CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on June 8, 2023. These...
CISA: Mozilla Releases Security Updates for Multiple Products
Mozilla Releases Security Updates for Multiple Products Mozilla has released security updates to address vulnerabilities for Firefox 114 and Firefox...
CISA: VMware Releases Security Update for Aria Operations for Networks
VMware Releases Security Update for Aria Operations for Networks VMware has released a security update to address multiple vulnerabilities in...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
Cobalt Stike Beacon Detected – 101[.]35[.]152[.]19:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 163[.]197[.]221[.]204:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]200[.]197[.]112:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of May 29, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
PythonMemoryModule – Pure-Python Implementation Of MemoryModule Technique To Load Dll And Unmanaged Exe Entirely From Memory
"Python memory module" AI generated pic - hotpot.ai pure-python implementation of MemoryModule technique to load a dll or unmanaged exe...
Malware Analysis – – 15d1b37503fb24d31cf612c4a8120275
Score: 7 MALWARE FAMILY: TAGS:MD5: 15d1b37503fb24d31cf612c4a8120275SHA1: e7fbf54a50583562c4a08259051a64cfafabfcf0ANALYSIS DATE: 2023-06-10T16:53:59ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – evasion – 7ef84720d7b30286bff9483fe53bba62
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomware, trojanMD5: 7ef84720d7b30286bff9483fe53bba62SHA1: b8dbb845cc37fa555d5a3f52e4bbb76aa2be0933ANALYSIS DATE: 2023-06-10T17:47:08ZTTPS: T1112, T1031, T1089, T1053, T1082, T1107, T1490, T1491 ScoreMeaningExample10Known...
Malware Analysis – ransomware – 823f34b23eb518220b8ab28a689706c2
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 823f34b23eb518220b8ab28a689706c2SHA1: 3cf174d35998d92f24d4fe46757248304be2820cANALYSIS DATE: 2023-06-10T17:46:11ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – banker – a5acb875e755e10e19f486dffceff586
Score: 9 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: a5acb875e755e10e19f486dffceff586SHA1: 309ff20c940ff5cb2a0b750cbb9b97ff55f47cadANALYSIS DATE: 2023-06-10T17:48:25ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
New SPECTRALVIPER Backdoor Targeting Vietnamese Public Companies
Vietnamese public companies have been targeted as part of an ongoing campaign that deploys a novel backdoor called SPECTRALVIPER. "SPECTRALVIPER...
How to Improve Your API Security Posture
APIs, more formally known as application programming interfaces, empower apps and microservices to communicate and share data. However, this level...
How to Improve Your API Security Posture
APIs, more formally known as application programming interfaces, empower apps and microservices to communicate and share data. However, this level...
New Critical MOVEit Transfer SQL Injection Vulnerabilities Discovered – Patch Now!
Progress Software, the company behind the MOVEit Transfer application, has released patches to address brand new SQL injection vulnerabilities affecting...
LockBit 3.0 Ransomware Victim: wsisd[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: gruppomercurio[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 114[.]115[.]185[.]41:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]154[.]20:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]174[.]138[.]166:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]141[.]80:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 130[.]61[.]95[.]82:8085
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
