Cobalt Stike Beacon Detected – 172[.]86[.]75[.]75:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: May 2023
Cobalt Stike Beacon Detected – 107[.]173[.]157[.]243:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]234[.]22[.]80:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 192[.]3[.]134[.]141:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 35[.]173[.]78[.]238:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]169[.]175[.]195:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]43[.]165[.]220:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]160[.]11[.]134:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]238[.]181[.]242:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
D-Link DIR-2640 security bypass | CVE-2023-32148
NAME__________D-Link DIR-2640 security bypassPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________D-Link DIR-2640 could allow a remote attacker to bypass security restrictions,...
D-Link DIR-2640 code execution | CVE-2023-32153
NAME__________D-Link DIR-2640 code executionPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-2640 could allow a remote authenticated attacker to execute arbitrary...
WordPress Jobs Plugin for WordPress cross-site scripting | CVE-2023-26017
NAME__________WordPress Jobs Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WordPress Jobs Plugin for WordPress 2.5.10.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________WordPress Jobs Plugin for...
D-Link DIR-2640 code execution | CVE-2023-32151
NAME__________D-Link DIR-2640 code executionPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-2640 could allow a remote authenticated attacker to execute arbitrary...
D-Link DIR-2640 code execution | CVE-2023-32150
NAME__________D-Link DIR-2640 code executionPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-2640 could allow a remote authenticated attacker to execute arbitrary...
D-Link DIR-2640 security bypass | CVE-2023-32152
NAME__________D-Link DIR-2640 security bypassPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________D-Link DIR-2640 could allow a remote attacker to bypass security restrictions,...
D-Link DIR-2640 code execution | CVE-2023-32147
NAME__________D-Link DIR-2640 code executionPlatforms Affected:D-Link DIR-2640 1.11B02Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-2640 could allow a remote authenticated attacker to execute arbitrary...
CERT-UA Warns of SmokeLoader and RoarBAT Malware Attacks Against Ukraine
An ongoing phishing campaign with invoice-themed lures is being used to distribute the SmokeLoader malware in the form of a...
New Cactus ransomware encrypts itself to evade antivirus
A new ransomware operation called Cactus has been exploiting vulnerabilities in VPN appliances for initial access to networks of “large...
Meet Akira — A new ransomware operation targeting the enterprise
The new Akira ransomware operation has slowly been building a list of victims as they breach corporate networks worldwide, encrypt...
Western Digital says hackers stole customer data in March cyberattack
Western Digital has taken its store offline and sent customers data breach notifications after confirming that hackers stole sensitive personal...
New CS:GO map bypasses Russia’s censorship of Ukraine war news
Finish newspaper Helsinin Sanomat has created a custom Counter-Strike: Global Offensive (CS:GO) map explicitly made to bypass Russian news censorship...
CISA: VMware Releases Security Update for Aria Operations for Logs
VMware Releases Security Update for Aria Operations for Logs VMware has released a security update to address multiple vulnerabilities in...
CISA: CISA Releases One Industrial Control Systems Medical Advisory
CISA Releases One Industrial Control Systems Medical Advisory CISA released one Industrial Control Systems Medical (ICS) medical advisory on April...
CISA: Abuse of the Service Location Protocol May Lead to DoS Attacks
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
