Daily Vulnerability Trends: Sun Apr 30 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-21707Microsoft Exchange Server Remote Code Execution VulnerabilityCVE-2019-5736runc through 1.0-rc6, as used in...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-21707Microsoft Exchange Server Remote Code Execution VulnerabilityCVE-2019-5736runc through 1.0-rc6, as used in...
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Veeam backup servers are being targeted by at least one group of threat actors known to work with multiple high-profile...
Cisco Releases Security Advisories for Multiple Products Cisco has released security updates for vulnerabilities affecting Industrial Network Director (IND), Modeling...
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
CISA Releases Two SBOM Documents Today, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM...
Drupal Releases Security Advisory to Address Vulnerability in Drupal Core Drupal has released a security advisory to address an access...
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on April 25, 2023. These...
CISA Releases One Industrial Control Systems Medical Advisory CISA released one Industrial Control Systems Medical (ICS) medical advisory on April...
CISA Requests for Comment on Secure Software Self-Attestation Form CISA has issued requests for comment on the Secure Software Self-Attestation...
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
Discover, filter, and prioritize security risks and vulnerabilities impacting your code. Bearer is a static application security testing (SAST) tool...
FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily built for...
Score: 10 MALWARE FAMILY: persistenceTAGS:persistence, ransomwareMD5: 09250d8b8323c62fb59941b458fa70d1SHA1: da5f6347207257139ac82b50bc8276de9c1afd9eANALYSIS DATE: 2023-04-29T15:39:47ZTTPS: T1112, T1060, T1012, T1120, T1082, T1107, T1490 ScoreMeaningExample10Known badA malware...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: cabb11a8e237ff7233e19b9cb6cc829dSHA1: ffe487aba123018573a275adfe98c44d1cee9c77ANALYSIS DATE: 2023-04-29T15:35:17ZTTPS: T1060, T1112, T1222, T1053,...
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:5cb879265de0011bfc7588d5d251aee6, discovery, persistence, ransomware, spyware, stealerMD5: 1420395c269bb059c6f60d8faee97088SHA1: 1c3662586dcf5451f479d7c1812a22cc9db25dbdANALYSIS DATE: 2023-04-29T16:22:32ZTTPS: T1012, T1082, T1005, T1081,...
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: b55fca9a67bd38321a51a8724b61ee12SHA1: 99e8e1961755df056c605ca052e92da3ddb0a3d3ANALYSIS DATE: 2023-04-29T15:56:53ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:icedid, family:redline, family:smokeloader, family:vidar, botnet:1616034f091df9fd0229bc38dd17597f, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:potok 2, botnet:pub1, campaign:252847557, backdoor, banker, discovery, evasion,...
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:redline, family:smokeloader, family:vidar, botnet:1616034f091df9fd0229bc38dd17597f, botnet:5cb879265de0011bfc7588d5d251aee6, botnet:potok 2, botnet:pub1, backdoor, discovery, evasion, infostealer, persistence, ransomware,...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
OpenAI, the company behind ChatGPT, has officially made a return to Italy after the company met the data protection authority's...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) medical advisory warning of a...