Cobalt Stike Beacon Detected – 1[.]14[.]65[.]206:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]246[.]9:22222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Pay attention to Log4j attacks, Dutch National Cybersecurity Centre (NCSC) warns
The Dutch National Cybersecurity Centre (NCSC) warns organizations of risks associated with cyberattacks exploiting the Log4J vulnerability. The Dutch National...
Mandiant-Azure-AD-Investigator – PowerShell module for detecting artifacts that may be indicators of UNC2452 and other threat actor activity
This repository contains a PowerShell module for detecting artifacts that may be indicators of UNC2452 and other threat actor activity....
Vulnerabilities in Control Web Panel potentially expose Linux Servers to hack
Two critical security vulnerabilities in Control Web Panel potentially expose Linux servers to remote code execution attacks Researchers from Octagon Networks disclosed...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-34994
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is...
CVE-2021-34997
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is...
CVE-2021-34996
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is...
CVE-2021-34995
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. Although authentication is...
US Treasury Department sanctions 4 Ukrainian officials for working with Russian intelligence
The U.S. Treasury Department announced sanctions against four current and former Ukrainian government officials for collaborating with Russia. The U.S....
A bug in McAfee Agent allows running code with Windows SYSTEM privileges
McAfee addressed a security flaw in its McAfee Agent software for Windows that allows running arbitrary code with SYSTEM privileges. McAfee...
Experts warn of anomalous spyware campaigns targeting industrial firms
Researchers spotted several spyware campaigns targeting industrial enterprises to steal credentials and conduct financial fraud. Researchers from Kaspersky Lab have...
Google Project Zero discloses details of two Zoom zero-day flaws
Google Project Zero experts disclosed details of two zero-day flaws impacting Zoom clients and Multimedia Router (MMR) servers. Google Project Zero researchers...
MoonBounce UEFI implant spotted in a targeted APT41 attack
Researchers have spotted China-linked APT41 cyberespionage group using a UEFI implant, dubbed MoonBounce, to maintain persistence. Kaspersky researchers spotted the...
Conti ransomware gang started leaking files stolen from Bank Indonesia
The central bank of the Republic of Indonesia, Bank Indonesia, confirmed the ransomware attack that hit it in December. Bank...
Pwndora – Massive IPv4 Scanner, Find And Analyze Internet-Connected Devices In Minutes, Create Your Own IoT Search Engine At Home
Pwndora is a massive and fast IPv4 address range scanner, integrated with multi-threading. Using sockets, it analyzes which ports are...
Emotet Spam Abuses Unconventional IP Address Formats to Spread Malware
We found waves of Emotet spam campaigns using unconventional IP addresses to evade detection. If you like the site, please...
Codex Exposed: Task Automation and Response Consistency
Being able to automate tasks or programmatically execute them unsupervised is an essential part of both regular and malicious computer...
This Week in Security News – January 21, 2022
This week, read about various cybersecurity threats that affect industrial control and the Cybersecurity and Infrastructure Security Agency (CISA)’s latest cyberattack warnings....
T-Reqs-HTTP-Fuzzer – A Grammar-Based HTTP Fuzzer
T-Reqs (Two Requests) is a grammar-based HTTP Fuzzer written as a part of the paper titled "T-Reqs: HTTP Request Smuggling...
