PikaBot C2 Detected – 129[.]153[.]22[.]231:32999
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
Month: June 2023
PikaBot C2 Detected – 129[.]213[.]54[.]49:2078
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
CISA: CISA Warns of Hurricane/Typhoon-Related Scams
CISA Warns of Hurricane/Typhoon-Related Scams CISA urges users to remain on alert for malicious cyber activity following a natural disaster...
CISA: CISA and Partners Release Cybersecurity Advisory Guidance detailing PRC state-sponsored actors evading detection by “Living off the Land”
CISA and Partners Release Cybersecurity Advisory Guidance detailing PRC state-sponsored actors evading detection by “Living off the Land” Today, CISA...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 30, 2023. These...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 25, 2023. This...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on June 1, 2023. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Progress Software Releases Security Advisory for MOVEit Transfer
Progress Software Releases Security Advisory for MOVEit Transfer Progress Software has released a security advisory(link is external) for a SQL injection...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
US-CERT Vulnerability Summary for the Week of May 22, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of...
DCVC2 – A Golang Discord C2 Unlike Any Other
This multi operating system compatible tool was created to leverage Discord's voice channels for command and control operations. This tool...
Dell Secure Connect Gateway information disclosure | CVE-2023-28043
NAME__________Dell Secure Connect Gateway information disclosurePlatforms Affected:Dell Secure Connect Gateway 5.14.00.16Risk Level:6.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Dell Secure Connect Gateway could allow a...
Kramer VIA GO² file upload | CVE-2023-33508
NAME__________Kramer VIA GO² file uploadPlatforms Affected:Kramer VIA GO² 3.8.0Risk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Kramer VIA GO² could allow a remote attacker to...
Dell OS Recovery Tool privilege escalation | CVE-2023-28066
NAME__________Dell OS Recovery Tool privilege escalationPlatforms Affected:Dell OS Recovery Tool 2.2.4013 Dell OS Recovery Tool 2.3.7012.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Dell OS...
Kramer VIA GO² SQL injection | CVE-2023-33509
NAME__________Kramer VIA GO² SQL injectionPlatforms Affected:Kramer VIA GO² 3.8.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Kramer VIA GO² is vulnerable to SQL injection. A...
Atlassian Inline Table Editing application for Confluence cross-site scripting | CVE-2023-33287
NAME__________Atlassian Inline Table Editing application for Confluence cross-site scriptingPlatforms Affected:Atlassian Inline Table Editing application for ConfluenceRisk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Atlassian Inline...
Kramer VIA GO² file disclosure | CVE-2023-33507
NAME__________Kramer VIA GO² file disclosurePlatforms Affected:Kramer VIA GO² 3.8.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Kramer VIA GO² could allow a remote attacker to...
IBM Maximo Application Suite information disclosure | CVE-2023-27861
NAME__________IBM Maximo Application Suite information disclosurePlatforms Affected:IBM Maximo Application Suite 8.8.0 IBM Maximo Application Suite 8.9.0Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Maximo...
Mitsubishi Electric MELSEC iQ-R default account | CVE-2023-2061
NAME__________Mitsubishi Electric MELSEC iQ-R default accountPlatforms Affected:Mitsubishi Electric MELSEC iQ-F iQ-R SeriesRisk Level:6.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mitsubishi Electric MELSEC iQ-R contains default...
Mitsubishi Electric MELSEC iQ-R information disclosure | CVE-2023-2060
NAME__________Mitsubishi Electric MELSEC iQ-R information disclosurePlatforms Affected:Mitsubishi Electric MELSEC iQ-F iQ-R SeriesRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mitsubishi Electric MELSEC iQ-R could allow...
IBM Maximo Asset Management information disclosure | CVE-2023-32334
NAME__________IBM Maximo Asset Management information disclosurePlatforms Affected:IBM Maximo Asset Management 7.6.1.2 IBM Maximo Asset Management 7.6.1.3 IBM Maximo Application Suite...
