threatintel

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 21, 2023

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...

CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS

August 21, 2023

Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...

Cuba ransomware uses Veeam exploit against critical U.S. organizations

August 21, 2023

Image: Midjourney The Cuba ransomware gang was observed in attacks targeting critical infrastructure organizations in the United States and IT...

US-CERT Vulnerability Summary for the Week of August 7, 2023

August 20, 2023

High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info phoenixcontact -- wp_6xxx_series In PHOENIX CONTACTs WP 6xxx series web panels...

e6508a429ffe72480808bbb90c68ac03618bb6b23641e9a10f68386e4e4f2513

HEDnsExtractor – Raw Html Extractor From Hurricane Electric Portal

August 20, 2023

HEDnsExtractor Raw html extractor from Hurricane Electric portal Features Automatically identify IPAddr ou Networks through command line parameter or stdin...

Medusa Locker Ransomware Victim: Novi Pazar put ad

August 20, 2023

Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Medusa Locker Ransomware Victim: Sartrouville France

August 20, 2023

Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Medusa Locker Ransomware Victim: The International Civil Defense Organization

August 20, 2023

Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

Rust devs push back as Serde project ships precompiled binaries

August 20, 2023

Serde, a popular Rust (de)serialization project, has decided to ship its serde_derive macro as a precompiled binary. The move has generated a fair...

Hackers use VPN provider’s code certificate to sign malware

August 20, 2023

The China-aligned APT (advanced persistent threat) group known as 'Bronze Starlight' was seen targeting the Southeast Asian gambling industry with...

CISA: CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan

August 20, 2023

CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan Today, CISA released the Remote Monitoring and Management (RMM)...

CISA: CISA Releases Two Industrial Control Systems Advisories

August 20, 2023

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 8, 2023. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 20, 2023

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...

CISA: CISA Releases Twelve Industrial Control Systems Advisories

August 20, 2023

CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on August 10, 2023. These...

CISA: CISA Releases Two Industrial Control Systems Advisories

August 20, 2023

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 15, 2023. These...

CISA: Cisco Releases Security Advisories for Multiple Products

August 20, 2023

Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A cyber...

CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS

August 20, 2023

Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 20, 2023

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...

CISA: Atlassian Releases Security Update for Confluence Server and Data Center

August 20, 2023

Atlassian Releases Security Update for Confluence Server and Data Center Atlassian has released its security bulletin for August 2023 to...

CISA: CISA Releases Three Industrial Control Systems Advisories

August 20, 2023

CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on August 17, 2023. These...

US-CERT Vulnerability Summary for the Week of August 7, 2023

August 19, 2023

High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info phoenixcontact -- wp_6xxx_series In PHOENIX CONTACTs WP 6xxx series web panels...

Xsubfind3R – A CLI Utility To Find Domain’S Known Subdomains From Curated Passive Online Sources

August 19, 2023

xsubfind3r is a command-line interface (CLI) utility to find domain's known subdomains from curated passive online sources. Features Fetches domains...

WoofLocker Toolkit Hides Malicious Codes in Images to Run Tech Support Scams

August 19, 2023

Cybersecurity researchers have detailed an updated version of an advanced fingerprinting and redirection toolkit called WoofLocker that's engineered to conduct...

Thousands of Android Malware Apps Using Stealthy APK Compression to Evade Detection

August 19, 2023

Threat actors are using Android Package (APK) files with unknown or unsupported compression methods to elude malware analysis. That's according...

threatintel

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS

Cuba ransomware uses Veeam exploit against critical U.S. organizations

US-CERT Vulnerability Summary for the Week of August 7, 2023

HEDnsExtractor – Raw Html Extractor From Hurricane Electric Portal

Medusa Locker Ransomware Victim: Novi Pazar put ad

Medusa Locker Ransomware Victim: Sartrouville France

Medusa Locker Ransomware Victim: The International Civil Defense Organization

Rust devs push back as Serde project ships precompiled binaries

Hackers use VPN provider’s code certificate to sign malware

CISA: CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan

CISA: CISA Releases Two Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Twelve Industrial Control Systems Advisories

CISA: CISA Releases Two Industrial Control Systems Advisories

CISA: Cisco Releases Security Advisories for Multiple Products

CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Atlassian Releases Security Update for Confluence Server and Data Center

CISA: CISA Releases Three Industrial Control Systems Advisories

US-CERT Vulnerability Summary for the Week of August 7, 2023

Xsubfind3R – A CLI Utility To Find Domain’S Known Subdomains From Curated Passive Online Sources

WoofLocker Toolkit Hides Malicious Codes in Images to Run Tech Support Scams

Thousands of Android Malware Apps Using Stealthy APK Compression to Evade Detection

Cobalt Strike Beacon Detected – 49[.]233[.]32[.]31:9443

Cobalt Strike Beacon Detected – 103[.]171[.]35[.]26:9443

Cobalt Strike Beacon Detected – 45[.]141[.]233[.]66:8080

Cobalt Strike Beacon Detected – 8[.]216[.]80[.]229:9443

Cobalt Strike Beacon Detected – 193[.]112[.]83[.]36:8080

You may have missed