Month: December 2023

Ukrainian Military Says It Hacked Russias Federal Tax Agency

December 14, 2023

The Ukrainian government's military intelligence service says it hacked the Russian Federal Taxation Service (FNS), wiping the agency's database and...

Cisa Russian Hackers Target Teamcity Servers Since September

December 14, 2023

CISA and partner cybersecurity agencies and intelligence services warned that the APT29 hacking group linked to Russia's Foreign Intelligence Service (SVR)...

Microsoft December 2023 Patch Tuesday Fixes 34 Flaws 1 Zero Day

December 14, 2023

Today is Microsoft's December 2023 Patch Tuesday, which includes security updates for a total of 34 flaws and one previously disclosed,...

Stealthy Kv Botnet Hijacks Soho Routers And Vpn Devices

December 14, 2023

The Chinese state-sponsored APT hacking group known as Volt Typhoon (Bronze Silhouette) has been linked to a sophisticated botnet named...

Lockbit Ransomware Now Poaching Blackcat Noescape Affiliates

December 14, 2023

The LockBit ransomware operation is now recruiting affiliates and developers from the BlackCat/ALPHV and NoEscape after recent disruptions and exit...

French Police Arrests Russian Suspect Linked To Hive Ransomware

December 14, 2023

French authorities arrested a Russian national in Paris for allegedly helping the Hive ransomware gang with laundering their victims' ransom...

Bazarcall Attacks Abuse Google Forms To Legitimize Phishing Emails

December 14, 2023

A new wave of BazarCall attacks uses Google Forms to generate and send payment receipts to victims, attempting to make...

Microsoft Seizes Domains Used To Sell Fraudulent Outlook Accounts

December 14, 2023

Microsoft's Digital Crimes Unit seized multiple domains used by a Vietnam-based cybercrime group (Storm-1152) that registered over 750 million fraudulent...

Microsoft Takes Legal Action to Crack Down on Storm-1152’s Cybercrime Network

December 14, 2023

Microsoft on Wednesday said it obtained a court order to seize infrastructure set up by a group called Storm-1152 that...

Russian SVR-Linked APT29 Targets JetBrains TeamCity Servers in Ongoing Attacks

December 14, 2023

Threat actors affiliated with the Russian Foreign Intelligence Service (SVR) have targeted unpatched JetBrains TeamCity servers in widespread attacks since...

Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders

December 14, 2023

The Iranian state-sponsored threat actor known as OilRig deployed three different downloader malware throughout 2022 to maintain persistent access to...

Siemens User Management Component denial of service | CVE-2023-46285

December 14, 2023

NAME__________Siemens User Management Component denial of servicePlatforms Affected:Siemens TIA Portal 14 Siemens TIA Portal 16 Siemens Opcenter Quality Siemens SINUMERIK...

Fortinet FortiADC information disclosure | CVE-2023-41673

December 14, 2023

NAME__________Fortinet FortiADC information disclosurePlatforms Affected:Fortinet FortiADC 7.0.2 Fortinet FortiADC 7.0.0 Fortinet FortiADC 6.2.4 Fortinet FortiADC 7.1.0Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Fortinet FortiADC...

IBM System Storage Virtualization Engine information disclosure | CVE-2023-49877

December 14, 2023

NAME__________IBM System Storage Virtualization Engine information disclosurePlatforms Affected:IBM Virtualization Engine TS7700 3957-VEC 8.52.103.23 IBM Virtualization Engine TS7700 3957-VED 8.52.103.23 IBM...

IBM Spectrum Scale information disclosure | CVE-2022-43843

December 14, 2023

NAME__________IBM Spectrum Scale information disclosurePlatforms Affected:IBM Spectrum Scale 5.1.5.1 IBM Spectrum Scale 5.1.5.0Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Spectrum Scale 5.1.5.0 through...

GaatiTrack Courier Management System cross-site scripting | CVE-2023-48206

December 14, 2023

NAME__________GaatiTrack Courier Management System cross-site scriptingPlatforms Affected:GaatiTrack Courier Management System 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________GaatiTrack Courier Management System is vulnerable to...

Xen Server information disclosure | CVE-2023-46837

December 14, 2023

NAME__________Xen Server information disclosurePlatforms Affected:Xensource Xen 4.16 XenSource Xen 4.17Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Xen Server could allow a local authenticated attacker...

IBM System Storage Virtualization Engine | CVE-2023-49878

December 14, 2023

NAME__________IBM System Storage Virtualization EnginePlatforms Affected:IBM Virtualization Engine TS7700 3957-VEC 8.52.103.23 IBM Virtualization Engine TS7700 3957-VED 8.52.103.23 IBM Virtualization Engine...

Fortinet FortiOS and Fortinet FortiProxy security bypass | CVE-2023-47536

December 14, 2023

NAME__________Fortinet FortiOS and Fortinet FortiProxy security bypassPlatforms Affected:Fortinet FortiOS 6.0.0 Fortinet FortiOS 6.2.0 Fortinet FortiOS 6.4.0 Fortinet FortiProxy 2.0.0 Fortinet...

Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows privilege escalation | CVE-2023-43586

December 14, 2023

NAME__________Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows privilege escalationPlatforms Affected:Zoom VDI Client...

Siemens SINEC INS denial of service | CVE-2023-48430

December 14, 2023

NAME__________Siemens SINEC INS denial of servicePlatforms Affected:Siemens SINEC INS 1.0 SP2 Siemens SINEC INS 1.0Risk Level:2.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Siemens SINEC...

Adobe Experience Manager cross-site scripting | CVE-2023-48452

December 14, 2023

NAME__________Adobe Experience Manager cross-site scriptingPlatforms Affected:Adobe Experience Manager Cloud Service (CS) Adobe Experience Manager 6.5.18.0Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Adobe Experience Manager...

Siemens SINEC INS denial of service | CVE-2023-48429

December 14, 2023

Siemens User Management Component security bypass | CVE-2023-46281

December 14, 2023

NAME__________Siemens User Management Component security bypassPlatforms Affected:Siemens TIA Portal 14 Siemens TIA Portal 16 Siemens Opcenter Quality Siemens SINUMERIK Integrate...

Month: December 2023

Ukrainian Military Says It Hacked Russias Federal Tax Agency

Cisa Russian Hackers Target Teamcity Servers Since September

Microsoft December 2023 Patch Tuesday Fixes 34 Flaws 1 Zero Day

Stealthy Kv Botnet Hijacks Soho Routers And Vpn Devices

Lockbit Ransomware Now Poaching Blackcat Noescape Affiliates

French Police Arrests Russian Suspect Linked To Hive Ransomware

Bazarcall Attacks Abuse Google Forms To Legitimize Phishing Emails

Microsoft Seizes Domains Used To Sell Fraudulent Outlook Accounts

Microsoft Takes Legal Action to Crack Down on Storm-1152’s Cybercrime Network

Russian SVR-Linked APT29 Targets JetBrains TeamCity Servers in Ongoing Attacks

Iranian State-Sponsored OilRig Group Deploys 3 New Malware Downloaders

Siemens User Management Component denial of service | CVE-2023-46285

Fortinet FortiADC information disclosure | CVE-2023-41673

IBM System Storage Virtualization Engine information disclosure | CVE-2023-49877

IBM Spectrum Scale information disclosure | CVE-2022-43843

GaatiTrack Courier Management System cross-site scripting | CVE-2023-48206

Xen Server information disclosure | CVE-2023-46837

IBM System Storage Virtualization Engine | CVE-2023-49878

Fortinet FortiOS and Fortinet FortiProxy security bypass | CVE-2023-47536

Zoom Desktop Client for Windows, Zoom VDI Client for Windows and Zoom SDKs for Windows privilege escalation | CVE-2023-43586

Siemens SINEC INS denial of service | CVE-2023-48430

Adobe Experience Manager cross-site scripting | CVE-2023-48452

Siemens SINEC INS denial of service | CVE-2023-48429

Siemens User Management Component security bypass | CVE-2023-46281

[KILLSEC] – Ransomware Victim: Terra Energy

[KILLSEC] – Ransomware Victim: Equentis Wealth

VMWare Products Multiple Vulnerabilities

Palo Alto PAN-OS Multiple vulnerabilities

UK Shoppers Warned: Over £11.5m Lost to Scammers Last Christmas

You may have missed