Tenda HG6 formPing command execution |
NAME Tenda HG6 formPing command execution Platforms Affected:Tenda HG6 3.3.0Risk Level:8.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Tenda HG6 could allow a...
Talend Administration Center privilege escalation | CVE-2022-29943
NAME Talend Administration Center privilege escalation Platforms Affected:Talend Talend Administration Center 8.0.0 Talend Talend Administration Center 7.3.0 Talend Talend Administration...
Node.js af-mason module code execution |
NAME Node.js af-mason module code execution Platforms Affected:Node.js af-masonRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js af-mason module could allow a remote attacker...
Node.js realtime-react-ui module code execution |
NAME Node.js realtime-react-ui module code execution Platforms Affected:Node.js realtime-react-uiRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js realtime-react-ui module could allow a remote attacker...
Scout server-side request forgery | CVE-2022-1592
NAME Scout server-side request forgery Platforms Affected:Clinical Genomics Scout 4.41 Clinical Genomics Scout 4.40.1 Clinical Genomics Scout 4.40Risk Level:9.4Exploitability:Proof of...
Node.js clientlib-manifests module code execution |
NAME Node.js clientlib-manifests module code execution Platforms Affected:Node.js clientlib-manifestsRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js clientlib-manifests module could allow a remote attacker...
Node.js af-test module code execution |
NAME Node.js af-test module code execution Platforms Affected:Node.js af-testRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js af-test module could allow a remote attacker...
Node.js atmunters/calculations module code execution |
NAME Node.js atmunters/calculations module code execution Platforms Affected:Node.js @munters/calculationsRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js atmunters/calculations module could allow a remote attacker...
MediaTek Android privilege escalation | CVE-2022-20093
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
Ransomware: April 2022 review
The Malwarebytes Threat Intelligence team monitors the threat landscape continuously and produces monthly ransomware reports based on a mixture of...
Ukraine IT Army hit EGAIS portal impacting Russia’s alcohol distribution
Ukraine IT Army launched massive DDoS attacks on the EGAIS portal that has a crucial role in Russia’s alcohol distribution....
LockBit 2.0 Ransomware Victim: delcourt[.]fr
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 172[.]81[.]62[.]199:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 141[.]164[.]55[.]172:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 129[.]226[.]201[.]214:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]77[.]124[.]133:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
NetDooka Framework Distributed via PrivateLoader Malware as Part of Pay-Per-Install Service
This report focuses on the components and infection chain of the NetDooka framework. Its scope ranges from the release of...
Workshop: Simplifying Network Security in the Cloud
In this workshop, you will learn how to leverage Trend Micro Cloud One™ - Network Security to provide a powerful...
Malicious-Pdf – Generate A Bunch Of Malicious Pdf Files With Phone-Home Functionality
Generate ten different malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh Used for penetration...
Google addresses actively exploited Android flaw in the kernel
Google released the May security bulletin for Android, 2022-05-05 security patch level, which fixed an actively exploited Linux kernel flaw....
CISA: Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird
Mozilla Releases Security Updates for Firefox, Firefox ESR, and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox,...
CISA: Cisco Releases Security Updates for Enterprise NFV Infrastructure Software
Cisco Releases Security Updates for Enterprise NFV Infrastructure Software Cisco has released security updates to address multiple vulnerabilities in Enterprise...
HackerOne Bug Bounty Disclosure: github-account-takeover-which-is-used-as-gradle-vcs-in-“github-com/palantir/gradle-launch-config-plugin”bycodermak
Programme HackerOne Palantir Public Palantir Public Submitted by codermak codermak Report Github Account Takeover which is used as gradle vcs...
The $43 billion Business Email Compromise threat
The FBI has released a public service announcement regarding the ever-present threat of Business Email Compromise (BEC). This comes hot...
