Vim code execution | CVE-2022-2210
NAME Vim code execution Platforms Affected:Vim Vim 8.2Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
Node.js en-conduit-electron-shared module code execution |
NAME Node.js en-conduit-electron-shared module code execution Platforms Affected:Node.js en-conduit-electron-sharedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js en-conduit-electron-shared module could allow a remote attacker...
Node.js en-thrift-internal module execution |
NAME Node.js en-thrift-internal module execution Platforms Affected:Node.js en-thrift-internalRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js en-thrift-internal module could allow a remote attacker to...
Mozilla Firefox code execution | CVE-2022-34484
NAME Mozilla Firefox code execution Platforms Affected:Mozilla Firefox 101 Mozilla Firefox ESR 91.10 Mozilla Thunderbird 101 Mozilla Thunderbird 91.10Risk Level:8.8Exploitability:UnprovenConsequences:Gain...
HackerOne Bug Bounty Disclosure: xss-payload-on-tiktok-seller-center-endpointbyaidilarf_2000
Programme HackerOne TikTok TikTok Submitted by aidilarf_2000 aidilarf_2000 Report XSS Payload on TikTok Seller Center endpoint Full Report A considerable...
Nimc2 – A C2 Fully Written In Nim
nimc2 is a very lightweight C2 written fully in nim (implant & server). If you want to give it a...
Daily Vulnerability Trends: Wed Jun 29 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-21445Vulnerability in the Oracle JDeveloper product of Oracle Fusion Middleware (component: ADF...
LockBit 2.0 Ransomware Victim: oak-brook[.]org
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 1[.]117[.]139[.]47:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]99[.]74:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]224[.]198[.]190:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]32[.]94[.]157:2095
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 74[.]119[.]194[.]188:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]158[.]23[.]53:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 190[.]123[.]44[.]223:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 178[.]128[.]106[.]68:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]140[.]37[.]238:9091
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
NON-STATE ACTORS IN THE CYBERSPACE: AN ATTEMPT TO A TAXONOMIC CLASSIFICATION, ROLE, IMPACT AND RELATIONS WITH A STATE’S SOCIOECONOMIC STRUCTURE
This paper provides a taxonomic classification of non-state actors in the cyberspace, analyzing their role and impact on a state’s...
Log4Shell Vulnerability in VMware Leads to Data Exfiltration and Ransomware
We analyzed cases of a Log4Shell vulnerability being exploited in certain versions of the software VMware Horizon. Many of these...
CISA: CISA Releases Guidance on Switching to Modern Auth in Exchange Online before October 1
CISA Releases Guidance on Switching to Modern Auth in Exchange Online before October 1 CISA has released guidance on switching...
LockBit 2.0 Ransomware Victim: datalit[.]it
LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
CISA: 2022 CWE Top 25 Most Dangerous Software Weaknesses
2022 CWE Top 25 Most Dangerous Software Weaknesses The Homeland Security Systems Engineering and Development Institute, sponsored by CISA and...
LockBit 3.0 introduces important novelties, including a bug bounty program
The LockBit ransomware operators released LockBit 3.0 with important novelties, including a bug bounty program and Zcash payments. The Lockbit...
secureCodeBox (SCB) – Continuous Secure Delivery Out Of The Box
secureCodeBox is a kubernetes based, modularized toolchain for continuous security scans of your software project. Its goal is to orchestrate...
