Month: August 2024

Cobalt Strike Beacon Detected – 159[.]65[.]6[.]251:80

August 28, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CISA

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

August 28, 2024

CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 28, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA

CISA: ASD’s ACSC, CISA, FBI, and NSA, with the support of International Partners Release Best Practices for Event Logging and Threat Detection

August 28, 2024

ASD’s ACSC, CISA, FBI, and NSA, with the support of International Partners Release Best Practices for Event Logging and Threat...

CISA

CISA: CISA Releases Eleven Industrial Control Systems Advisories

August 28, 2024

CISA Releases Eleven Industrial Control Systems Advisories CISA released eleven Industrial Control Systems (ICS) advisories on August 15, 2024. These...

CISA

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 28, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA

CISA: CISA Releases Five Industrial Control Systems Advisories

August 28, 2024

CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on August 22, 2024. These...

CISA

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 28, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA

CISA: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717

August 28, 2024

Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717 Versa Networks has released an advisory for a vulnerability...

CISA

CISA: CISA Adds One Known Exploited Vulnerability to Catalog for Versa Networks Director

August 28, 2024

CISA Adds One Known Exploited Vulnerability to Catalog for Versa Networks Director CISA has added one new vulnerability to its Known...

CISA

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

August 28, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA

CISA: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717

August 27, 2024

Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717 Versa Networks has released an advisory for a vulnerability...

macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users

August 27, 2024

Users of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a...

HackerOne Bug Bounty Disclosure: important-apache-http-server-ssrf-with-mod-rewrite-in-server-vhost-context-on-windows-cve-xi-o-unj-e

August 27, 2024

Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:xi4o7unj1eLink to Submitters Profile:https://hackerone.com/xi4o7unj1e Report Title:important: Apache HTTP Server: SSRF...

HackerOne Bug Bounty Disclosure: local-privilege-escalation-via-exe-hijacking-with-acronis-true-image-installer-mmg

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:mmgLink to Submitters Profile:https://hackerone.com/mmg Report Title:Local Privilege Escalation via EXE hijacking with...

HackerOne Bug Bounty Disclosure: local-privilege-escalation-via-exe-hijacking-with-acronis-true-image-acronis-scheduler-service-mmg

August 27, 2024

HackerOne Bug Bounty Disclosure: html-injection-in-swagger-ui-ehaftab

August 27, 2024

Company Name: Ionity GmbH Company HackerOne URL: https://hackerone.com/ionity_gmbh Submitted By:ehaftabLink to Submitters Profile:https://hackerone.com/ehaftab Report Title:HTML injection in swagger UIReport Link:https://hackerone.com/reports/2534300Date...

HackerOne Bug Bounty Disclosure: acronis-true-image-build-nonstop-backup-service-unquoted-service-path-privilege-escalation-sanderz

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:sanderz31Link to Submitters Profile:https://hackerone.com/sanderz31 Report Title:Acronis True Image 2020 Build 22510 Nonstop...

HackerOne Bug Bounty Disclosure: dll-hijacking-when-sending-feedback-and-crash-report-leading-to-privilege-escalation-z-ron

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:z3ron3Link to Submitters Profile:https://hackerone.com/z3ron3 Report Title:DLL Hijacking when sending feedback and crash...

HackerOne Bug Bounty Disclosure: dll-hijacking-when-creating-rescue-media-builder-leading-to-privilege-escalation-z-ron

August 27, 2024

HackerOne Bug Bounty Disclosure: trueimage-for-acronis-true-image-untrusted-dll-search-ordering-lead-to-privilege-escalation-as-administrative-account-vanitas

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:vanitasLink to Submitters Profile:https://hackerone.com/vanitas Report Title:TrueImage for Acronis True Image 2020 -...

HackerOne Bug Bounty Disclosure: arbitrary-files-and-folders-deletion-vulnerability-with-acronis-managed-machine-service-mmg

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:mmgLink to Submitters Profile:https://hackerone.com/mmg Report Title:Arbitrary Files and Folders Deletion vulnerability with...

HackerOne Bug Bounty Disclosure: local-privilege-escalation-when-updating-acronis-true-image-z-ron

August 27, 2024

HackerOne Bug Bounty Disclosure: ssrf-when-configuring-website-backup-on-acronis-cloud-mr-medi

August 27, 2024

Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:mr-mediLink to Submitters Profile:https://hackerone.com/mr-medi Report Title:SSRF when configuring Website Backup on Acronis...

Month: August 2024

Cobalt Strike Beacon Detected – 159[.]65[.]6[.]251:80

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: ASD’s ACSC, CISA, FBI, and NSA, with the support of International Partners Release Best Practices for Event Logging and Threat Detection

CISA: CISA Releases Eleven Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Five Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717

CISA: CISA Adds One Known Exploited Vulnerability to Catalog for Versa Networks Director

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717

macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users

HackerOne Bug Bounty Disclosure: important-apache-http-server-ssrf-with-mod-rewrite-in-server-vhost-context-on-windows-cve-xi-o-unj-e

HackerOne Bug Bounty Disclosure: local-privilege-escalation-via-exe-hijacking-with-acronis-true-image-installer-mmg

HackerOne Bug Bounty Disclosure: local-privilege-escalation-via-exe-hijacking-with-acronis-true-image-acronis-scheduler-service-mmg

HackerOne Bug Bounty Disclosure: html-injection-in-swagger-ui-ehaftab

HackerOne Bug Bounty Disclosure: acronis-true-image-build-nonstop-backup-service-unquoted-service-path-privilege-escalation-sanderz

HackerOne Bug Bounty Disclosure: dll-hijacking-when-sending-feedback-and-crash-report-leading-to-privilege-escalation-z-ron

HackerOne Bug Bounty Disclosure: dll-hijacking-when-creating-rescue-media-builder-leading-to-privilege-escalation-z-ron

HackerOne Bug Bounty Disclosure: trueimage-for-acronis-true-image-untrusted-dll-search-ordering-lead-to-privilege-escalation-as-administrative-account-vanitas

HackerOne Bug Bounty Disclosure: arbitrary-files-and-folders-deletion-vulnerability-with-acronis-managed-machine-service-mmg

HackerOne Bug Bounty Disclosure: local-privilege-escalation-when-updating-acronis-true-image-z-ron

HackerOne Bug Bounty Disclosure: ssrf-when-configuring-website-backup-on-acronis-cloud-mr-medi

[QILIN] – Ransomware Victim: Zimmerman & Frachtman PA Law Firm

[QILIN] – Ransomware Victim: Calvert Home Mortgage Investment

[QILIN] – Ransomware Victim: LBCO Contracting LTD

Unveiling Blockchain Security: Safeguarding the Digital Ledger

A Fifth of UK Enterprises Uncertain About NIS2 Compliance Requirements

You may have missed