BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: – Impersonation via Broken Link Hijacking on https://sv.hellosign.com – By CoffeeAddict_exe
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 43[.]155[.]66[.]70:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]85[.]158:6002
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]60[.]167:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]116[.]3[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]222[.]185[.]248:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 88[.]80[.]148[.]204:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]36[.]214:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]74[.]250[.]143:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – lockbit – 02ad715191b64a46120e38ca6cb1ef6a
Score: 10 MALWARE FAMILY: lockbitTAGS:family:lockbit, discovery, evasion, persistence, ransomwareMD5: 02ad715191b64a46120e38ca6cb1ef6aSHA1: cfd8d84b1013e5cf88878ca36021272ee0231504ANALYSIS DATE: 2022-11-17T11:39:09ZTTPS: T1490, T1046, T1107, T1491, T1112, T1060, T1082,...
Malware Analysis – djvu – 59ebbae90911a0a3ca038e71855c7ce2
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 59ebbae90911a0a3ca038e71855c7ce2SHA1: f38b4da77a1ef5c57252599e8f25a89ec9bc8ddfANALYSIS DATE: 2022-11-17T10:39:09ZTTPS: T1005, T1081, T1012, T1082,...
Malware Analysis – amadey – 63fa96f3166091f524866b16fd91d2ae
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Malware Analysis – amadey – c90d70bb6c573d5eb9da902d67447fac
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1827, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware,...
Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police
A suspected leader of the Zeus cybercrime gang, Vyacheslav Igorevich Penchukov (aka Tank), was arrested by Swiss police. Swiss police last...
Mozilla Firefox spoofing | CVE-2022-45420
NAME Mozilla Firefox spoofing Platforms Affected:Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Mozilla Firefox could allow a remote attacker to conduct spoofing attacks,...
Jenkins Associated Files Plugin cross-site scripting | CVE-2022-45401
NAME Jenkins Associated Files Plugin cross-site scripting Platforms Affected:Jenkins Associated Files Plugin 0.2.1Risk Level:8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION Jenkins Associated Files Plugin...
Apache SOAP code execution | CVE-2022-45378
NAME Apache SOAP code execution Platforms Affected:Apache SOAPRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache SOAP could allow a remote attacker to execute...
Jenkins JUnit Plugin cross-site scripting | CVE-2022-45380
NAME Jenkins JUnit Plugin cross-site scripting Platforms Affected:Jenkins JUnit Plugin 1159.v0b_396e1e07ddRisk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins JUnit Plugin is vulnerable to...
Mozilla Firefox spoofing | CVE-2022-45418
NAME Mozilla Firefox spoofing Platforms Affected:Mozilla Firefox 106Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Mozilla Firefox could allow a remote attacker to conduct...
Wasmtime information disclosure | CVE-2022-39393
NAME Wasmtime information disclosure Platforms Affected:Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Wasmtime could allow a remote attacker to obtain sensitive information, caused...
Apache Airflow command execution | CVE-2022-40127
NAME Apache Airflow command execution Platforms Affected:Apache Airflow 2.3.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache Airflow could allow a remote authenticated attacker...
Mozilla Firefox security bypass | CVE-2022-45415
NAME Mozilla Firefox security bypass Platforms Affected:Mozilla Firefox 106Risk Level:8.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Mozilla Firefox could allow a remote attacker to...
Jenkins Script Security Plugin information disclosure | CVE-2022-45379
NAME Jenkins Script Security Plugin information disclosure Platforms Affected:Jenkins Script Security Plugin 1189.vb_a_b_7c8fd5fdeRisk Level:8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Jenkins Script Security Plugin...
