LummaC2 Malware Deploys New Trigonometry-Based Anti-Sandbox Technique
The stealer malware known as LummaC2 (aka Lumma Stealer) now features a new anti-sandbox technique that leverages the mathematical principle...
DarkGate and PikaBot Malware Resurrect QakBot’s Tactics in New Phishing Attacks
Phishing campaigns delivering malware families such as DarkGate and PikaBot are following the same tactics previously used in attacks leveraging...
Why Defenders Should Embrace a Hacker Mindset
Today's security leaders must manage a constantly evolving attack surface and a dynamic threat environment due to interconnected devices, cloud...
Product Walkthrough: Silverfort’s Unified Identity Protection Platform
In this article, we will provide a brief overview of Silverfort's platform, the first (and currently only) unified identity protection...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39546
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe file upload | CVE-2023-39548
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe file uploadPlatforms Affected:NEC CLUSTERPRO X...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39547
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family weak security | CVE-2023-44319
NAME__________Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family weak securityPlatforms Affected:Siemens SCALANCE XF-200BA Siemens SCALANCE XR-300WG...
Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family information disclosure | CVE-2023-44318
NAME__________Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family information disclosurePlatforms Affected:Siemens SCALANCE XF-200BA Siemens SCALANCE XR-300WG...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39545
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39544
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
Indian Hack-for-Hire Group Targeted U.S., China, and More for Over 10 Years
An Indian hack-for-hire group targeted the U.S., China, Myanmar, Pakistan, Kuwait, and other countries as part of a wide-ranging espionage,...
Russian hackers use Ngrok feature and WinRAR exploit to attack embassies
After Sandworm and APT28 (known as Fancy Bear), another state-sponsored Russian hacker group, APT29, is leveraging the CVE-2023-38831 vulnerability in...
Researchers extract RSA keys from SSH server signing errors
A team of academic researchers from universities in California and Massachusetts demonstrated that it’s possible under certain conditions for passive network...
US-CERT Vulnerability Summary for the Week of November 6, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformThe 1E-Exchange-URLResponseTime instruction that is part of the Network product...
LightsOut – Generate An Obfuscated DLL That Will Disable AMSI And ETW
LightsOut will generate an obfuscated DLL that will disable AMSI & ETW while trying to evade AV. This is done...
Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family weak security | CVE-2023-44319
NAME__________Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family weak securityPlatforms Affected:Siemens SCALANCE XF-200BA Siemens SCALANCE XR-300WG...
Linux Kernel information disclosure | CVE-2023-6121
NAME__________Linux Kernel information disclosurePlatforms Affected:Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Linux Kernel could allow a remote authenticated attacker to obtain sensitive information, caused...
Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family information disclosure | CVE-2023-44318
NAME__________Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family information disclosurePlatforms Affected:Siemens SCALANCE XF-200BA Siemens SCALANCE XR-300WG...
Microsoft .NET, .NET Framework and Visual Studio privilege escalation | CVE-2023-36049
NAME__________Microsoft .NET, .NET Framework and Visual Studio privilege escalationPlatforms Affected:Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.8 Microsoft .NET Framework...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39545
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
HTTPie man-in-the-middle | CVE-2023-48052
NAME__________HTTPie man-in-the-middlePlatforms Affected:HTTPie HTTPie 3.2.2Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HTTPie is vulnerable to a man-in-the-middle attack, caused by improper SSL certificate validation....
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39547
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
h2oai h2o-3 cross-site scripting | CVE-2023-6013
NAME__________h2oai h2o-3 cross-site scriptingPlatforms Affected:h2oai h2o-3Risk Level:10Exploitability:Consequences:Cross-Site Scripting DESCRIPTION__________h2oai h2o-3 is vulnerable to cross-site scripting, caused by improper validation of...
