Patchwork APT caught in its own web
Patchwork is an Indian threat actor that has been active since December 2015 and usually targets Pakistan via spear phishing...
LockBit 2.0 Ransomware Victim: cbibanks[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: mcsmorandi[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: salesiancollege[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Sophisticated phishing scheme spent years robbing authors of their unpublished work
Three years ago on Quora, someone asked what writers do to keep their manuscripts from being stolen. One of the...
Google and Facebook fined $240 million for making cookies hard to refuse
French privacy watchdog, the Commission Nationale de l’Informatique et des Libertés (CNIL), has hit Google with a 150 million euro...
Threat actor targets VMware Horizon servers using Log4Shell exploits, UK NHS warns
A threat actor attempted to exploit the Log4Shell vulnerability to hack VMWare Horizon servers at UK NHS and deploy web...
CVE-2021-45525
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400...
CVE-2021-45526
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX6000 before 1.0.0.38, EX6120...
CVE-2020-20948
Summary: An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath"...
CVE-2020-20945
Summary: A Cross-Site Request Forgery (CSRF) in /admin/index.php?lfj=member&action=editmember of Qibosoft v7 allows attackers to arbitrarily add administrator accounts. Reference Links(if...
CVE-2017-2488
Summary: A cryptographic weakness existed in the authentication protocol of Remote Desktop. This issue was addressed by implementing the Secure...
Cuba Ransomware Victim: Sonomatic
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Cuba Ransomware Victim: Ncmutuallife
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Cuba Ransomware Victim: Atlasdie
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Cuba Ransomware Victim: Squamish
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Cuba Ransomware Victim: Bakertilly
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Cuba Ransomware Victim: Lahebert
Cuba Ransomware NOTE: The information on this page is automated and scraped directly from the Cuba Onion Dark Web Tor...
Mortar – Evasion Technique To Defeat And Divert Detection And Prevention Of Security Products (AV/EDR/XDR)
red teaming evasion technique to defeat and divert detection and prevention of security products.Mortar Loader performs encryption and decryption of...
LockBit 2.0 Ransomware Victim: chervongroup[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Norton Crypto, the controversial cryptomining feature of Norton 360
Experts warn that the popular antivirus product Norton 360 has installed a cryptocurrency miner on its customers’ computers. Many users...
Cobalt Stike Beacon Detected – 121[.]4[.]63[.]248:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 158[.]247[.]210[.]78:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE-2019-7609 – Elastic / Kibana – Code injection
Summary: CVE-2019-7609 is a code injection vulnerability impacting Elastic Kibana versions before 5.6.15 and 6.6.1. An exploit was observed in...
