Tag: 2024-06-26

4 Attack Reports | 75 Vulnerabilities

Attack reports

Chamelgang & Friends | Cyberespionage Groups Attacking Critical Infrastructure with Ransomware

In collaboration with Recorded Future, SentinelLabs has been tracking two distinct activity clusters targeting government and critical infrastructure sectors globally between 2021 and 2023.
ransomware
cobalt strike
icedid
bitlocker
2024-06-26
china chopper
wiper
conti
chamelgang
bestcrypt
beaconloader
silver sparrow
Published: June 26, 2024
Downloadable IOCs: 8

Attackers Exploiting Public Cobalt Strike Profiles

This report discusses recent findings of malicious Cobalt Strike infrastructure and malicious Cobalt Strike samples that leverage publicly available Malleable C2 profiles for evasion. Despite its defensive cybersecurity use, threat actors continue exploiting Cobalt Strike's malleable and evasive na…
evasion
cobalt strike
malicious
2024-06-26
profiles
samples
Published: June 26, 2024
Linked vulnerabilities : CVE-2024-3400
Downloadable IOCs: 6

A New Compact Variant Discovered

Security researchers at Cleafy Labs detected a resurgence of the Medusa banking trojan, which targets Android devices for on-device fraud. The new variant exhibits a lightweight permission set, expanded geographical targeting, and the adoption of droppers for distribution. It introduces capabilitie…
android
trojan
fraud
medusa
2024-06-26
tanglebot
Published: June 26, 2024
Downloadable IOCs: 50

Armageddon is more than a Grammy-nominated album

This report details a Russia-linked threat actor targeting Ukraine, employing various obfuscation techniques. The malicious activity involves dropping a compressed file disguised as a RAR archive, which fetches a remote image likely for tracking execution. The payload employs mshta.exe to execute r…
russia
ukraine
geopolitics
2024-06-26
Published: June 26, 2024
Downloadable IOCs: 102
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-1839

10.0
    Intrado 911 Emergency Gateway
Published: June 26, 2024

CVE-2024-5181

9.8
    mudler/localai
Published: June 26, 2024

CVE-2024-4228

9.8
    Magarsus Consultancy SSO (Single Sign On)
Published: June 26, 2024

CVE-2024-37252

9.3
    Icegram Email Subscribers & Newsletters
Published: June 26, 2024

CVE-2024-29176

8.8
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-37140

8.8
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-5460

8.1
    Brocade Fabric OS
Published: June 26, 2024

CVE-2024-38520

7.5
    SoftEtherVPN
Published: June 26, 2024

CVE-2024-38526

7.2
    pdoc
Published: June 26, 2024

CVE-2024-4869

7.2
    WP Cookie Consent plugin for WordPress
Published: June 26, 2024

CVE-2024-29173

6.8
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-37139

6.5
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-37247

6.5
    jQuery T(-) Countdown Widget
Published: June 26, 2024

CVE-2024-37248

6.5
    Anima
Published: June 26, 2024

CVE-2024-5173

6.4
    HT Mega - Absolute Addons For Elementor plugin for WordPress
Published: June 26, 2024

CVE-2024-5332

6.4
    Exclusive Addons for Elementor plugin for WordPress
Published: June 26, 2024

CVE-2024-5215

6.4
    HT Mega - Absolute Addons For Elementor plugin for WordPress
Published: June 26, 2024

CVE-2024-21520

6.1
    djangorestframework
Published: June 26, 2024

CVE-2024-4604

6.1
    Magarsus Consultancy SSO
Published: June 26, 2024

CVE-2024-29954

5.9
    Brocade Fabric OS
Published: June 26, 2024

CVE-2024-28973

5.9
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-29175

5.9
    Dell PowerProtect Data Domain
Published: June 26, 2024

CVE-2024-4105

5.8
    FAST/TOOLS
    CI Server
Published: June 26, 2024

CVE-2024-38527

5.4
    ZenUML
Published: June 26, 2024

CVE-2024-4106

5.3
    FAST/TOOLS
    CI Server
Published: June 26, 2024

CVE-2024-38375

5.3
    @fastly/js-compute
Published: June 26, 2024

CVE-2024-29174

4.4
    Dell Data Domain
Published: June 26, 2024

CVE-2024-37098

4.4
    BlossomThemes Email Newsletter
Published: June 26, 2024

CVE-2024-29953

4.3
    Brocade Fabric OS
Published: June 26, 2024

CVE-2024-6355

4.3
    Genexis Tilgin Fiber Home Gateway HG1522
Published: June 26, 2024

CVE-2024-37138

4.1
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-24764

3.5
    October CMS
Published: June 26, 2024

CVE-2024-37141

3.5
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-25637

3.1
    October CMS
Published: June 26, 2024

CVE-2024-29177

2.7
    Dell PowerProtect DD
Published: June 26, 2024

CVE-2024-28830

2.7
    Checkmk
Published: June 26, 2024

CVE-2024-38364

2.6
    DSpace
Published: June 26, 2024

CVE-2024-6344

2.4
    ZKTeco ZKBio CVSecurity V5000
Published: June 26, 2024

CVE-2024-27867

None
    AirPods
    Beats
Published: June 26, 2024

CVE-2024-34580

None
    Apache XML Security for C++
Published: June 26, 2024

CVE-2024-34581

None
    W3C XML Signature Syntax and Processing (XMLDsig) specification
Published: June 26, 2024

CVE-2024-36802

None
    UNKNOWN
Published: June 26, 2024

CVE-2024-3633

None
    WebP & SVG Support WordPress plugin
Published: June 26, 2024

CVE-2024-4758

None
    Muslim Prayer Time BD WordPress plugin
Published: June 26, 2024

CVE-2024-4957

None
    Frontend Checklist WordPress plugin
Published: June 26, 2024

CVE-2024-4959

None
    Frontend Checklist WordPress plugin
Published: June 26, 2024

CVE-2024-5071

None
    Bookster WordPress plugin
Published: June 26, 2024

CVE-2024-5169

None
    Video Widget WordPress plugin
Published: June 26, 2024

CVE-2024-5199

None
    Spotify Play Button WordPress plugin
Published: June 26, 2024

CVE-2024-5473

None
    Simple Photoswipe WordPress plugin
Published: June 26, 2024

CVE-2024-5573

None
    Easy Table of Contents WordPress plugin
Published: June 26, 2024

CVE-2024-6349

None
    UNKNOWN
Published: June 26, 2024

CVE-2024-38271

None
    Quickshare/Nearby
Published: June 26, 2024

CVE-2024-38272

None
    Quickshare
Published: June 26, 2024

CVE-2024-39458

None
    Jenkins Structs Plugin
Published: June 26, 2024

CVE-2024-39459

None
    Jenkins Plain Credentials Plugin
Published: June 26, 2024

CVE-2024-39460

None
    Jenkins Bitbucket Branch Source Plugin
Published: June 26, 2024

CVE-2024-6354

None
    Devolutions Remote Desktop Manager
Published: June 26, 2024

CVE-2024-35545

None
    MAP-OS
Published: June 26, 2024

CVE-2024-33326

None
    Lumisxp
Published: June 26, 2024

CVE-2024-33327

None
    Lumisxp
Published: June 26, 2024

CVE-2024-33328

None
    Lumisxp
Published: June 26, 2024

CVE-2024-33329

None
    Lumisxp
Published: June 26, 2024

CVE-2023-26877

None
    Softexpert Excellence Suite
Published: June 26, 2024

CVE-2024-38949

None
    Libde265
Published: June 26, 2024

CVE-2024-38950

None
    Libde265
Published: June 26, 2024

CVE-2024-39241

None
    skycaiji
Published: June 26, 2024

CVE-2024-39242

None
    skycaiji
Published: June 26, 2024

CVE-2024-39243

None
    skycaiji
Published: June 26, 2024

CVE-2024-23765

None
    HMS Anybus X-Gateway AB7832-F
Published: June 26, 2024

CVE-2024-23766

None
    HMS Anybus X-Gateway AB7832-F
Published: June 26, 2024

CVE-2024-23767

None
Published: June 26, 2024

CVE-2024-36829

None
    Teldat M1
Published: June 26, 2024

CVE-2024-37571

None
    SAS Broker
Published: June 26, 2024

CVE-2024-37734

None
    OpenEMR
Published: June 26, 2024
Click here to see more Vulnerabilities