Tag: 2024-05-05

19 attack reports | 32 vulnerabilities

Attack reports

Published: May 10, 2024

Number of indicators: 13

This analysis reveals that malicious groups have been exploiting popular YouTube channels, including some with over 800,000 subsc…

Published: May 10, 2024

Number of indicators: 12

The report details an ongoing malware campaign targeting South Korean users, which disguises malicious payloads as cracked versio…

Published: May 10, 2024

Number of indicators: 23

Juniper Threat Labs has observed attempts to exploit Ivanti Pulse Secure authentication bypass and remote code execution vulnerab…

Published: May 10, 2024

Number of indicators: 118

Scattered Spider, a financially motivated threat actor group, has been conducting aggressive phishing campaigns targeting various…

Published: May 10, 2024

Number of indicators: 4

This analysis discusses the emergence of a new macOS malware family called 'Cuckoo Stealer', which acts as an infostealer and spy…

Published: May 9, 2024

Number of indicators: 34

This comprehensive analysis provides a thorough examination of the REMCOS Remote Access Trojan (RAT), a prominent malware threat …

Published: May 9, 2024

Number of indicators: 6

A recent surge of malicious JavaScript code has been observed targeting websites using vulnerable versions of the LiteSpeed Cache…

Published: May 9, 2024

Number of indicators: 13

This intelligence report details a sophisticated infection chain that culminates in the deployment of AsyncRAT, a potent malware …

Published: May 8, 2024

Number of indicators: 74

The CERT Polska team is investigating a large-scale malware campaign carried out by the Russian intelligence group APT28, which h…

Published: May 8, 2024

Number of indicators: 76

This report details the analysis of a malspam campaign utilizing the Matanbuchus loader, which involved decrypting strings within…

Published: May 8, 2024

Number of indicators: 23

This report details the operation of the zEus stealer malware, which is distributed through a crafted Minecraft source pack. The …

Published: May 8, 2024

Number of indicators: 8

This report examines a malware strain distributed to web servers in South Korea that redirects users to an illegal gambling site.…

Published: May 8, 2024

Number of indicators: 4

Security researchers have discovered a campaign distributing RemcosRAT through a sophisticated infection chain involving steganog…

Published: May 7, 2024

Number of indicators: 11

HijackLoader, also known as IDAT Loader, is a modular malware loader capable of executing multiple payloads. It utilizes a variet…

Published: May 7, 2024

Number of indicators: 4

This analysis delves into the continuous distribution of malicious shortcut files (*.LNK) targeting South Korean users, particula…

Published: May 6, 2024

Number of indicators: 3

CYFIRMA researchers identified an Android malware campaign, active for over a year, targeting Indian defense personnel by an unid…

Published: May 6, 2024

Number of indicators: 13

Virus analysts at Doctor Web uncovered an Android application containing a clicker trojan that silently opens advertising sites a…

Vulnerabilities

CVE-2024-4491
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4492
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4493
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4494
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4495
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4496
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-4497
Tenda i21
8.8
Published: May 5, 2024
CVE-2024-34510
Gradio
7.5
Published: May 5, 2024
CVE-2024-34511
Gradio
6.5
Published: May 5, 2024
CVE-2024-4500
SourceCodester Prison Management System
6.3
Published: May 5, 2024
CVE-2024-4501
Ruijie RG-UAC
4.7
Published: May 5, 2024
CVE-2024-4502
Ruijie RG-UAC
4.7
Published: May 5, 2024
CVE-2024-4503
Ruijie RG-UAC
4.7
Published: May 5, 2024
CVE-2024-34475
Open5GS
None
Published: May 5, 2024
CVE-2024-34476
Open5GS
None
Published: May 5, 2024
CVE-2024-34478
btcd
None
Published: May 5, 2024
CVE-2024-34483
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34484
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34486
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34487
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34488
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34489
Faucet SDN Ryu
None
Published: May 5, 2024
CVE-2024-34490
Maxima
None
Published: May 5, 2024
CVE-2024-34474
Clario Desktop
None
Published: May 5, 2024
CVE-2024-34500
MediaWiki
None
Published: May 5, 2024
CVE-2024-34502
MediaWiki
None
Published: May 5, 2024
CVE-2024-34506
MediaWiki
None
Published: May 5, 2024
CVE-2024-34507
MediaWiki
None
Published: May 5, 2024
CVE-2024-34508
DCMTK
None
Published: May 5, 2024
CVE-2024-34509
DCMTK
None
Published: May 5, 2024
CVE-2024-34515
image-optimizer
None
Published: May 5, 2024
CVE-2024-34519
Avantra Server
None
Published: May 5, 2024