The eSentire Threat Response Unit reports ongoing exploitation of CVE-2019-18935, a six-year-old IIS vulnerability in Progress Telerik UI, allowing attackers to execute arbitrary code on unpatched servers. Threat actors use a reverse shell via w3wp.exe to gather system information, deploying tools like JuicyPotatoNG. Organizations should enhance patch management and utilize Endpoint Detection and Response solutions to mitigate these risks.
850,000 individuals impacted by Globe Life ransomware incident
Globe Life, an insurance company, has experienced a ransomware attack impacting around 850,000 people. The attack has led to potential compromise of personal data and
