An initial access broker claims to have hacked Deutsche Bank
An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on...
Cobalt Stike Beacon Detected – 51[.]89[.]205[.]14:10000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]100[.]247[.]192:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 124[.]220[.]10[.]78:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 205[.]185[.]114[.]97:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]48[.]29[.]38:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 31[.]41[.]244[.]142:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 64[.]44[.]102[.]133:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]217[.]185:9966
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]193[.]155[.]61:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 5[.]199[.]169[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – xmrig – 679a446a9df957ab96bd8eaa059f1edc
Score: 10 MALWARE FAMILY: xmrigTAGS:family:xmrig, discovery, evasion, miner, persistence, ransomware, spyware, stealerMD5: 679a446a9df957ab96bd8eaa059f1edcSHA1: a4bc35f5029077f304e3a1cd72ff75d219e4a022ANALYSIS DATE: 2022-11-11T21:38:31ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – hive – daa6c53378147fb212703048ad31702a
Score: 10 MALWARE FAMILY: hiveTAGS:family:hive, evasion, persistence, ransomware, spyware, stealerMD5: daa6c53378147fb212703048ad31702aSHA1: 22651c3a351fa7d21021b4713e0d30dfd9ce48e4ANALYSIS DATE: 2022-11-11T22:00:07ZTTPS: T1059, T1107, T1490, T1060, T1112, T1082,...
Malware Analysis – djvu – bc61264ac2c5e2665df415cb70a1326a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: bc61264ac2c5e2665df415cb70a1326aSHA1: a909736d0ef0df42cd31546bdb08b82d9470898bANALYSIS DATE: 2022-11-11T23:07:20ZTTPS: T1082, T1012, T1060, T1112,...
CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS
This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used...
Long-running surveillance campaigns target Uyghurs with BadBazaar and MOONSHINE spyware
Lookout researchers discovered two long-running surveillance campaigns targeting the ethnic minority Uyghurs. Researchers from mobile security firm Lookout uncovered two...
Karakurt Ransomware Victim: Roxboro
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Ransomware Victim: Özel GözAkademi Hastanesi
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Ransomware Victim: Energy Transfer Durafin Tubes
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: National Stores Inc[.]
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Tanzania Telecommunications Company
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: William A[.] Kibbe & Associates
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Ransomware Victim: Methodist McKinney Hospital
KARAKURT RANSOMWARE GROUP NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
