CISA: CNMF Discloses Malware in Ukraine
CNMF Discloses Malware in Ukraine U.S. Cyber Command’s Cyber National Mission Force (CNMF), in close coordination with the Security Service...
Month: July 2022
CISA: Drupal Releases Security Update
Drupal Releases Security Update Drupal has released security updates to address vulnerabilities affecting Drupal 9.3 and 9.4. An attacker could...
Lightning Framework, a previously undetected malware that targets Linux systems
Researchers discovered a previously undetected malware dubbed ‘Lightning Framework’ that targets Linux systems. Researchers from Intezer discovered a previously undetected...
Black Basta Ransomware Victim: CREMO
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Atlassian patched a critical Confluence vulnerability
Atlassian released security updates to address a critical security vulnerability affecting Confluence Server and Confluence Data Center. Atlassian released security updates...
CISA: Oracle Releases July 2022 Critical Patch Update
Oracle Releases July 2022 Critical Patch Update Oracle has released its Critical Patch Update for July 2022 to address 349...
RESim – Reverse Engineering Software Using A Full System Simulator
Reverse engineering using a full system simulator. Dynamic analysis by instrumenting simulated hardware using Simics Trace process trees, system calls...
Cobalt Stike Beacon Detected – 182[.]92[.]238[.]128:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]132[.]59[.]103:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 20[.]121[.]131[.]107:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Facebook gets round tracking privacy measure by encrypting links
A form of individual tracking specific to your web browser is at the heart of a currently contested privacy battle,...
Ring shares data with police without consent (but it’s in good faith), says Amazon
Ring, the Amazon-owned company behind the popular smart doorbells, has admitted to giving doorbell data to law enforcement willy-nilly. All...
Apple fixes multiple flaws in iOS, iPadOS, macOS, tvOS, and watchOS devices
Apple released security updates to address multiple vulnerabilities that affect iOS, iPadOS, macOS, tvOS, and watchOS devices. Apple released security...
Vulnerabilities in GPS tracker could have “life-threatening” implications
Researchers at BitSight have discovered six vulnerabilities in the MiCODUS MV720 GPS tracker, a popular vehicle tracking device. The vulnerabilities are...
Another ransomware payment recovered by the Justice Department
The Justice Department today announced a complaint filed in the District of Kansas to forfeit cryptocurrency paid as ransom to...
8220 Gang Cloud Botnet infected 30,000 host globally
The crimeware group known as 8220 Gang expanded over the last month their Cloud Botnet to roughly 30,000 hosts globally. ...
Oracle ZFS Storage Appliance Kit unspecified | CVE-2022-21513
NAME Oracle ZFS Storage Appliance Kit unspecified Platforms Affected:Oracle Sun ZFS Storage Appliance Kit 8.8Risk Level:8.2Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability...
Node.js sushiswap-analytics module code execution |
NAME Node.js sushiswap-analytics module code execution Platforms Affected:Node.js sushiswap-analyticsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js sushiswap-analytics module could allow a remote attacker...
Node.js pancakeswap-v2-subgraph module code execution |
NAME Node.js pancakeswap-v2-subgraph module code execution Platforms Affected:Node.js pancakeswap-v2-subgraphRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pancakeswap-v2-subgraph module could allow a remote attacker...
Node.js nodebb-theme-opera module code execution |
NAME Node.js nodebb-theme-opera module code execution Platforms Affected:Node.js nodebb-theme-operaRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js nodebb-theme-opera module could allow a remote attacker...
Oracle Database Server unspecified | CVE-2022-21510
NAME Oracle Database Server unspecified Platforms Affected:Oracle Database ServerRisk Level:8.8Exploitability:UnprovenConsequences:Other DESCRIPTION An unspecified vulnerability in Oracle Database Server related to...
Sourcecodester Garage Management System SQL injection | CVE-2022-2467
NAME Sourcecodester Garage Management System SQL injection Platforms Affected:Sourcecodester Garage Management System 1.0Risk Level:7.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION Sourcecodester Garage Management System...
Oracle PeopleSoft Enterprise PeopleTools unspecified | CVE-2022-21543
NAME Oracle PeopleSoft Enterprise PeopleTools unspecified Platforms Affected:Oracle PeopleSoft Enterprise PeopleTools 8.58 Oracle PeopleSoft Enterprise PeopleTools 8.59Risk Level:9.8Exploitability:UnprovenConsequences:Other DESCRIPTION An...
Node.js anyswap-rewards module code execution |
NAME Node.js anyswap-rewards module code execution Platforms Affected:Node.js anyswap-rewardsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js anyswap-rewards module could allow a remote attacker...
