Deep Security Center
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Network Scanner
1008800* - Bypass Network Scanner Traffic
Nextgen Mirth Connect
1012008* - Nextgen Mirth Connect Insecure Deserialization Vulnerability (CVE-2023-43208)
Oracle VirtualBox
1012034* - Oracle VirtualBox Information Disclosure Vulnerability (CVE-2024-21109)
Progress Telerik Reporting
1012039 - Progress Telerik Reporting Insecure Deserialization Vulnerability (CVE-2024-1856 and CVE-2024-1801)
Web Application PHP Based
1011975* - WordPress 'Backup Migration' Plugin Command Injection Vulnerability (CVE-2023-7002)
1011828* - WordPress 'Beautiful Cookie Consent Banner' Plugin Cross-Site Scripting Vulnerability (CVE-2023-3388)
1011561* - WordPress 'Ketchup Restaurant Reservations' Plugin SQL Injection Vulnerability (CVE-2022-2754)
1011992* - WordPress 'Paid Memberships Pro' Plugin Arbitrary File Upload Vulnerability (CVE-2023-6187)
1012005* - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
1012045 - WordPress 'WPvivid Backup' Plugin Insecure Deserialization Vulnerability (CVE-2024-3054)
Web Client Common
1004715* - HTTP Web Client Decoding
1011949* - Microsoft Windows SmartScreen Security Feature Bypass Vulnerability (CVE-2024-21412)
Web Server HTTPS
1011979* - Centreon SQL Injection Vulnerability (CVE-2024-0637)
1011984* - Centreon SQL Injection Vulnerability (CVE-2024-23115)
1011983* - Centreon SQL Injection Vulnerability (CVE-2024-23116)
Web Server Miscellaneous
1012043 - XWiki Code Injection Vulnerability (CVE-2024-31984)
Integrity Monitoring Rules:
1010793* - Linux/Unix - Shared object files modified
1011021* - Linux/Unix - bash root user configuration files modified (ATT&CK T1546.004)
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Network Scanner
1008800* - Bypass Network Scanner Traffic
Nextgen Mirth Connect
1012008* - Nextgen Mirth Connect Insecure Deserialization Vulnerability (CVE-2023-43208)
Oracle VirtualBox
1012034* - Oracle VirtualBox Information Disclosure Vulnerability (CVE-2024-21109)
Progress Telerik Reporting
1012039 - Progress Telerik Reporting Insecure Deserialization Vulnerability (CVE-2024-1856 and CVE-2024-1801)
Web Application PHP Based
1011975* - WordPress 'Backup Migration' Plugin Command Injection Vulnerability (CVE-2023-7002)
1011828* - WordPress 'Beautiful Cookie Consent Banner' Plugin Cross-Site Scripting Vulnerability (CVE-2023-3388)
1011561* - WordPress 'Ketchup Restaurant Reservations' Plugin SQL Injection Vulnerability (CVE-2022-2754)
1011992* - WordPress 'Paid Memberships Pro' Plugin Arbitrary File Upload Vulnerability (CVE-2023-6187)
1012005* - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
1012045 - WordPress 'WPvivid Backup' Plugin Insecure Deserialization Vulnerability (CVE-2024-3054)
Web Client Common
1004715* - HTTP Web Client Decoding
1011949* - Microsoft Windows SmartScreen Security Feature Bypass Vulnerability (CVE-2024-21412)
Web Server HTTPS
1011979* - Centreon SQL Injection Vulnerability (CVE-2024-0637)
1011984* - Centreon SQL Injection Vulnerability (CVE-2024-23115)
1011983* - Centreon SQL Injection Vulnerability (CVE-2024-23116)
Web Server Miscellaneous
1012043 - XWiki Code Injection Vulnerability (CVE-2024-31984)
Integrity Monitoring Rules:
1010793* - Linux/Unix - Shared object files modified
1011021* - Linux/Unix - bash root user configuration files modified (ATT&CK T1546.004)
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Apache Pulsar
1012032 - Apache Pulsar Directory Traversal Vulnerability (CVE-2024-27317)
PaperCut
1012041 - PaperCut NG And MF Reflected Cross-Site Scripting Vulnerability (CVE-2024-1883)
Solr Service
1012028* - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Web Application PHP Based
1012021 - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server HTTPS
1011982* - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1011981* - Centreon SQL Injection Vulnerability (CVE-2024-23118)
1011980* - Centreon SQL Injection Vulnerability (CVE-2024-23119)
Web Server Miscellaneous
1012038 - CrushFTP Server-Side Template Injection Vulnerability (CVE-2024-4040)
1012031 - GitLab Denial Of Service Vulnerability (CVE-2024-2818)
1012033 - XWiki Code Injection Vulnerability (CVE-2024-31465)
Web Server SharePoint
1012044 - Microsoft SharePoint Server Information Disclosure Vulnerability (CVE-2024-30043)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Apache Pulsar
1012032 - Apache Pulsar Directory Traversal Vulnerability (CVE-2024-27317)
PaperCut
1012041 - PaperCut NG And MF Reflected Cross-Site Scripting Vulnerability (CVE-2024-1883)
Solr Service
1012028* - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Web Application PHP Based
1012021 - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server HTTPS
1011982* - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1011981* - Centreon SQL Injection Vulnerability (CVE-2024-23118)
1011980* - Centreon SQL Injection Vulnerability (CVE-2024-23119)
Web Server Miscellaneous
1012038 - CrushFTP Server-Side Template Injection Vulnerability (CVE-2024-4040)
1012031 - GitLab Denial Of Service Vulnerability (CVE-2024-2818)
1012033 - XWiki Code Injection Vulnerability (CVE-2024-31465)
Web Server SharePoint
1012044 - Microsoft SharePoint Server Information Disclosure Vulnerability (CVE-2024-30043)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
DCERPC Services
1009801* - Microsoft Windows NTLM Elevation Of Privilege Vulnerability (CVE-2019-1040)
1010025* - Microsoft Windows NTLM Tampering Vulnerability (CVE-2019-1166)
1008432* - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2017-0267)
1008660* - Microsoft Windows SMB Out-Of-Bounds Read Denial Of Service Vulnerability (CVE-2017-11781)
1008228* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2017-0148)
1008306* - Microsoft Windows SMB Remote Code Execution Vulnerability (MS17-010)
1008713* - Microsoft Windows SMB Server SMBv1 Information Disclosure Vulnerability (CVE-2017-11815)
1008468* - Microsoft Windows SMBv1 Information Disclosure Vulnerability (CVE-2017-0271)
1008305* - Microsoft Windows SMBv1 Remote Code Execution Vulnerability
1008717* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-11771)
1008560* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8620)
DCERPC Services - Client
1009331* - Microsoft Filter Manager Elevation Of Privilege Vulnerability (CVE-2018-8333)
1008284* - Microsoft Office DLL Loading Vulnerability Over Network Share (CVE-2017-0197)
1003832* - Microsoft Windows 'KeAccumulateTicks()' SMB2 Packet Remote Denial Of Service Vulnerability
1008585* - Microsoft Windows LNK Remote Code Execution Over SMB (CVE-2017-8464)
1009717* - Microsoft Windows PowerShell ISE Filename Parsing Remote Code Execution Vulnerability Over SMB
1008915* - Microsoft Windows SMBv3 Denial Of Service Vulnerability (CVE-2018-0833)
DNS Client
1008666* - Microsoft Windows DNSAPI Remote Code Execution Vulnerability (CVE-2017-11779)
1009135* - Microsoft Windows DNSAPI Remote Code Execution Vulnerability (CVE-2018-8225)
HP Intelligent Management Center (IMC)
1012001* - Apache OFBiz Authentication Bypass Vulnerability (CVE-2024-25065)
1011990* - Apache OFBiz Information Disclosure Vulnerability (CVE-2024-23946)
JetBrains TeamCity
1012035 - JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-23917)
MS-RDPEUDP2
1009940* - Microsoft Windows RDP Server Information Disclosure Vulnerability (CVE-2019-1224)
1009941* - Microsoft Windows RDP Server Information Disclosure Vulnerability (CVE-2019-1225)
Oracle VirtualBox
1012034 - Oracle VirtualBox Information Disclosure Vulnerability (CVE-2024-21109)
Remote Desktop Protocol Client
1009031* - Microsoft Windows CredSSP Remote Code Execution Vulnerability (CVE-2018-0886)
Remote Desktop Protocol Server
1009958* - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1181)
1009961* - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1182)
1008307* - Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (CVE-2017-0176)
1009749* - Microsoft Windows Remote Desktop Services Remote Code Execution Vulnerability (CVE-2019-0708)
Web Proxy Squid
1012029 - Squid Proxy Denial Of Service Vulnerability (CVE-2024-25111)
Web Server Apache
1011928* - Apache httpd 'mod_http2' Denial of Service Vulnerability (CVE-2023-43622)
Web Server Miscellaneous
1012026* - CrushFTP Remote Code Execution Vulnerability (CVE-2023-43177)
1012017* - Identified Restricted file upload with specific extension
1012009* - Jenkins 'Build Monitor View' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-28156)
1011988* - XWiki Code Injection Vulnerability (CVE-2023-50721)
1012000* - XWiki Code Injection Vulnerability (CVE-2024-21650)
1012030 - XWiki Code Injection Vulnerability (CVE-2024-31982)
Windows SMB Server
1010884* - Microsoft Windows RPC Remote Code Execution Vulnerability (CVE-2017-8461)
1009511* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2019-0630)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
DCERPC Services
1009801* - Microsoft Windows NTLM Elevation Of Privilege Vulnerability (CVE-2019-1040)
1010025* - Microsoft Windows NTLM Tampering Vulnerability (CVE-2019-1166)
1008432* - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2017-0267)
1008660* - Microsoft Windows SMB Out-Of-Bounds Read Denial Of Service Vulnerability (CVE-2017-11781)
1008228* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2017-0148)
1008306* - Microsoft Windows SMB Remote Code Execution Vulnerability (MS17-010)
1008713* - Microsoft Windows SMB Server SMBv1 Information Disclosure Vulnerability (CVE-2017-11815)
1008468* - Microsoft Windows SMBv1 Information Disclosure Vulnerability (CVE-2017-0271)
1008305* - Microsoft Windows SMBv1 Remote Code Execution Vulnerability
1008717* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-11771)
1008560* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8620)
DCERPC Services - Client
1009331* - Microsoft Filter Manager Elevation Of Privilege Vulnerability (CVE-2018-8333)
1008284* - Microsoft Office DLL Loading Vulnerability Over Network Share (CVE-2017-0197)
1003832* - Microsoft Windows 'KeAccumulateTicks()' SMB2 Packet Remote Denial Of Service Vulnerability
1008585* - Microsoft Windows LNK Remote Code Execution Over SMB (CVE-2017-8464)
1009717* - Microsoft Windows PowerShell ISE Filename Parsing Remote Code Execution Vulnerability Over SMB
1008915* - Microsoft Windows SMBv3 Denial Of Service Vulnerability (CVE-2018-0833)
DNS Client
1008666* - Microsoft Windows DNSAPI Remote Code Execution Vulnerability (CVE-2017-11779)
1009135* - Microsoft Windows DNSAPI Remote Code Execution Vulnerability (CVE-2018-8225)
HP Intelligent Management Center (IMC)
1012001* - Apache OFBiz Authentication Bypass Vulnerability (CVE-2024-25065)
1011990* - Apache OFBiz Information Disclosure Vulnerability (CVE-2024-23946)
JetBrains TeamCity
1012035 - JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-23917)
MS-RDPEUDP2
1009940* - Microsoft Windows RDP Server Information Disclosure Vulnerability (CVE-2019-1224)
1009941* - Microsoft Windows RDP Server Information Disclosure Vulnerability (CVE-2019-1225)
Oracle VirtualBox
1012034 - Oracle VirtualBox Information Disclosure Vulnerability (CVE-2024-21109)
Remote Desktop Protocol Client
1009031* - Microsoft Windows CredSSP Remote Code Execution Vulnerability (CVE-2018-0886)
Remote Desktop Protocol Server
1009958* - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1181)
1009961* - Microsoft Windows RDP Remote Code Execution Vulnerability (CVE-2019-1182)
1008307* - Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (CVE-2017-0176)
1009749* - Microsoft Windows Remote Desktop Services Remote Code Execution Vulnerability (CVE-2019-0708)
Web Proxy Squid
1012029 - Squid Proxy Denial Of Service Vulnerability (CVE-2024-25111)
Web Server Apache
1011928* - Apache httpd 'mod_http2' Denial of Service Vulnerability (CVE-2023-43622)
Web Server Miscellaneous
1012026* - CrushFTP Remote Code Execution Vulnerability (CVE-2023-43177)
1012017* - Identified Restricted file upload with specific extension
1012009* - Jenkins 'Build Monitor View' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-28156)
1011988* - XWiki Code Injection Vulnerability (CVE-2023-50721)
1012000* - XWiki Code Injection Vulnerability (CVE-2024-21650)
1012030 - XWiki Code Injection Vulnerability (CVE-2024-31982)
Windows SMB Server
1010884* - Microsoft Windows RPC Remote Code Execution Vulnerability (CVE-2017-8461)
1009511* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2019-0630)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
DCERPC Services
1008119* - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial Of Service Vulnerability (CVE-2017-0004)
1008123* - Microsoft Windows Local Security Authority Subsystem Service Denial Of Service Vulnerability (CVE-2016-7237)
1006579* - Microsoft Windows NETLOGON Spoofing Vulnerability (CVE-2015-0005)
1008227* - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2017-0147)
1008224* - Microsoft Windows SMB Remote Code Execution Vulnerabilities (CVE-2017-0144 and CVE-2017-0146)
1008225* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2017-0145)
1007432* - Microsoft Windows Server Message Block Memory Corruption Vulnerability (CVE-2015-2474)
1007125* - Remote Access Event Through SMBv1 Protocol Detected
DCERPC Services - Client
1008187* - Microsoft Office OLE DLL Loading Vulnerability Over Network Share (CVE-2016-7275)
1005281* - Microsoft Windows Briefcase Integer Overflow Vulnerability Over Network Share (CVE-2012-1528)
1005280* - Microsoft Windows Briefcase Integer Underflow Vulnerability Over Network Share (CVE-2012-1527)
1007592* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (CVE-2016-0160 and CVE-2016-0148)
1007381* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS15-132)
1007369* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS16-007)
1007426* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS16-014)
1008201* - Microsoft Windows DLL Loading Vulnerability Over Network Share (CVE-2016-0100)
1008177* - Microsoft Windows DLL Loading Vulnerability Over Network Share (CVE-2017-0039)
1006554* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability (CVE-2015-0096)
1006013* - Microsoft Windows Insecure Binary Loading Vulnerability Over Network Share (CVE-2014-0315)
1006292* - Microsoft Windows OLE Remote Code Execution Vulnerability Over SMB
1007531* - Microsoft Windows RPC Downgrade Vulnerability (CVE-2016-0128)
1008138* - Microsoft Windows SMB Tree Connect Response Denial Of Service Vulnerability (CVE-2017-0016)
1005153* - Print Spooler Service Format String Vulnerability (CVE-2012-1851) II
1005142* - Remote Administration Protocol Stack Overflow Vulnerability
Django Server
1012022 - Django Denial Of Service Vulnerability (CVE-2023-46695)
Ivanti Avalanche Remote Control Server
1011962* - Ivanti Avalanche Server-Side Request Forgery Vulnerability (CVE-2023-46262)
NTP Client
1008004* - NTP 'ntpq atoascii' Memory Corruption Vulnerability (CVE-2015-7852)
1006630* - NTP MAC Security Bypass Vulnerability (CVE-2015-1798)
Remote Desktop Protocol Server
1006870* - Microsoft Windows Remote Desktop Protocol (RDP) Remote Code Execution Vulnerability (CVE-2015-2373)
SolarWinds Access Rights Manager
1012024 - SolarWinds Access Rights Manager Directory Traversal Remote Code Execution Vulnerability (CVE-2024-23477)
SolarWinds Orion Platform
1011977* - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-35188)
1011986* - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-50395)
Solr Service
1012028 - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Unix Samba
1012023 - Linux Kernel KSMBD Buffer Overflow Vulnerability (CVE-2023-52440)
Web Client Common
1011960* - 7-Zip Integer Underflow Vulnerability (CVE-2023-31102)
Web Server HTTPS
1011973* - Cacti SQL Injection Vulnerability (CVE-2023-51448)
Web Server Nagios
1012004* - Nagios XI Directory Traversal Vulnerability (CVE-2023-48085)
1012027 - Nagios XI SQL Injection Vulnerability (CVE-2024-24401)
Windows Services RPC Client DCERPC
1007539* - Microsoft Windows RPC Downgrade Vulnerability (CVE-2016-0128) - 1
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
DCERPC Services
1008119* - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial Of Service Vulnerability (CVE-2017-0004)
1008123* - Microsoft Windows Local Security Authority Subsystem Service Denial Of Service Vulnerability (CVE-2016-7237)
1006579* - Microsoft Windows NETLOGON Spoofing Vulnerability (CVE-2015-0005)
1008227* - Microsoft Windows SMB Information Disclosure Vulnerability (CVE-2017-0147)
1008224* - Microsoft Windows SMB Remote Code Execution Vulnerabilities (CVE-2017-0144 and CVE-2017-0146)
1008225* - Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2017-0145)
1007432* - Microsoft Windows Server Message Block Memory Corruption Vulnerability (CVE-2015-2474)
1007125* - Remote Access Event Through SMBv1 Protocol Detected
DCERPC Services - Client
1008187* - Microsoft Office OLE DLL Loading Vulnerability Over Network Share (CVE-2016-7275)
1005281* - Microsoft Windows Briefcase Integer Overflow Vulnerability Over Network Share (CVE-2012-1528)
1005280* - Microsoft Windows Briefcase Integer Underflow Vulnerability Over Network Share (CVE-2012-1527)
1007592* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (CVE-2016-0160 and CVE-2016-0148)
1007381* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS15-132)
1007369* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS16-007)
1007426* - Microsoft Windows DLL Loading Vulnerabilities Over Network Share (MS16-014)
1008201* - Microsoft Windows DLL Loading Vulnerability Over Network Share (CVE-2016-0100)
1008177* - Microsoft Windows DLL Loading Vulnerability Over Network Share (CVE-2017-0039)
1006554* - Microsoft Windows DLL Planting Remote Code Execution Vulnerability (CVE-2015-0096)
1006013* - Microsoft Windows Insecure Binary Loading Vulnerability Over Network Share (CVE-2014-0315)
1006292* - Microsoft Windows OLE Remote Code Execution Vulnerability Over SMB
1007531* - Microsoft Windows RPC Downgrade Vulnerability (CVE-2016-0128)
1008138* - Microsoft Windows SMB Tree Connect Response Denial Of Service Vulnerability (CVE-2017-0016)
1005153* - Print Spooler Service Format String Vulnerability (CVE-2012-1851) II
1005142* - Remote Administration Protocol Stack Overflow Vulnerability
Django Server
1012022 - Django Denial Of Service Vulnerability (CVE-2023-46695)
Ivanti Avalanche Remote Control Server
1011962* - Ivanti Avalanche Server-Side Request Forgery Vulnerability (CVE-2023-46262)
NTP Client
1008004* - NTP 'ntpq atoascii' Memory Corruption Vulnerability (CVE-2015-7852)
1006630* - NTP MAC Security Bypass Vulnerability (CVE-2015-1798)
Remote Desktop Protocol Server
1006870* - Microsoft Windows Remote Desktop Protocol (RDP) Remote Code Execution Vulnerability (CVE-2015-2373)
SolarWinds Access Rights Manager
1012024 - SolarWinds Access Rights Manager Directory Traversal Remote Code Execution Vulnerability (CVE-2024-23477)
SolarWinds Orion Platform
1011977* - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-35188)
1011986* - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-50395)
Solr Service
1012028 - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Unix Samba
1012023 - Linux Kernel KSMBD Buffer Overflow Vulnerability (CVE-2023-52440)
Web Client Common
1011960* - 7-Zip Integer Underflow Vulnerability (CVE-2023-31102)
Web Server HTTPS
1011973* - Cacti SQL Injection Vulnerability (CVE-2023-51448)
Web Server Nagios
1012004* - Nagios XI Directory Traversal Vulnerability (CVE-2023-48085)
1012027 - Nagios XI SQL Injection Vulnerability (CVE-2024-24401)
Windows Services RPC Client DCERPC
1007539* - Microsoft Windows RPC Downgrade Vulnerability (CVE-2016-0128) - 1
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012019 - Arcserve Unified Data Protection Denial of Service Vulnerability (CVE-2024-0801)
1011972* - Arcserve Unified Data Protection Directory Traversal Vulnerability (CVE-2023-42000)
1011970* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-41998)
DCERPC Services
1004600* - Microsoft Active Directory 'BROWSER ELECTION' Buffer Overflow Vulnerability
1005140* - Print Spooler Service Format String Vulnerability (CVE-2012-1851)
1004401* - Print Spooler Service Impersonation Vulnerability
1004346* - SMB Pool Overflow Vulnerability
1004355* - SMB Stack Exhaustion Vulnerability
1004641* - SMB Transaction Parsing Vulnerability (CVE-2011-0661)
1004348* - SMB Variable Validation Vulnerability
DCERPC Services - Client
1004821* - Active Accessibility Insecure Library Loading Vulnerability (CVE-2011-1247)
1004700* - DFS Memory Corruption Vulnerability (CVE-2011-1868)
1004762* - Data Access Components Insecure Library Loading Vulnerability Over Network Share (CVE-2011-1975)
1004563* - Microsoft Windows 'CreateSizedDIBSECTION()' Thumbnail View Stack Buffer Overflow Vulnerability Over Network Share
1004697* - OLE Automation Underflow Vulnerability ( CVE-2011-0658 )
1004897* - Object Packager Insecure Executable Launching Vulnerability Over Network Share (CVE-2012-0009)
1004877* - PowerPoint Insecure Library Loading Vulnerability Over Network Share (CVE-2011-3396)
1005139* - Remote Administration Protocol Denial Of Service Vulnerability (CVE-2012-1850)
1004100* - SMB Client Message Size Vulnerability
1004637* - SMB Client Response Parsing Vulnerability (CVE-2011-0660)
1004692* - SMB Response Parsing Vulnerability (CVE-2011-1268)
1004775* - Telnet Handler Remote Code Execution Vulnerability Over Network Share (CVE-2011-1961)
1005081* - Vulnerability In Windows Shell Could Allow Remote Code Execution (CVE-2012-0175)
1004797* - Windows Components Insecure Library Loading Vulnerability Over Network Share (CVE-2011-1991)
1004843* - Windows Mail Insecure Library Loading Vulnerability Over Network Share (CVE-2011-2016)
Elastic Kibana And Elasticsearch
1011909* - Elastic Kibana Upgrade Assistant Telemetry Collector Prototype Pollution Vulnerability
HP Intelligent Management Center (IMC)
1011941* - Apache OFBiz Insecure Deserialization Vulnerability (CVE-2023-49070)
JetBrains TeamCity
1012020 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2024-31138)
Link-Local Multicast Name Resolution
1004645* - DNS Query Vulnerability (CVE-2011-0657)
Nextgen Mirth Connect
1012008 - Nextgen Mirth Connect Insecure Deserialization Vulnerability (CVE-2023-43208)
Remote Desktop Protocol Server
1004949* - Remote Desktop Protocol Vulnerability (CVE-2012-0002)
1005138* - Remote Desktop Protocol Vulnerability (CVE-2012-2526)
Web Server Miscellaneous
1012026 - CrushFTP Remote Code Execution Vulnerability (CVE-2023-43177)
1012017 - Identified Restricted file upload with specific extension
Web Server Squid
1011939* - Squid Proxy Heap Buffer Overflow Vulnerability (CVE-2023-46847)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012019 - Arcserve Unified Data Protection Denial of Service Vulnerability (CVE-2024-0801)
1011972* - Arcserve Unified Data Protection Directory Traversal Vulnerability (CVE-2023-42000)
1011970* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-41998)
DCERPC Services
1004600* - Microsoft Active Directory 'BROWSER ELECTION' Buffer Overflow Vulnerability
1005140* - Print Spooler Service Format String Vulnerability (CVE-2012-1851)
1004401* - Print Spooler Service Impersonation Vulnerability
1004346* - SMB Pool Overflow Vulnerability
1004355* - SMB Stack Exhaustion Vulnerability
1004641* - SMB Transaction Parsing Vulnerability (CVE-2011-0661)
1004348* - SMB Variable Validation Vulnerability
DCERPC Services - Client
1004821* - Active Accessibility Insecure Library Loading Vulnerability (CVE-2011-1247)
1004700* - DFS Memory Corruption Vulnerability (CVE-2011-1868)
1004762* - Data Access Components Insecure Library Loading Vulnerability Over Network Share (CVE-2011-1975)
1004563* - Microsoft Windows 'CreateSizedDIBSECTION()' Thumbnail View Stack Buffer Overflow Vulnerability Over Network Share
1004697* - OLE Automation Underflow Vulnerability ( CVE-2011-0658 )
1004897* - Object Packager Insecure Executable Launching Vulnerability Over Network Share (CVE-2012-0009)
1004877* - PowerPoint Insecure Library Loading Vulnerability Over Network Share (CVE-2011-3396)
1005139* - Remote Administration Protocol Denial Of Service Vulnerability (CVE-2012-1850)
1004100* - SMB Client Message Size Vulnerability
1004637* - SMB Client Response Parsing Vulnerability (CVE-2011-0660)
1004692* - SMB Response Parsing Vulnerability (CVE-2011-1268)
1004775* - Telnet Handler Remote Code Execution Vulnerability Over Network Share (CVE-2011-1961)
1005081* - Vulnerability In Windows Shell Could Allow Remote Code Execution (CVE-2012-0175)
1004797* - Windows Components Insecure Library Loading Vulnerability Over Network Share (CVE-2011-1991)
1004843* - Windows Mail Insecure Library Loading Vulnerability Over Network Share (CVE-2011-2016)
Elastic Kibana And Elasticsearch
1011909* - Elastic Kibana Upgrade Assistant Telemetry Collector Prototype Pollution Vulnerability
HP Intelligent Management Center (IMC)
1011941* - Apache OFBiz Insecure Deserialization Vulnerability (CVE-2023-49070)
JetBrains TeamCity
1012020 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2024-31138)
Link-Local Multicast Name Resolution
1004645* - DNS Query Vulnerability (CVE-2011-0657)
Nextgen Mirth Connect
1012008 - Nextgen Mirth Connect Insecure Deserialization Vulnerability (CVE-2023-43208)
Remote Desktop Protocol Server
1004949* - Remote Desktop Protocol Vulnerability (CVE-2012-0002)
1005138* - Remote Desktop Protocol Vulnerability (CVE-2012-2526)
Web Server Miscellaneous
1012026 - CrushFTP Remote Code Execution Vulnerability (CVE-2023-43177)
1012017 - Identified Restricted file upload with specific extension
Web Server Squid
1011939* - Squid Proxy Heap Buffer Overflow Vulnerability (CVE-2023-46847)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012012 - Arcserve Unified Data Protection Directory Traversal Vulnerability (CVE-2024-0800)
DCERPC Services
1002937* - Integer Overflow In IPP Service Vulnerability
1003824* - License Logging Server Heap Overflow Vulnerability
1003015* - Microsoft SMB Credential Reflection Vulnerability
1002931* - Microsoft Windows SMB Buffer Underflow Vulnerability
1008445* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8543)
1000972* - Microsoft Windows svcctl ChangeServiceConfig2A() Memory Corruption Vulnerability
1003564* - Print Spooler Load Library Vulnerability
1003985* - SMB Memory Corruption Vulnerability
1003979* - SMB Null Pointer Vulnerability
1003978* - SMB Pathname Overflow Vulnerability
1002975* - Server Service Vulnerability (wkssvc)
1003676* - Workstation Service Memory Corruption Vulnerability
DCERPC Services - Client
1004053* - Microsoft Windows CHM Notepad Remote Code Execution
1004094* - SMB Client Memory Allocation Vulnerability
1003973* - SMB Client Pool Corruption Vulnerability
1003980* - SMB Client Race Condition Vulnerability
1004096* - SMB Client Response Parsing Vulnerability
1004095* - SMB Client Transaction Vulnerability
1003014* - SMB Credential Reflection Vulnerability
DNS Client
1003189* - Malware AGENT.BTZ Domain Blocker
1000468* - Microsoft Word Malformed Object Pointer Remote Code Execution
1003133* - Pointer Reference Memory Corruption Vulnerability Domain Blocker
Telnet Client
1003687* - Telnet Credential Reflection Vulnerability
Trend Micro Mobile Security Server
1011957* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41176)
1011964* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41177)
1011963* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41178)
Web Application Common
1010344* - ThinkPHP Remote Code Execution Vulnerability (CVE-2019-9082 and CVE-2018-20062)
Web Application PHP Based
1012015 - Joomla! CMS Cross-Site Scripting Vulnerability (CVE-2024-21726)
Web Application Tomcat
1012016 - Bonita Authorization Bypass Vulnerability (CVE-2022-25237)
Web Server HTTPS
1011953* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52327)
1011952* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52328)
1011951* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52330)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1008619* - Application - Docker
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012012 - Arcserve Unified Data Protection Directory Traversal Vulnerability (CVE-2024-0800)
DCERPC Services
1002937* - Integer Overflow In IPP Service Vulnerability
1003824* - License Logging Server Heap Overflow Vulnerability
1003015* - Microsoft SMB Credential Reflection Vulnerability
1002931* - Microsoft Windows SMB Buffer Underflow Vulnerability
1008445* - Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8543)
1000972* - Microsoft Windows svcctl ChangeServiceConfig2A() Memory Corruption Vulnerability
1003564* - Print Spooler Load Library Vulnerability
1003985* - SMB Memory Corruption Vulnerability
1003979* - SMB Null Pointer Vulnerability
1003978* - SMB Pathname Overflow Vulnerability
1002975* - Server Service Vulnerability (wkssvc)
1003676* - Workstation Service Memory Corruption Vulnerability
DCERPC Services - Client
1004053* - Microsoft Windows CHM Notepad Remote Code Execution
1004094* - SMB Client Memory Allocation Vulnerability
1003973* - SMB Client Pool Corruption Vulnerability
1003980* - SMB Client Race Condition Vulnerability
1004096* - SMB Client Response Parsing Vulnerability
1004095* - SMB Client Transaction Vulnerability
1003014* - SMB Credential Reflection Vulnerability
DNS Client
1003189* - Malware AGENT.BTZ Domain Blocker
1000468* - Microsoft Word Malformed Object Pointer Remote Code Execution
1003133* - Pointer Reference Memory Corruption Vulnerability Domain Blocker
Telnet Client
1003687* - Telnet Credential Reflection Vulnerability
Trend Micro Mobile Security Server
1011957* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41176)
1011964* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41177)
1011963* - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability (CVE-2023-41178)
Web Application Common
1010344* - ThinkPHP Remote Code Execution Vulnerability (CVE-2019-9082 and CVE-2018-20062)
Web Application PHP Based
1012015 - Joomla! CMS Cross-Site Scripting Vulnerability (CVE-2024-21726)
Web Application Tomcat
1012016 - Bonita Authorization Bypass Vulnerability (CVE-2022-25237)
Web Server HTTPS
1011953* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52327)
1011952* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52328)
1011951* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52330)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1008619* - Application - Docker
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Avalanche
1011759* - Ivanti Avalanche Multiple Arbitrary File Upload Vulnerabilities
1011955* - Ivanti Avalanche XML External Entity Information Disclosure Vulnerability (CVE-2023-46265)
Java RMI
1012013 - Progress OpenEdge Authentication Bypass Vulnerability (CVE-2024-1403)
Web Application PHP Based
1011993* - LibreNMS SQL Injection Vulnerability (CVE-2023-5591)
1012014 - WordPress 'LayerSlider' Plugin SQL Injection Vulnerability (CVE-2024-2879)
Web Server Adobe ColdFusion
1012011 - Adobe ColdFusion Improper Access Control Vulnerability (CVE-2024-20767)
Web Server Miscellaneous
1011994* - Graylog Open Insecure Deserialization Vulnerability (CVE-2024-24824)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1010349* - Docker Daemon Remote API Calls
Deep Packet Inspection Rules:
Ivanti Avalanche
1011759* - Ivanti Avalanche Multiple Arbitrary File Upload Vulnerabilities
1011955* - Ivanti Avalanche XML External Entity Information Disclosure Vulnerability (CVE-2023-46265)
Java RMI
1012013 - Progress OpenEdge Authentication Bypass Vulnerability (CVE-2024-1403)
Web Application PHP Based
1011993* - LibreNMS SQL Injection Vulnerability (CVE-2023-5591)
1012014 - WordPress 'LayerSlider' Plugin SQL Injection Vulnerability (CVE-2024-2879)
Web Server Adobe ColdFusion
1012011 - Adobe ColdFusion Improper Access Control Vulnerability (CVE-2024-20767)
Web Server Miscellaneous
1011994* - Graylog Open Insecure Deserialization Vulnerability (CVE-2024-24824)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1010349* - Docker Daemon Remote API Calls
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Avalanche
1011863* - Ivanti Avalanche Authentication Bypass Vulnerability (CVE-2021-22962 & CVE-2023-32566)
Web Application PHP Based
1011999 - BoidCMS Command Injection Vulnerability (CVE-2023-38836)
1012005 - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
Web Server HTTPS
1011881* - GitLab Stored Cross-Site Scripting Vulnerability (CVE-2023-2164)
1011892* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22101)
1011886* - Qlik Sense Enterprise HTTP Request Smuggling Vulnerability (CVE-2023-41265)
Web Server Miscellaneous
1012009 - Jenkins 'Build Monitor View' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-28156)
Web Server Nagios
1012004 - Nagios XI Directory Traversal Vulnerability (CVE-2023-48085)
pgAdmin
1012010 - pgAdmin Directory Traversal Vulnerability (CVE-2024-2044)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Avalanche
1011863* - Ivanti Avalanche Authentication Bypass Vulnerability (CVE-2021-22962 & CVE-2023-32566)
Web Application PHP Based
1011999 - BoidCMS Command Injection Vulnerability (CVE-2023-38836)
1012005 - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
Web Server HTTPS
1011881* - GitLab Stored Cross-Site Scripting Vulnerability (CVE-2023-2164)
1011892* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22101)
1011886* - Qlik Sense Enterprise HTTP Request Smuggling Vulnerability (CVE-2023-41265)
Web Server Miscellaneous
1012009 - Jenkins 'Build Monitor View' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-28156)
Web Server Nagios
1012004 - Nagios XI Directory Traversal Vulnerability (CVE-2023-48085)
pgAdmin
1012010 - pgAdmin Directory Traversal Vulnerability (CVE-2024-2044)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1011940* - Apache OFBiz Authentication Bypass Vulnerability (CVE-2023-51467)
JetBrains TeamCity
1011995* - JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-27198)
Web Application PHP Based
1012007 - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server Miscellaneous
1011948* - Ivanti Avalanche Remote Code Execution Vulnerability (CVE-2023-46263)
1011961* - Paessler PRTG Network Monitor Cross-Site Scripting Vulnerability (CVE-2023-51630)
Zoho ManageEngine Recovery Manager Plus
1011923* - Zoho ManageEngine Recovery Manager Plus Command Injection Vulnerability (CVE-2023-48646)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1011940* - Apache OFBiz Authentication Bypass Vulnerability (CVE-2023-51467)
JetBrains TeamCity
1011995* - JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-27198)
Web Application PHP Based
1012007 - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server Miscellaneous
1011948* - Ivanti Avalanche Remote Code Execution Vulnerability (CVE-2023-46263)
1011961* - Paessler PRTG Network Monitor Cross-Site Scripting Vulnerability (CVE-2023-51630)
Zoho ManageEngine Recovery Manager Plus
1011923* - Zoho ManageEngine Recovery Manager Plus Command Injection Vulnerability (CVE-2023-48646)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1012001 - Apache OFBiz Authentication Bypass Vulnerability (CVE-2024-25065)
Web Application Common
1011998 - Kafka UI Remote Code Execution Vulnerability (CVE-2023-52251)
Web Application PHP Based
1012002 - WordPress 'Bricks Builder' Plugin Remote Code Execution Vulnerability (CVE-2024-25600)
1012006 - WordPress 'Fastest Cache' Plugin SQL Injection Vulnerability (CVE-2023-6063)
Web Server HTTPS
1011907* - Cacti Command Injection Vulnerability (CVE-2023-39362)
1011942* - Cacti SQL Injection Vulnerability (CVE-2023-49085)
1011959* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52329)
1011967* - Trend Micro Apex Central File Upload Vulnerability (CVE-2023-52324)
Web Server Miscellaneous
1011988 - XWiki Code Injection Vulnerability (CVE-2023-50721)
1012000 - XWiki Code Injection Vulnerability (CVE-2024-21650)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
HP Intelligent Management Center (IMC)
1012001 - Apache OFBiz Authentication Bypass Vulnerability (CVE-2024-25065)
Web Application Common
1011998 - Kafka UI Remote Code Execution Vulnerability (CVE-2023-52251)
Web Application PHP Based
1012002 - WordPress 'Bricks Builder' Plugin Remote Code Execution Vulnerability (CVE-2024-25600)
1012006 - WordPress 'Fastest Cache' Plugin SQL Injection Vulnerability (CVE-2023-6063)
Web Server HTTPS
1011907* - Cacti Command Injection Vulnerability (CVE-2023-39362)
1011942* - Cacti SQL Injection Vulnerability (CVE-2023-49085)
1011959* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52329)
1011967* - Trend Micro Apex Central File Upload Vulnerability (CVE-2023-52324)
Web Server Miscellaneous
1011988 - XWiki Code Injection Vulnerability (CVE-2023-50721)
1012000 - XWiki Code Injection Vulnerability (CVE-2024-21650)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Featured Stories
- Kong API Gateway Misconfigurations: An API Gateway Security Case StudyTools that aggregate access into multiple different environments, such as API gateways, pose a security risk for all these environments upon breach. In this article, we continue our journey through the security issues of the API Gateway landscape. Our new research focuses on another popular API gateway — Kong.Read more
- Open RAN: Attack of the xAppsThis article discusses two O-RAN vulnerabilities that attackers can exploit. One vulnerability stems from insufficient access control, and the other arises from faulty message handlingRead more
- A Closer Exploration of Residential Proxies and CAPTCHA-Breaking ServicesThis article, the final part of a two-part series, focuses on the details of our technical findings and analyses of select residential proxies and CAPTCHA-solving services.Read more
- How Residential Proxies and CAPTCHA-Solving Services Become Agents of AbuseThis article, the first of a two-part series, provides insights on how abusers and cybercriminals use residential proxies and CAPTCHA-solving services to enable bots, scrapers, and stuffers, and proposes security countermeasures for organizations.Read more