US govt offers $10 million bounty for info on Clop ransomware
The U.S. State Department's Rewards for Justice program announced up to a $10 million bounty yesterday for information linking the...
threatintel
SMS delivery reports can be used to infer recipient’s location
A team of university researchers has devised a new side-channel attack named 'Freaky Leaky SMS,' which relies on the timing...
CISA: CISA and NSA Release Joint Guidance on Hardening Baseboard Management Controllers (BMCs)
CISA and NSA Release Joint Guidance on Hardening Baseboard Management Controllers (BMCs) Today, CISA, together with the National Security Agency...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on June 13, 2023. These...
CISA: CISA Issues BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces
CISA Issues BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces Today, CISA issued Binding Operational Directive (BOD) 23-02: Mitigating...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. An...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Barracuda Networks Releases Update to Address ESG Vulnerability
Barracuda Networks Releases Update to Address ESG Vulnerability Barracuda Networks has released an update to their advisory(link is external) addressing...
CISA: CISA and Partners Release Joint Advisory on Understanding Ransomware Threat Actors: LockBit
CISA and Partners Release Joint Advisory on Understanding Ransomware Threat Actors: LockBit Today, CISA, the Federal Bureau of Investigation (FBI),...
CISA: CISA Releases Fourteen Industrial Control Systems Advisories
CISA Releases Fourteen Industrial Control Systems Advisories CISA released fourteen Industrial Control Systems (ICS) advisories on June 15, 2023. These...
CISA: Progress Software Releases Security Advisory for MOVEit Transfer Vulnerability
Progress Software Releases Security Advisory for MOVEit Transfer Vulnerability Progress Software has released a security advisory(link is external) for a...
CISA: CISA, FBI, and MS-ISAC Update Joint CSA on Progress Telerik Vulnerabilities
CISA, FBI, and MS-ISAC Update Joint CSA on Progress Telerik Vulnerabilities Today, CISA, the Federal Bureau of Investigation (FBI), and...
Cobalt Stike Beacon Detected – 43[.]143[.]246[.]164:1111
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]54[.]120:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]238[.]203[.]11:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]220[.]210[.]41:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]27[.]14[.]245:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]60[.]74[.]61:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of June 5, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Firefly – Black Box Fuzzer For Web Applications
Firefly is an advanced black-box fuzzer and not just a standard asset discovery tool. Firefly provides the advantage of testing...
Malware Analysis – – aa50eeda9cc63c13cebfa138b2bdd626
Score: 7 MALWARE FAMILY: TAGS:MD5: aa50eeda9cc63c13cebfa138b2bdd626SHA1: 87c6e1f7726adfe88337f20acd2ff793cd22e346ANALYSIS DATE: 2023-06-17T16:16:52ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – discovery – 0c07a2e27d8ebbb10fd908f60a9a20d4
Score: 9 MALWARE FAMILY: discoveryTAGS:discovery, evasion, persistence, ransomwareMD5: 0c07a2e27d8ebbb10fd908f60a9a20d4SHA1: 863d0d533e3b5d6987a3d955a8894f2f26113bf3ANALYSIS DATE: 2023-06-17T15:46:05ZTTPS: T1490, T1112, T1060, T1222, T1082, T1059, T1012, T1120,...
Malware Analysis – ransomware – d0208c5f0aa7b445f4d3698824ccb935
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: d0208c5f0aa7b445f4d3698824ccb935SHA1: 4bdb2ec4f176a5795eb03986d6383f6379139232ANALYSIS DATE: 2023-06-17T15:31:26ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – djvu – 14ea6ebc268d3c0b4009c8fe985ec39c
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:a129a8292a021d62796bfced1018aa1f, discovery, persistence, ransomware, spyware, stealerMD5: 14ea6ebc268d3c0b4009c8fe985ec39cSHA1: 4d15b169d907fad53b1066a66595fdddc25bd0f6ANALYSIS DATE: 2023-06-17T16:51:02ZTTPS: T1005, T1081, T1012, T1082,...
