Hospital Clínic de Barcelona severely impacted by ransomware attack
The Hospital Clínic de Barcelona suffered a ransomware attack on Sunday morning, severely disrupting its healthcare services after the institution's...
OSINT
Pen Testers using Vulnerability Scanners – Closing the Gap
Vulnerability scanning is a common practice for businesses to verify and harden their security controls, and because of its popularity,...
New malware variant has “radio silence” mode to evade detection
The Sharp Panda cyber-espionage hacking group is targeting high-profile government entities in Vietnam, Thailand, and Indonesia with a new version of...
Fortinet warns of new critical unauthenticated RCE vulnerability
Fortinet has disclosed a "Critical" vulnerability impacting FortiOS and FortiProxy, which allows an unauthenticated attacker to execute arbitrary code or...
Veeam fixes bug that lets hackers breach backup infrastructure
Veeam urged customers to patch a high-severity Backup Service security vulnerability impacting its Backup & Replication software. The flaw (tracked...
Ransomware gang posts video of data stolen from Minneapolis schools
The Medusa ransomware gang is demanding a $1,000,000 ransom from the Minneapolis Public Schools (MPS) district to delete data allegedly...
Bitwarden flaw can let hackers steal passwords using iframes
Bitwarden's credentials autofill feature contains a risky behavior that could allow malicious iframes embedded in trusted websites to steal people's...
FBI investigates data breach impacting U.S. House members and staff
The FBI is investigating a data breach affecting U.S. House of Representatives members and staff after their account and sensitive...
Does Your Help Desk Know Who’s Calling?
Phishing, the theft of users' credentials or sensitive data using social engineering, has been a significant threat since the early...
Iranian Hackers Target Women Involved in Human Rights and Middle East Politics
Iranian state-sponsored actors are continuing to engage in social engineering campaigns targeting researchers by impersonating a U.S. think tank. "Notably...
Cobalt Stike Beacon Detected – 216[.]83[.]38[.]235:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]141[.]173:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]98[.]167[.]247:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 179[.]43[.]162[.]6:10443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 5239b4963a8dd2bddc6dcbd203851e31
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 5239b4963a8dd2bddc6dcbd203851e31SHA1: d770c3b7d73c5fb50adbc31e0479c79ab6747167ANALYSIS DATE: 2023-03-09T10:29:04ZTTPS: T1082, T1053, T1012, T1005, T1081,...
Malware Analysis – amadey – d6b9b6638f6427d82d83c5b08bde7ef7
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, backdoor, discovery, evasion, persistence, ransomware, stealer, trojanMD5: d6b9b6638f6427d82d83c5b08bde7ef7SHA1: 9b9caf7c62a21bedf100ab496dd4959a7d7ef7b8ANALYSIS DATE: 2023-03-09T09:34:31ZTTPS: T1012,...
Malware Analysis – bootkit – 8212c56b81cf868f127f5cb87e86ae44
Score: 8 MALWARE FAMILY: bootkitTAGS:bootkit, discovery, persistence, ransomwareMD5: 8212c56b81cf868f127f5cb87e86ae44SHA1: bc90de21627fd7bba718af8587ae68ef15cdd4adANALYSIS DATE: 2023-03-09T10:02:41ZTTPS: T1012, T1082, T1060, T1112, T1491, T1067, T1130 ScoreMeaningExample10Known...
Malware Analysis – djvu – 5bb17f0bd59304af2640fa2beb074d16
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 5bb17f0bd59304af2640fa2beb074d16SHA1: 64a300c6079fdcbb48f15d7ff8f801d6be160100ANALYSIS DATE: 2023-03-09T10:13:18ZTTPS: T1082, T1005, T1081, T1060, T1112,...
Cobalt Stike Beacon Detected – 34[.]162[.]188[.]150:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]205[.]129[.]254:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 157[.]245[.]153[.]146:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]65[.]198[.]205:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – djvu – 185b3efe7ae7908a5d7767832f79fc20
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 185b3efe7ae7908a5d7767832f79fc20SHA1: 0eda0497474c4cf23809be14dd46f06c2f4f102dANALYSIS DATE: 2023-03-09T10:42:24ZTTPS: T1012, T1082, T1005, T1081, T1060,...
Malware Analysis – amadey – b89600a981edebb261b4076e2b05b528
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, backdoor, discovery, evasion, persistence, ransomware, stealer, trojanMD5: b89600a981edebb261b4076e2b05b528SHA1: 7dfb72a1401e3f230b43414cff60c43f3c927ce5ANALYSIS DATE: 2023-03-09T10:53:22ZTTPS: T1222,...
