Apple fixed the ninth actively exploited zero-day this year
Apple released security updates that addressed the ninth zero-day vulnerability actively exploited in the wild since the start of the...
OSINT
Uncovering Security Blind Spots in CNC Machines
Industry 4.0 has given rise to smart factories that have markedly improved machining processes, but it has also opened the...
Cuba ransomware affiliate targets Ukraine, CERT-UA warns
The Ukraine Computer Emergency Response Team (CERT-UA) warns of Cuba Ransomware attacks against critical networks in the country. The Ukraine...
LockBit 3.0 Ransomware Victim: pendragonplc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Norway PM warns of Russia cyber threat to oil and gas industry
Norway ’s prime minister warned last week that Russia poses “a real and serious threat” to the country’s oil and...
Doomworld – 34,478 breached accounts
In October 2022, the Doomworld fourm suffered a data breach that exposed 34k member records. The data included email and...
E-Pal – 108,887 breached accounts
In October 2022, the service dedicated to finding friends on Discord known as E-Pal disclosed a data breach. The compromised...
Bomber – Scans Software Bill Of Materials (SBOMs) For Security Vulnerabilities
bomber is an application that scans SBOMs for security vulnerabilities. Overview So you've asked a vendor for an Software Bill...
Malicious Clicker apps in Google Play have 20M+ installs
Researchers discovered 16 malicious clicker apps in the official Google Play store that were downloaded by 20M+ users. Security researchers...
Cobalt Stike Beacon Detected – 104[.]194[.]243[.]238:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]104[.]157:666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – smokeloader – 087959df184f872b78f878ec08468cf3
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: 087959df184f872b78f878ec08468cf3SHA1: 64d40e5f89104dff61c2e142c5acc24252e9a215ANALYSIS DATE: 2022-10-24T08:16:06ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – – 3c34bab015acf45fa967c6791c7d3008
Score: 1 MALWARE FAMILY: TAGS:MD5: 3c34bab015acf45fa967c6791c7d3008SHA1: 809cae36f97ec02da41be75e94d09ff109bd7702ANALYSIS DATE: 2022-10-24T08:32:54ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – smokeloader – e5477b2c7ef4fb0b73e4230664296c76
Score: 10 MALWARE FAMILY: smokeloaderTAGS:family:smokeloader, backdoor, trojanMD5: e5477b2c7ef4fb0b73e4230664296c76SHA1: d481b394959e77d195aacb6a046c5b34ee221aa4ANALYSIS DATE: 2022-10-24T08:48:14ZTTPS: T1012, T1120, T1082 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Cobalt Stike Beacon Detected – 101[.]34[.]76[.]186:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 37[.]1[.]215[.]252:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 137[.]184[.]7[.]253:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]15[.]54[.]42:8999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Malware Analysis – ransomware – 494e3311b77bd7173db9e49d58e07ff6
Score: 7 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: 494e3311b77bd7173db9e49d58e07ff6SHA1: e0744371ad811861248b9f64ab79e0f72b6aa364ANALYSIS DATE: 2022-10-24T09:01:37ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – wannacry – 30b913fddae5295308cf3fd63ee35d5c
Score: 10 MALWARE FAMILY: wannacryTAGS:family:wannacry, discovery, ransomware, wormMD5: 30b913fddae5295308cf3fd63ee35d5cSHA1: 41585b5d933873c2ac72e35a2a0d9aa85a5a7a88ANALYSIS DATE: 2022-10-24T09:00:28ZTTPS: T1046 ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne...
Malware Analysis – djvu – c2bd252af4f49125f73f6fba509d70b3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:redline, family:smokeloader, botnet:google2, botnet:nam7, botnet:slovarik15btc, backdoor, collection, discovery, infostealer, persistence, ransomware, spyware, stealer, trojanMD5: c2bd252af4f49125f73f6fba509d70b3SHA1:...
Malware Analysis – troldesh – 410e3c46640ebe10ff385540270fad1e
Score: 10 MALWARE FAMILY: troldeshTAGS:family:troldesh, persistence, ransomware, trojan, upxMD5: 410e3c46640ebe10ff385540270fad1eSHA1: d16ff7d0953c480761e6af69bc81cf3a053e7defANALYSIS DATE: 2022-10-24T09:05:39ZTTPS: T1060, T1112, T1082 ScoreMeaningExample10Known badA malware family...
Malware Analysis – – 38d1b2f7932a78ff1c6192285b03c99a
Score: 1 MALWARE FAMILY: TAGS:MD5: 38d1b2f7932a78ff1c6192285b03c99aSHA1: 0a3e39b568b4a1f25e67e41ed3e5d519addf6025ANALYSIS DATE: 2022-10-24T09:30:09ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 23944ece875fe0e9874752aecfb12ef0
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 23944ece875fe0e9874752aecfb12ef0SHA1: 05eb228acf723b1230eceb31fb46bbe0811cc23dANALYSIS DATE: 2022-10-24T09:40:16ZTTPS: T1082, T1107, T1490, T1091, T1005, T1081 ScoreMeaningExample10Known badA malware...
