Cobalt Stike Beacon Detected – 58[.]87[.]64[.]85:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]105[.]123[.]109:8848
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 155[.]94[.]201[.]196:3211
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 44[.]234[.]86[.]158:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]188[.]31:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]55[.]102[.]254:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]15[.]171[.]104:3001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 31[.]7[.]62[.]16:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]176[.]17:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Apple fixed the first two zero-day vulnerabilities of 2022
Apple released security updates to fix two zero-day flaws, one of them actively exploited to hack iPhones and Macs. Apple...
New DazzleSpy malware attacks macOS
DazzleSpy, a piece of malware that attacks macOS, was discovered last fall by researchers at ESET, and now those researchers...
GNU glibc buffer overflow | CVE-2021-3999
NAME GNU glibc buffer overflow Platforms Affected:GNU glibcRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION GNU glibc is vulnerable to an off-by-one buffer overflow...
McAfee Data Loss Protection ePO extension SQL injection | CVE-2021-4088
NAME McAfee Data Loss Protection ePO extension SQL injection Platforms Affected:McAfee Data Loss Prevention (DLP) ePO extension 11.6 McAfee Data...
Vim code execution | CVE-2022-0351
NAME Vim code execution Platforms Affected:Vim Vim 8.1.2135Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a local attacker to...
StarWind Command Center privilege escalation | CVE-2022-23858
NAME StarWind Command Center privilege escalation Platforms Affected:StarWind Command Center v2 build 6003Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION StarWind Command Center could...
ICONICS and Mitsubishi Electric HMI SCADA security bypass | CVE-2022-23128
NAME ICONICS and Mitsubishi Electric HMI SCADA security bypass Platforms Affected:Mitsubishi Electric MC Works64 ICONICS GENESIS64 ICONICS Hyper Historian ICONICS...
Zulip information disclosure | CVE-2021-43799
NAME Zulip information disclosure Platforms Affected:Zulip Zulip Server 4.8Risk Level:8.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Zulip could allow a remote attacker to obtain...
ICONICS and Mitsubishi Electric HMI SCADA information disclosure | CVE-2022-23129
NAME ICONICS and Mitsubishi Electric HMI SCADA information disclosure Platforms Affected:Mitsubishi Electric MC Works64 ICONICS GENESIS64 ICONICS Hyper Historian ICONICS...
Xen p2m mappings privilege escalation | CVE-2022-23033
NAME Xen p2m mappings privilege escalation Platforms Affected:XenSource Xen 5.1 XenSource Xen 4.12 XenSource Xen 4.13 XenSource Xen 4.14 XenSource...
AIDE buffer overflow | CVE-2021-45417
NAME AIDE buffer overflow Platforms Affected:AIDE AIDE 0.17.3 AIDE AIDE 0.17.2Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION AIDE is vulnerable to...
CWP Control Web Panel file include | CVE-2021-45467
NAME CWP Control Web Panel file include Platforms Affected:CWP Control Web PanelRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CWP Control Web Panel could...
Apache ShardingSphere ElasticJob-UI privilege escalation | CVE-2022-22733
NAME Apache ShardingSphere ElasticJob-UI privilege escalation Platforms Affected:Apache ShardingSphere ElasticJob-UI 3.0.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Apache ShardingSphere ElasticJob-UI could allow a...
Polkit privilege escalation | CVE-2021-4034
NAME Polkit privilege escalation Platforms Affected:Polkit PolkitRisk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Privileges DESCRIPTION Polkit could allow a local authenticated attacker to...
Node.js @isomorphic-git/cors-proxy module server-side request forgery | CVE-2021-23664
NAME Node.js @isomorphic-git/cors-proxy module server-side request forgery Platforms Affected:Node.js @isomorphic-git/cors-proxy 2.7.0Risk Level:8.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Node.js @isomorphic-git/cors-proxy module is vulnerable to...
