Cobalt Stike Beacon Detected – 31[.]7[.]62[.]16:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]176[.]17:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Apple fixed the first two zero-day vulnerabilities of 2022
Apple released security updates to fix two zero-day flaws, one of them actively exploited to hack iPhones and Macs. Apple...
New DazzleSpy malware attacks macOS
DazzleSpy, a piece of malware that attacks macOS, was discovered last fall by researchers at ESET, and now those researchers...
GNU glibc buffer overflow | CVE-2021-3999
NAME GNU glibc buffer overflow Platforms Affected:GNU glibcRisk Level:8.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION GNU glibc is vulnerable to an off-by-one buffer overflow...
McAfee Data Loss Protection ePO extension SQL injection | CVE-2021-4088
NAME McAfee Data Loss Protection ePO extension SQL injection Platforms Affected:McAfee Data Loss Prevention (DLP) ePO extension 11.6 McAfee Data...
Vim code execution | CVE-2022-0351
NAME Vim code execution Platforms Affected:Vim Vim 8.1.2135Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a local attacker to...
StarWind Command Center privilege escalation | CVE-2022-23858
NAME StarWind Command Center privilege escalation Platforms Affected:StarWind Command Center v2 build 6003Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION StarWind Command Center could...
ICONICS and Mitsubishi Electric HMI SCADA security bypass | CVE-2022-23128
NAME ICONICS and Mitsubishi Electric HMI SCADA security bypass Platforms Affected:Mitsubishi Electric MC Works64 ICONICS GENESIS64 ICONICS Hyper Historian ICONICS...
Zulip information disclosure | CVE-2021-43799
NAME Zulip information disclosure Platforms Affected:Zulip Zulip Server 4.8Risk Level:8.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Zulip could allow a remote attacker to obtain...
ICONICS and Mitsubishi Electric HMI SCADA information disclosure | CVE-2022-23129
NAME ICONICS and Mitsubishi Electric HMI SCADA information disclosure Platforms Affected:Mitsubishi Electric MC Works64 ICONICS GENESIS64 ICONICS Hyper Historian ICONICS...
Xen p2m mappings privilege escalation | CVE-2022-23033
NAME Xen p2m mappings privilege escalation Platforms Affected:XenSource Xen 5.1 XenSource Xen 4.12 XenSource Xen 4.13 XenSource Xen 4.14 XenSource...
AIDE buffer overflow | CVE-2021-45417
NAME AIDE buffer overflow Platforms Affected:AIDE AIDE 0.17.3 AIDE AIDE 0.17.2Risk Level:8.4Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION AIDE is vulnerable to...
CWP Control Web Panel file include | CVE-2021-45467
NAME CWP Control Web Panel file include Platforms Affected:CWP Control Web PanelRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION CWP Control Web Panel could...
Apache ShardingSphere ElasticJob-UI privilege escalation | CVE-2022-22733
NAME Apache ShardingSphere ElasticJob-UI privilege escalation Platforms Affected:Apache ShardingSphere ElasticJob-UI 3.0.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Apache ShardingSphere ElasticJob-UI could allow a...
Polkit privilege escalation | CVE-2021-4034
NAME Polkit privilege escalation Platforms Affected:Polkit PolkitRisk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Privileges DESCRIPTION Polkit could allow a local authenticated attacker to...
Node.js @isomorphic-git/cors-proxy module server-side request forgery | CVE-2021-23664
NAME Node.js @isomorphic-git/cors-proxy module server-side request forgery Platforms Affected:Node.js @isomorphic-git/cors-proxy 2.7.0Risk Level:8.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Node.js @isomorphic-git/cors-proxy module is vulnerable to...
Simple College Website SQL injection | CVE-2021-44593
NAME Simple College Website SQL injection Platforms Affected:Sourcecodester Simple College Website 1.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Simple College Website is vulnerable...
German intelligence agency warns of China-linked APT27 targeting commercial organizations
The BfV German domestic intelligence services warn of ongoing attacks carried out by the China-linked APT27 cyberespionage group. The Bundesamt...
Ninjasworkout – Vulnerable NodeJS Web Application
Damn Vulnerable NodeJS Application Quick Start Download the Repo => run npm i Afer Installing all dependency just run the...
KONNI evolves into stealthier RAT
This blog post was authored by Roberto Santos KONNI is a Remote Administration Tool that has being used for at...
LockBit 2.0 Ransomware Victim: plainviewmn[.]com
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Senate Committee passes new antitrust bill aimed at Big Tech companies
The American Innovation and Choice Online Act (AICOA), a bill that forbids Big Tech platforms like Apple, Alphabet (Google’s parent company),...
New DeadBolt ransomware targets QNAP NAS devices
New malware is targeting targets QNAP NAS devices, it is the DeadBolt ransomware and ask 50 BTC for master key...
