Cobalt Stike Beacon Detected – 13[.]114[.]124[.]192:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Security
Cobalt Stike Beacon Detected – 103[.]20[.]235[.]219:99
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Russia prepares massive cyberattacks on the critical infrastructure of Ukraine and its allies
The Ukrainian military intelligence warns that Russia is planning to escalate cyberattacks targeting Ukraine and Western allies. The Main Directorate...
China-linked TA413 group targets Tibetan entities with new backdoor
China-linked cyberespionage group TA413 exploits employ a never-before-undetected backdoor called LOWZERO in attacks aimed at Tibetan entities. A China-linked cyberespionage group, tracked...
SharpNamedPipePTH – Pass The Hash To A Named Pipe For Token Impersonation
This project is a C# tool to use Pass-the-Hash for authentication on a local Named Pipe for user Impersonation. You...
Metador, a never-before-seen APT targeted ISPs and telco for about 2 years
A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about...
Cobalt Stike Beacon Detected – 103[.]234[.]72[.]104:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]150[.]154:6000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]103[.]151:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Exmatter exfiltration tool used to implement new extortion tactics
Ransomware operators switch to new extortion tactics by using the Exmatter malware and adding new data corruption functionality. The data...
Cobalt Stike Beacon Detected – 3[.]231[.]236[.]148:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]201[.]9[.]221:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]206[.]62:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]15[.]17:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]155[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 117[.]50[.]180[.]158:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 115[.]159[.]50[.]67:60001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]14[.]66[.]133:9090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]230[.]203[.]74:8011
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Attackers impersonate CircleCI platform to compromise GitHub accounts
Threat actors target GitHub users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. GitHub...
OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death
OpIran: Anonymous launched Operation Iran against Teheran due to the ongoing crackdown on dissent after Mahsa Amini’s death. Anonymous launched...
PSAsyncShell – PowerShell Asynchronous TCP Reverse Shell
PSAsyncShell is an Asynchronous TCP Reverse Shell written in pure PowerShell.Unlike other reverse shells, all the communication and execution flow...
Security Affairs newsletter Round 385
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Cobalt Stike Beacon Detected – 123[.]56[.]97[.]237:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
