Sliver C2 Detected – 156[.]245[.]19[.]127:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Month: February 2024
CISA: Microsoft Releases Security Updates for Multiple Products
Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
HackerOne Bug Bounty Disclosure: cve-exploitation-using-scripts-loader-azanul
Company Name: Publitas Company HackerOne URL: https://hackerone.com/publitas Submitted By:azanulLink to Submitters Profile:https://hackerone.com/azanul Report Title:CVE-2018-6389 exploitation - using scripts loaderReport Link:https://hackerone.com/reports/2334446Date...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on February 13, 2024. These...
CISA: ISC Releases Security Advisories for BIND 9
ISC Releases Security Advisories for BIND 9 The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple...
Pikabot Distributed Via Malicious Ads
During this past year, we have seen an increase in the use of malicious ads (malvertising) and specifically those via...
Atomic Stealer Rings In The New Year With Updated Version
Last year, we documented malware distribution campaigns both via malvertising and compromised sites delivering Atomic Stealer (AMOS) onto Mac users....
Ransomware Review January 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
New Metastealer Malvertising Campaigns
MetaStealer is a popular piece of malware that came out in 2022, levering previous code base from RedLine. Stealers have...
Ransomware In 2023 Recap 5 Key Takeaways
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
2024 State Of Ransomware In Education 92 Spike In K 12 Attacks
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Malicious Ads For Restricted Messaging Applications Target Chinese Users
An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram...
Nitrogen Shelling Malware From Hacked Sites
Nitrogen is the name given to a campaign and associated malware that have been distributed via malicious search ads. Its...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Sliver C2 Detected – 104[.]237[.]233[.]114:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 45[.]95[.]187[.]235:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 135[.]181[.]25[.]255:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 23[.]254[.]204[.]15:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Akira Ransomware Victim: Sanok Rubber Company Spólka Akcyjna
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Allegra uploadSimpleFile directory traversal |
NAME__________Allegra uploadSimpleFile directory traversalPlatforms Affected:Allegra Allegra 7.5.0 Allegra Allegra 7.4.9Risk Level:7.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Allegra could allow a remote authenticated attacker to...
IBM Integration Bus for z/OS denial of service | CVE-2024-22332
NAME__________IBM Integration Bus for z/OS denial of servicePlatforms Affected:IBM Integration Bus for z/OS 10.1 IBM Integration Bus for z/OS 10.1.0.2Risk...
Fortinet FortiAnalyzer, FortiAnalyzer-BigData, and FortiManager information disclosure | CVE-2023-44253
NAME__________Fortinet FortiAnalyzer, FortiAnalyzer-BigData, and FortiManager information disclosurePlatforms Affected:Fortinet FortiAnalyzer-BigData 7.2.0 Fortinet FortiAnalyzer-BigData 7.2.5 Fortinet FortiAnalyzer-BigData 7.0 Fortinet FortiAnalyzer-BigData 6.4 Fortinet...
Hotel Management System SQL injection | CVE-2024-25318
NAME__________Hotel Management System SQL injectionPlatforms Affected:Source Code and Projects Hotel Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Hotel Management System is vulnerable...
