SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users With New Variant
This blog entry offers a technical analysis of a new SolidBit variant that is posing as different applications to lure...
VMware fixed critical authentication bypass vulnerability
VMware patched a critical authentication bypass security flaw, tracked as CVE-2022-31656, impacting local domain users in multiple products. VMware has...
HackerOne Bug Bounty Disclosure: one-click-account-hijack-for-anyone-using-apple-sign-in-with-reddit,-due-to-response-type-switch-+-leaking-href-to-xss-on-www-redditmedia-combyfransrosen
Programme HackerOne Reddit Reddit Submitted by fransrosen fransrosen Report One-click account hijack for anyone using Apple sign-in with Reddit, due...
HackerOne Bug Bounty Disclosure: found-origin-ip’s-lead-to-access-to-gitlabbym-narayanan
Programme HackerOne GitLab GitLab Submitted by m-narayanan m-narayanan Report Found Origin IP's lead to access to gitlab Full Report A...
LockBit 3.0 affiliate sideloads Cobalt Strike through Windows Defender
An affiliate of the LockBit 3.0 RaaS operation has been abusing the Windows Defender command-line tool to deploy Cobalt Strike payloads. During...
Mecho Download – 437,928 breached accounts
In October 2013, the (now defunct) downloads website "Mecho Download" suffered a data breach that exposed 438k records. Data from...
Cobalt Stike Beacon Detected – 110[.]40[.]182[.]173:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]33[.]40[.]200:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 210[.]16[.]100[.]2:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 147[.]182[.]246[.]104:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]75[.]235[.]53:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 3[.]99[.]59[.]202:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Brute Ratel C4 Detected – 178[.]33[.]38[.]76:8443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Cobalt Stike Beacon Detected – 124[.]223[.]177[.]9:8087
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]130[.]45[.]182:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]36[.]26[.]24:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]14[.]201[.]250:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]92[.]14[.]128:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]221[.]95[.]136:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]117[.]93[.]65:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]14[.]137[.]208:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Node.js docs-component-login module code execution |
NAME Node.js docs-component-login module code execution Platforms Affected:Node.js docs-component-loginRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js docs-component-login module could allow a remote attacker...
Node.js airbnb-i18n module code execution |
NAME Node.js airbnb-i18n module code execution Platforms Affected:Node.js airbnb-i18nRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js airbnb-i18n module could allow a remote attacker...
TCL LinkHub Mesh Wifi device buffer overflow | CVE-2022-23399
NAME TCL LinkHub Mesh Wifi device buffer overflow Platforms Affected:TCL LinkHub Mesh Wifi MS1G_00_01.00_14Risk Level:9.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION TCL LinkHub Mesh...
