Nation-state actors are exploiting Zoho zero-day CVE-2021-44515 since October, FBI warns
The FBI warns that zero-day flaw in Zoho’s ManageEngine Desktop Central has been under active exploitation by nation-state actors since October. The Federal...
Month: December 2021
Mariana Trench – Security Focused Static Analysis Tool For Android And Java Applications
Mariana Trench is a security focused The issue tells you that Mariana Trench found a remote code execution in MainActivity.onCreate...
Everything you always wanted to know about NFTs (but were too afraid to ask): Lock and Code S02E24
In August, the NFT for a cartoon rock sold for $1.3 million, and ever since then, much of the world...
Belgian defense ministry hit by cyberattack exploiting Log4Shell bug
The Belgian defense ministry was hit by a cyber attack, it seems that threat actors exploited the Log4Shell vulnerability. The...
Alleged APT implanted a backdoor in the network of a US federal agency
An alleged APT group planted a backdoor in the network of a U.S. federal government commission associated with international rights....
CVE-2020-23545
Summary: IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ReadXPM_W+0x0000000000000531. Reference Links(if available): https://github.com/nhiephon/Research/blob/master/README.md https://www.irfanview.com/plugins.htm https://github.com/nhiephon/Research/blob/master/Irfanview/0x0000000000000531.MD CVSS Score...
CVE-2021-44657
Summary: In StackStorm versions prior to 3.6.0, the jinja interpreter was not run in sandbox mode and thus allows execution...
CVE-2021-41065
Summary: An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary.listaryService named pipe and wait for...
CVE-2021-0955
Summary: In pf_write_buf of FuseDaemon.cpp, there is possible memory corruption due to a race condition. This could lead to local...
CVE-2021-0954
Summary: In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local...
Protemps – 49,591 breached accounts
In October 2021, the Singaporean recruitment website Protemps suffered a data breach that exposed almost 50,000 unique email addresses. The...
When a deepfake “empire” continues to grow
I’ve been quite vocal on the impact of deepfakes, in terms of where the most harm takes place. Back in...
Cobalt Stike Beacon Detected – 34[.]92[.]36[.]80:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]222[.]56:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]212[.]48[.]22:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
log4j-scan – A fully automated, accurate, and extensive scanner for finding vulnerable log4j hosts
A fully automated, accurate, and extensive scanner for finding DescriptionWe have been researching the Log4J RCE (CVE-2021-44228) since it was...
Cobalt Stike Beacon Detected – 101[.]32[.]218[.]246:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 13[.]211[.]148[.]133:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]102[.]34[.]44:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]102[.]52[.]164:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 46[.]101[.]116[.]102:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]110[.]242:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]145[.]6[.]5:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]55[.]169[.]69:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
