SCMKit – Source Code Management Attack Toolkit
Source Code Management Attack Toolkit - SCMKit is a toolkit that can be used to attack SCM systems. SCMKit allows...
BugCrowd Bug Bounty Disclosure: – Panel access at https://news-push-88.op-mobile.opera.com/. – By rahul0x01
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Malware Analysis – smokeloader – a31728f1578939de11bcf95509015f35
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: a31728f1578939de11bcf95509015f35SHA1: 0fce37afab13319f182849da37d97f5e75774794ANALYSIS DATE: 2022-11-13T09:39:09ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – djvu – b80625694ee01d78a66203d2bdd91c65
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:google2, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – – 7d35375e09623e3fa95b059dc1df32a9
Score: 1 MALWARE FAMILY: TAGS:MD5: 7d35375e09623e3fa95b059dc1df32a9SHA1: bc63fa13e1b500ad6f8f52f073c1d9073ac4e3f3ANALYSIS DATE: 2022-11-13T09:23:05ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – e8e8624d902450b62ca0435ae8757d0b
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer, themida,...
Malware Analysis – ransomware – 379cbdbb5b3221615dd1802d906eb23c
Score: 8 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 379cbdbb5b3221615dd1802d906eb23cSHA1: a891e774eeb9671ff2dd1334e1628ba18fb60575ANALYSIS DATE: 2022-11-13T10:07:17ZTTPS: T1005, T1081 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – djvu – f5c178148b3caf9df80d0ebdad21247f
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, family:vidar, botnet:123, botnet:517, botnet:mario23_10, backdoor, collection, discovery, evasion, infostealer, persistence, ransomware, spyware, stealer,...
Malware Analysis – djvu – 8af26984586b5276ca34484df634c57c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:517, discovery, persistence, ransomware, spyware, stealerMD5: 8af26984586b5276ca34484df634c57cSHA1: 676f4703088ca9d85a46d9bd66816a06ea19dcdcANALYSIS DATE: 2022-11-13T10:09:52ZTTPS: T1012, T1053, T1005, T1081,...
Posh C2 Detected – 132[.]145[.]106[.]12:8443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Lockbit gang leaked data stolen from global high-tech giant Thales
The Lockbit 3.0 ransomware gang started leaking the information allegedly stolen from the global high-tech company Thales. Thales is a...
POWER METER SICAM Q100 code execution | CVE-2022-43439
NAME POWER METER SICAM Q100 code execution Platforms Affected:Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION POWER METER SICAM Q100 could allow a remote...
GrafanaCve202239328PrivEsc | CVE-2022-39328
NAME GrafanaCve202239328PrivEsc Platforms Affected:Grafana Grafana 9.2.3 Grafana Grafana 9.2.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Grafana could allow a remote attacker to gain...
Intel Server Board S2600WF, Intel(R) Server System R1000WF and Intel(R) Server System R2000WF families privilege escalation | CVE-2022-30542
NAME Intel Server Board S2600WF, Intel(R) Server System R1000WF and Intel(R) Server System R2000WF families privilege escalation Platforms Affected:Intel Server...
Multiple AMD Graphics products code execution | CVE-2021-26360
NAME Multiple AMD Graphics products code execution Platforms Affected:AMD Radeon RX 5000 Series AMD Radeon PRO W5000 Series AMD Radeon...
Google Android privilege escalation | CVE-2021-1050
NAME Google Android privilege escalation Platforms Affected:Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION Google Android could allow a local attacker to gain elevated...
Siemens SICAM Q100 session hijacking | CVE-2022-43398
NAME Siemens SICAM Q100 session hijacking Platforms Affected:Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Siemens SICAM Q100 could allow a remote attacker to...
POWER METER SICAM Q100 code execution | CVE-2022-43545
NAME POWER METER SICAM Q100 code execution Platforms Affected:Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION POWER METER SICAM Q100 could allow a remote...
Dell Connectrix (Brocade) switches unspecified | CVE-2022-33186
NAME Dell Connectrix (Brocade) switches unspecified Platforms Affected:Risk Level:9.8Exploitability:UnprovenConsequences:Unknown DESCRIPTION An unspecified error in Dell Connectrix (Brocade) switches could allow...
POWER METER SICAM Q100 code execution | CVE-2022-43546
NAME POWER METER SICAM Q100 code execution Platforms Affected:Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION POWER METER SICAM Q100 could allow a remote...
Intel Active Management Technology (AMT) SDK, Endpoint Management Assistant (EMA), and Manageability Commander privilege escalation | CVE-2022-26341
NAME Intel Active Management Technology (AMT) SDK, Endpoint Management Assistant (EMA), and Manageability Commander privilege escalation Platforms Affected:Risk Level:8.2Exploitability:UnprovenConsequences:Gain Privilege...
Citrix ADC and Citrix Gateway security bypass | CVE-2022-27510
NAME Citrix ADC and Citrix Gateway security bypass Platforms Affected:Citrix Gateway 12.1 Citrix Gateway 13.0 Citrix ADC 13.0 Citrix ADC...
Daily Vulnerability Trends: Sun Nov 13 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27510Unauthorized access to Gateway user capabilitiesCVE-2021-1961Possible buffer overflow due to lack of...
LockBit 3.0 Ransomware Victim: sinopecthc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
