Improve Threat Detection & Response with OCSF
New open source initiative helping organizations to detect and respond to cyber-attacks faster and easier If you like the site,...
OSINT
Risky Business: Enterprises Can’t Shake Log4j flaw
70% of Large enterprises that previously addressed the Log4j flaw are still struggling to patch Log4j-vulnerable assets. INTRODUCTION In December...
CISA: Palo Alto Networks Releases Security Update for PAN-OS
Palo Alto Networks Releases Security Update for PAN-OS Palo Alto Networks has released a security update to address a vulnerability...
CISA: CISA Releases Cybersecurity Toolkit to Protect U.S. Elections
CISA Releases Cybersecurity Toolkit to Protect U.S. Elections CISA—through the Joint Cyber Defense Collaborative (JCDC)—has released a toolkit of free...
Experts found 10 malicious packages on PyPI used to steal developers’ data
10 packages have been removed from the Python Package Index (PyPI) because they were found harvesting data. Check Point researchers...
Hackers behind Twilio data breach also targeted Cloudflare employees
Cloudflare revealed that at least 76 employees and their family members were targeted by smishing attacks similar to the one...
Packj – Large-Scale Security Analysis Platform To Detect Malicious/Risky Open-Source Packages
PyConUS'22 talk and slides. BlackHAT Asia'22 Arsenal presentation PackagingCon'21 talk and slides Academic dissertation on open-source software security and the...
CISA adds UnRAR and Windows flaws to Known Exploited Vulnerabilities Catalog
US Critical Infrastructure Security Agency (CISA) adds vulnerabilities in the UnRAR utility to its Known Exploited Vulnerabilities Catalog. The Cybersecurity...
Cobalt Stike Beacon Detected – 121[.]89[.]241[.]7:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]102[.]91[.]80:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]3[.]134[.]252:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]29[.]69[.]155:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]44[.]132[.]119:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 66[.]152[.]188[.]143:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]153[.]166[.]124:83
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]239[.]66[.]2:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]35[.]233:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]14[.]64[.]157:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 146[.]56[.]198[.]51:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
VMware warns of public PoC code for critical auth bypass bug CVE-2022-31656
VMware warns of the availability of a proof-of-concept exploit code for a critical authentication bypass flaw in multiple products. VMware...
Daily Vulnerability Trends: Wed Aug 10 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-20842 No description provided CVE-2022-2466 No description provided CVE-2022-31101prestashop/blockwishlist is a prestashop...
Andariel deploys DTrack and Maui ransomware
On July 7, 2022, the CISA published an alert, entitled, “North Korean State-Sponsored Cyber Actors Use Maui Ransomware To Target...
CISA: Microsoft Releases August 2022 Security Updates
Microsoft Releases August 2022 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can...
Cobalt Stike Beacon Detected – 194[.]156[.]120[.]142:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
