Threat Research
![Remote Management Tools](https://info.varonis.com/hubfs/Blog_RMMTools_202407_FNL.png)
The Power and Peril of RMM Tools
![Tom Barnea](https://info.varonis.com/hubfs/Tom.png)
Jul 18, 2024
Discover real-world examples of remote monitoring and management (RMM) tool exploits and how to protect your organization from these attacks.
![Varonis Threat Labs](https://info.varonis.com/hubfs/VTLHero.png)
OpenSSH 'RegreSSHion' RCE Vulnerability
![Jason Hill](https://info.varonis.com/hubfs/jason-hill.jpg)
Jul 02, 2024
A critical vulnerability in OpenSSH's server, dubbed 'regreSSHion,' raises the risk of remote code execution with root privileges.
![](https://info.varonis.com/hubfs/Snowflake_BreakingNews_BlogHero_V2.png)
Targeted Campaign Against Snowflake Customers: What You Need to Know
![Varonis Threat Labs](https://info.varonis.com/hubfs/VTL_ProfileImage.png)
Jun 04, 2024
Recent data breaches of prominent Snowflake cloud customers highlight the risks of compromised cloud storage accounts.
![Dropx Sign Data Breach](https://info.varonis.com/hubfs/Blog_VTL-DropboxSign_BlogHero_202405_V1.png)
Dropbox Sign Data Breach: What You Need to Know
![Omri Marom](https://info.varonis.com/hubfs/OmriMarom.png)
May 03, 2024
Dropbox Sign's recent data breach highlights how non-human identities are driving more profound breaches.
![PAN-OS Zero-Day Active Exploit](https://info.varonis.com/hubfs/PAN-OS%20Zero-Day%20Breaking%20News%20Blog%20Hero.png)
Palo Alto Networks PAN-OS Zero-Day Active Exploit: What You Need to Know
![Varonis Threat Labs](https://info.varonis.com/hubfs/VTL_ProfileImage.png)
Apr 12, 2024
Palo Alto Networks issued a warning on April 12, 2024, that a critical, unpatched vulnerability in their PAN-OS firewall is being actively exploited.
![](https://info.varonis.com/hubfs/Copy%20of%20TEMPORARY%20Breaking%20News%20Blog%20Hero%20%281%29.png)
Sisense Data Breach: What You Need to Know
![Varonis Threat Labs](https://info.varonis.com/hubfs/VTL_ProfileImage.png)
Apr 11, 2024
The U.S. Cybersecurity and Infrastructure Agency (CISA) issued an alert this week warning Sisense customers of a data breach. Here's what you need to know.
![hand tries accessing SharePoint files](https://info.varonis.com/hubfs/Blog_VTL-DataExfiltrationinSharepoint_202403_FNL.png)
Sidestepping SharePoint Security: Two New Techniques to Evade Exfiltration Detection
![Eric Saraga](https://info.varonis.com/hubfs/eric-saraga-1.jpg)
Apr 09, 2024
Varonis Threat Labs discovered two techniques in SharePoint that allow users to circumvent audit logs and avoid triggering download events while exfiltrating files.
![](https://info.varonis.com/hubfs/Blog_VTL-XZUtil_202404_V1.png)
XZ Backdoor: Supply Chain Jump Scare
![Varonis Threat Labs](https://info.varonis.com/hubfs/VTL_ProfileImage.png)
Apr 05, 2024
While the XZ backdoor is scary, most companies learned from SolarWinds
![hand coming out of Invanti logo to symbolize threat actor](https://info.varonis.com/hubfs/Blog_VTL-Ivanti_202403_V1.2.png)
Increased Threat Activity Targeting Ivanti Vulnerabilities
![Jason Hill](https://info.varonis.com/hubfs/jason-hill.jpg)
Mar 20, 2024
A recent surge in activity targeting Ivanti Connect Secure (ICS) involves chaining two vulnerabilities that give threat actors the ability to execute arbitrary commands remotely.
![](https://info.varonis.com/hubfs/Blog_ApexVulnerabilitiesinSalesforce_202401_FNL_V2.png)
Security Vulnerabilities in Apex Code Could Leak Salesforce Data
![Nitay Bachrach](https://info.varonis.com/hubfs/nitay-bachrach.jpg)
Feb 20, 2024
Varonis' threat researchers identified high- and critical-severity vulnerabilities in Apex, a programming language for customizing Salesforce instances.
![microsoft NTLM leaks](https://info.varonis.com/hubfs/Blog_VTL_NTLMV2_202401_FNL.png)
Outlook Vulnerability Discovery and New Ways to Leak NTLM Hashes
![Dolev Taler](https://info.varonis.com/hubfs/dolev-taler.jpg)
Jan 18, 2024
Varonis Threat Labs discovered a new Outlook exploit and three new ways to access NTLM v2 hashed passwords.
![Microsoft Word document surrounded by storm clouds](https://info.varonis.com/hubfs/Blog_VTL_RomCom-Storm-0978_202307_FNL.png)
Taking Microsoft Office by "Storm"
![Jason Hill](https://info.varonis.com/hubfs/jason-hill.jpg)
Jul 18, 2023
The “Storm-0978” ransomware group is actively exploiting an unpatched Microsoft Office and Windows HTML remote code execution vulnerability.
Try Varonis free.
Deploys in minutes.