Daily Vulnerability Trends: Thu Jul 21 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-30065A use-after-free in Busybox 1.35-x's awk applet leads to denial of service...
Luna and Black Basta — new ransomware for Windows, Linux and ESXi
Introduction In our crimeware reporting service, we analyze the latest crime-related trends we come across. If we look back at...
Cobalt Stike Beacon Detected – 175[.]178[.]170[.]184:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 134[.]122[.]61[.]207:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 178[.]128[.]98[.]154:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data
We discovered the use of two Python penetration-testing tools, Impacket and Responder, that malicious actors used to compromise systems and...
Improving Software Supply Chain Cybersecurity
Explore use cases for software supply chain cyberattacks and mitigation strategies to improve security maturity and reduce cyber risk. If...
New Luna ransomware targets Windows, Linux and ESXi systems
Kaspersky researchers discovered a new ransomware family written in Rust, named Luna, that targets Windows, Linux, and ESXi systems. Researchers...
Black Basta Ransomware Victim: COS2000
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: The Minka Group
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: MAI
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
HackerOne Bug Bounty Disclosure: lfi-via-jolokia-at-https://—:1293byshuvam321
Programme HackerOne 8x8 8x8 Submitted by shuvam321 shuvam321 Report LFI via Jolokia at https://...:1293 Full Report A considerable amount of...
HIVE Ransomware Victim: LaVan & Neidenberg
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers
Multiple flaws in MiCODUS MV720 Global Positioning System (GPS) trackers shipped with over 1.5 million vehicles can allow hackers to remotely...
Cdb – Automate Common Chrome Debug Protocol Tasks To Help Debug Web Applications From The Command-Line And Actively Monitor And Intercept HTTP Requests And Responses
Pown CDB is a Chrome Debug Protocol utility. The main goal of the tool is to automate common tasks to...
Cobalt Stike Beacon Detected – 154[.]29[.]74[.]218:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]73[.]178:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]197[.]223:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]116[.]4[.]45:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]99[.]214[.]111:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
SICK Safety Designer code execution | CVE-2022-27580
NAME SICK Safety Designer code execution Platforms Affected:SICK Safety Designer 1.11.0Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Safety Designer could allow a...
SICK Flexi Soft Designer code execution | CVE-2022-27579
NAME SICK Flexi Soft Designer code execution Platforms Affected:SICK Flexi Soft Designer 1.9.4 SP1Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Flexi Soft...
Google Chrome Guest View code execution | CVE-2022-2477
NAME Google Chrome Guest View code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Node.js shescape module command execution |
NAME Node.js shescape module command execution Platforms Affected:Node.js shescape 1.1.2 Node.js shescape 1.5.0 Node.js shescape 1.4.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js...
