Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer
Threat actors are using the Rig Exploit Kit to spread the Dridex banking trojan instead of the Raccoon Stealer malware....
DFSCoerce, a new NTLM relay attack, can take control over a Windows domain
A researcher has published a Proof-of-Concept (PoC) for an NTLM relay attack dubbed DFSCoerce. The method leverages the Distributed File...
Node.js sequelize module SQL injection |
NAME Node.js sequelize module SQL injection Platforms Affected:Node.js sequelize 6.19.0Risk Level:9.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION Node.js sequelize module is vulnerable to SQL...
AtlasVPN privilege escalation | CVE-2022-23171
NAME AtlasVPN privilege escalation Platforms Affected:AtlasVPN AtlasVPN 2.4Risk Level:8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION AtlasVPN could allow a remote authenticated attacker to gain...
Vim code execution | CVE-2022-2126
NAME Vim code execution Platforms Affected:Vim Vim 8.2.5122Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Google Chrome Interest groups code execution | CVE-2022-2157
NAME Google Chrome Interest groups code execution Platforms Affected:Google Chrome 103Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Google Chrome WebApp Provider code execution | CVE-2022-2161
NAME Google Chrome WebApp Provider code execution Platforms Affected:Google Chrome 103Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Vim code execution | CVE-2022-2129
NAME Vim code execution Platforms Affected:Vim Vim 8.2.5125Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Vim buffer overflow | CVE-2022-2125
NAME Vim buffer overflow Platforms Affected:Vim Vim 8.2.5121Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim is vulnerable to a heap-based buffer...
Vim code execution | CVE-2022-2124
NAME Vim code execution Platforms Affected:Vim Vim 8.2.5119Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Google Chrome Cast UI and Toolbar code execution | CVE-2022-2163
NAME Google Chrome Cast UI and Toolbar code execution Platforms Affected:Google Chrome 103Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow...
Google Chrome Base code execution | CVE-2022-2156
NAME Google Chrome Base code execution Platforms Affected:Google Chrome 103Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome V8 code execution | CVE-2022-2158
NAME Google Chrome V8 code execution Platforms Affected:Google Chrome 103Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Red Hat AMQ Broker Operator privilege escalation | CVE-2022-1833
NAME Red Hat AMQ Broker Operator privilege escalation Platforms Affected:Red Hat AMQ Broker Operator 7.9.4Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Red Hat...
SMA Technologies OpCon UNIX agent security bypass | US-CERT VU#142546
NAME SMA Technologies OpCon UNIX agent security bypass Platforms Affected:SMA Technologies OpCon UNIX agentRisk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION SMA Technologies OpCon...
Flagstar Bank discloses a data breach that impacted 1.5 Million individuals
US Flagstar Bank disclosed a data breach that exposed files containing the personal information of 1.5 million individuals. US-based Flagstar...
Daily Vulnerability Trends: Wed Jun 22 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-27511Corruption of the system by a remote, unauthenticated user. The impact of...
APT ToddyCat
ToddyCat is a relatively new APT actor that we have not been able to relate to other known actors, responsible...
Cobalt Stike Beacon Detected – 18[.]195[.]214[.]39:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 92[.]205[.]26[.]129:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]103[.]138[.]221:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]103[.]159[.]215:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]240[.]155:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]218[.]109[.]81:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
