Colibri Loader combines Task Scheduler and PowerShell in clever persistence technique
This blog post was authored by Ankur Saini, with contributions from Hossein Jazi and Jérôme Segura Colibri Loader is a...
Month: April 2022
Anonymous targets the Russian Military and State Television and Radio propaganda
Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details...
CISA advises D-Link users to take vulnerable routers offline
On April 42022, the Cybersecurity & Infrastructure Security Agency (CISA) added CVE-2021-45382 to its known exploited vulnerabilities catalog. But since...
DarthSidious – Building An Active Directory Domain And Hacking It
The goal is simple To share my modest knowledge about hacking Windows systems. This is commonly refered to as red...
LockBit 2.0 Ransomware Victim: scoular[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
CISA adds Spring4Shell flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the recently disclosed remote code execution (RCE) vulnerability Spring4Shell to its Known Exploited Vulnerabilities Catalog. The U.S....
Conti Ransomware Victim: https-www-panasonic-com-ca
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Cobalt Stike Beacon Detected – 42[.]194[.]184[.]127:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 85[.]175[.]101[.]203:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]149[.]84:2087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]105[.]218[.]43:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]196[.]179[.]50:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]117[.]180[.]175:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 146[.]70[.]87[.]22:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]15[.]19[.]100:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]158[.]40:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 61[.]136[.]208[.]2:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
NetApp security advisory-CVE-2021-26987
NAME NetApp - Multiple Platforms Affected:MultipleRisk Level:mediumCVE Type:Unspecified DESCRIPTION CVE-2021-26987 is an unspecified vulnerability impacting multiple versions NetApp Element Plug-in...
Trend Micro Apex Central security update-CVE-2022-26871
NAME Trend Micro - Apex Central Platforms Affected:Apex CentralRisk Level:mediumCVE Type:Unrestricted file upload DESCRIPTION CVE-2022-26871 is an unrestricted file upload...
NETGEAR devices command execution |
NAME NETGEAR devices command execution Platforms Affected:NETGEAR RBK752 NETGEAR RBR750 NETGEAR RBS750 NETGEAR RBK852 NETGEAR RBS850 NETGEAR MK62 NETGEAR MS60...
NETGEAR routers command execution |
NAME NETGEAR routers command execution Platforms Affected:NETGEAR MK62 NETGEAR MS60 NETGEAR RAX15 NETGEAR RAX20 NETGEAR RAX45 NETGEAR RAX80 NETGEAR MR60Risk...
BusyBox code execution | CVE-2022-28391
NAME BusyBox code execution Platforms Affected:Alpine BusyBox 1.35.0Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION BusyBox could allow a remote attacker to...
NETGEAR devices information disclosure |
NAME NETGEAR devices information disclosure Platforms Affected:NETGEAR D8500 NETGEAR DC112A NETGEAR R7000P NETGEAR R8500 NETGEAR EX6130 NETGEAR DGN2200v4 NETGEAR DGN2200Bv4...
GitLab cross-site scripting | CVE-2022-1190
NAME GitLab cross-site scripting Platforms Affected:GitLab GitLab 9.4.3 Enterprise GitLab GitLab 9.3.9 Enterprise GitLab GitLab 9.2.9 Enterprise GitLab GitLab 9.1.9...
