UK’s NHS Digital warns of an RCE in Okta Advanced Server Access client
The UK’s NHS Digital agency warns of an RCE in the Windows client for the Okta Advanced Server Access authentication...
OSINT
Cobalt Stike Beacon Detected – 114[.]67[.]224[.]147:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]61[.]138[.]51:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 154[.]202[.]59[.]137:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]132[.]192[.]214:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]45[.]180:50050
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]196[.]236:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]71[.]2[.]164:9006
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 91[.]241[.]19[.]147:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]34[.]15[.]118:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 52[.]212[.]86[.]43:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
This Week in Security News – February 25, 2022
Recent cyberattacks increasingly target open-source web servers, and US officials tell businesses to watch for potential ransomware attacks after Biden...
Potential cybersecurity impacts of Russia’s invasion of Ukraine
On Thursday night, Russia launched a military invasion of its neighbor and former Soviet Union member Ukraine, drawing a broad...
Ukraine calls on independent hackers to defend against Russia, Russian underground responds
While Ukraine calls for hacker underground to defend against Russia, ransomware gangs make their moves. Ukraine’s government is asking for...
openSquat – Detection Of Phishing Domains And Domain Squatting. Supports Permutations Such As Homograph Attack, Typosquatting And Bitsquatting
What is openSquat openSquat is an opensource Intelligence (OSINT) security tool to identify cyber squatting threats to specific companies or...
Cyber lures and threats in the context of the war in Ukraine
The conflict between Ukraine and Russia goes a long way back, but it took a dramatic turn after the 2014...
CISA warns of cyberespionage by Iranian APT “MuddyWater”
Cybersecurity agencies in the US and UK have issued a joint cybersecurity advisory (CSA) on MuddyWater, a government-sponsored Iranian advanced...
Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing
The CERT of Ukraine (CERT-UA) warned of a spear-phishing campaign targeting Ukrainian armed forces personnel. The Computer Emergency Response Team...
Anonymous launched its offensive on Russia in response to the invasion of Ukraine
The popular collective Anonymous declared war on Russia for the illegitimate invasion of Ukraine and announced a series of cyber...
Google and Microsoft accused of feeding smaller search engines spam ads
Google and Microsoft appear to have been flooding their smaller search engine rivals with spam ads, to limit the number...
JNDI-Injection-Exploit – A Tool Which Generates JNDI Links Can Start Several Servers To Exploit JNDI Injection Vulnerability
JNDI-Injection-Exploit is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP...
US and UK details a new Python backdoor used by MuddyWater APT group
US and UK cybersecurity agencies provided details of a new malware used by Iran-linked MuddyWater APT. CISA, the FBI, the...
Cobalt Stike Beacon Detected – 47[.]93[.]63[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]140[.]150[.]177:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
