDR and CTI platforms.
Detection
Blog article
Benefits of a UEBA approach
In a supply chain context, UEBA – User Entity Behavior Analytics – tools are now a real asset, as they analyse user and entity behaviour in order to identify malicious behaviour.
  • 1
  • 2