Dark Reading

Netwrix Auditor Bug Could Lead to Active Directory Domain Compromise

Editor's note: Update at bottom of story. Netwrix IT asset tracker and compliance auditor, used across more than 11,500 organizations, contains a critical Insecure Object Deserialization vulnerability ...
Bleeping Computer

CISA: Netwrix Auditor RCE bug exploited in Truebot malware attacks

CISA and the FBI warned today of new Truebot malware variants deployed on networks compromised using a critical remote code execution (RCE) vulnerability in the Netwrix Auditor software in attacks ...