CISA: VMware Releases Security Update for Aria Operations for Logs
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
Security
Cobalt Stike Beacon Detected – 119[.]91[.]148[.]9:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]66[.]32:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]154[.]29[.]198:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]48[.]62[.]218:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans
CISA Urges Organizations to Incorporate the FCC Covered List Into Risk Management Plans The Federal Communications Commission (FCC) maintains a Covered...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Requests for Comment on Secure Software Self-Attestation Form
CISA Requests for Comment on Secure Software Self-Attestation Form CISA has issued requests for comment on the Secure Software Self-Attestation...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 4, 2023.This advisory...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 2, 2023. These...
Cobalt Stike Beacon Detected – 175[.]24[.]207[.]93:9080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]26[.]48:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]255[.]45[.]211:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 118[.]24[.]216[.]113:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]247[.]9[.]220:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]202[.]169:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]101[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]46[.]190[.]21:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Teler-Waf – A Go HTTP Middleware That Provides Teler IDS Functionality To Protect Against Web-Based Attacks And Improve The Security Of Go-based Web Applications
teler-waf is a comprehensive security solution for Go-based web applications. It acts as an HTTP middleware, providing an easy-to-use interface...
Malware Analysis – amadey – 2cd1278453b56dd0a5f0fa7e6d2a7866
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 2cd1278453b56dd0a5f0fa7e6d2a7866SHA1:...
Malware Analysis – xworm – 60756214f351f2d6d1a2cb89dc9853b5
Score: 10 MALWARE FAMILY: xwormTAGS:family:xworm, persistence, ransomware, rat, trojanMD5: 60756214f351f2d6d1a2cb89dc9853b5SHA1: 8c478657c1cce1906a72526ed231083ce5a9bed1ANALYSIS DATE: 2023-05-04T15:20:25ZTTPS: T1082, T1053, T1060, T1112, T1012, T1491 ScoreMeaningExample10Known...
Malware Analysis – djvu – 2ce0cb2c47637c78cb7cd07af95d912d
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 2ce0cb2c47637c78cb7cd07af95d912dSHA1: 21c6c43aced8e765ee47043dbe1f90d9e213bf7dANALYSIS DATE: 2023-05-04T15:15:00ZTTPS: T1012, T1082, T1053, T1005,...
Malware Analysis – djvu – 65178f6a1891f152c05326a628e6fa3a
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, discovery, persistence, ransomware, spyware, stealerMD5: 65178f6a1891f152c05326a628e6fa3aSHA1: 6a9b6ab36f14db9948e988c68d1b91d733315578ANALYSIS DATE: 2023-05-04T16:10:23ZTTPS: T1012, T1082, T1060, T1112,...
Malware Analysis – amadey – 325cca727c1640e9c911a5f45fbc397b
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:smokeloader, family:vidar, botnet:31c7719b5ee962fbde376b75e771360d, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer, trojanMD5: 325cca727c1640e9c911a5f45fbc397bSHA1:...
