Kaspersky releases a free decryptor for Yanluowang ransomware
Kaspersky discovered a flaw in the encryption process of the Yanluowang ransomware that allows victims to recover their files for...
Year: 2022
ADReaper – A Fast Enumeration Tool For Windows Active Directory Pentesting Written In Go
ADReaper is a tool written in Golang which enumerate a Active Directory environment with LDAP queries within few seconds. Installation...
LockBit 2.0 Ransomware Victim: reitzner[.]de
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: ssi-steel[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: groupe-corbat[.]ch
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: procab[.]se
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: noll-law[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: daumar[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: keisei-const[.]jp
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: jannone[.]it
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
NSO Group Pegasus spyware leverages new zero-click iPhone exploit in recent attacks
Researchers reported that threat actors leveraged a new zero-click iMessage exploit to install NSO Group Pegasus on iPhones belonging to Catalans....
Cobalt Stike Beacon Detected – 119[.]3[.]130[.]178:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 65[.]21[.]166[.]162:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 89[.]45[.]4[.]99:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 108[.]61[.]86[.]204:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 78[.]129[.]165[.]232:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 149[.]56[.]6[.]0:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]101[.]194[.]61:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 141[.]98[.]80[.]175:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]94[.]40[.]58:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
VMware security advisory-CVE-2022-22960
NAME VMware - Multiple Platforms Affected:MultipleRisk Level:mediumCVE Type:Privilege escalation DESCRIPTION CVE-2022-22960 is a privilege escalation vulnerability impacting multiple versions of...
CachetHQ Cachet version 2.5.1-CVE-2021-39173
NAME CachetHQ - Cachet Platforms Affected:CachetRisk Level:lowCVE Type:Unspecified DESCRIPTION CVE-2021-39173 is an unspecified vulnerability impacting CachetHQ Cachet versions 2.5.0 and...
Bitrix restore.php file upload | CVE-2022-29268
NAME Bitrix restore.php file upload Platforms Affected:Bitrix Bitrix 7.5.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Bitrix could allow a remote attacker to upload...
CENTUM VP products command execution | CVE-2022-27188
NAME CENTUM VP products command execution Platforms Affected:Yokogawa Electric Corporation CENTUM VP 4.01.00 Yokogawa Electric Corporation CENTUM VP Small 4.01.00...
