Cobalt Stike Beacon Detected – 139[.]155[.]81[.]10:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]236[.]67[.]14:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]108[.]193[.]24:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]105[.]217[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]87[.]69[.]74:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
FIN7 group continues to target US companies with BadUSB devices
The Federal Bureau of Investigation (FBI) warns US companies that the FIN7 cybercriminals group is targeting the US defense industry...
Cobalt Stike Beacon Detected – 119[.]91[.]233[.]239:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
This Week in Security News – January 7th, 2022
This week, read about Log4j vulnerabilities in connected cars and charging stations and how iOS malware can fake iPhone shutdowns...
Codex Exposed: Exploring the Capabilities and Risks of OpenAI’s Code Generator
The first of a series of blog posts examines the security risks of Codex, a code generator powered by the...
This Week in Security News – January 7, 2022
This week, read about Log4j vulnerabilities in connected cars and charging stations and how iOS malware can fake iPhone shutdowns...
Organized Cybercrime Cases: What CISOs Need to Know
Jon Clay, VP of Threat Intelligence at Trend Micro, explores the latest Trend Micro Research covering Access as a Service...
Ransomware attacks Finalsite, renders 8,000 school sites unreachable for days
Finalsite, a popular platform for creating school websites, appears to have recovered significant functionality after being attacked by a still-unknown...
How to secure QNAP NAS devices? The vendor’s instructions
QNAP is warning customers of ransomware attacks targeting network-attached storage (NAS) devices exposed online. Taiwanese vendor QNAP has warned customers...
Patchwork APT caught in its own web
Patchwork is an Indian threat actor that has been active since December 2015 and usually targets Pakistan via spear phishing...
LockBit 2.0 Ransomware Victim: cbibanks[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: mcsmorandi[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: salesiancollege[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Sophisticated phishing scheme spent years robbing authors of their unpublished work
Three years ago on Quora, someone asked what writers do to keep their manuscripts from being stolen. One of the...
Google and Facebook fined $240 million for making cookies hard to refuse
French privacy watchdog, the Commission Nationale de l’Informatique et des Libertés (CNIL), has hit Google with a 150 million euro...
Threat actor targets VMware Horizon servers using Log4Shell exploits, UK NHS warns
A threat actor attempted to exploit the Log4Shell vulnerability to hack VMWare Horizon servers at UK NHS and deploy web...
CVE-2021-45525
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400...
CVE-2021-45526
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX6000 before 1.0.0.38, EX6120...
CVE-2020-20948
Summary: An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath"...
CVE-2020-20945
Summary: A Cross-Site Request Forgery (CSRF) in /admin/index.php?lfj=member&action=editmember of Qibosoft v7 allows attackers to arbitrarily add administrator accounts. Reference Links(if...
