Tag: 2024-07-03

3 Attack Reports | 63 Vulnerabilities

Attack reports

SmokeLoader Evolution Through The Years

This report provides an in-depth analysis of the evolution of SmokeLoader, a prominent malware downloader that has been active since 2011. It examines the significant changes and improvements introduced in SmokeLoader versions from 2015 to 2022, including updates to its communication protocol, encr…
smokeloader
downloader
2024-07-03
Published: July 3, 2024
Downloadable IOCs: 11

Attack Case against HFS (HTTP File Server) Server (Suspected CVE-2024-23692)

A remote code execution vulnerability (CVE-2024-23692) in the HFS (HTTP File Server) program has allowed attackers to execute malicious commands on vulnerable systems. Various attack cases exploiting this vulnerability have been observed, leading to the installation of malware such as coin miners, …
backdoor
exploit
rat
xmrig
vulnerability
plugx
gh0strat
CVE-2024-23692
cobaltstrike
korplug
destroyrat
xenorat
2024-07-03
gothief
Published: July 3, 2024
Linked vulnerabilities : CVE-2024-23692 (CVSS 9.8)
Downloadable IOCs: 14

New Ransomware Operator Volcano Demon Serving Up LukaLocker

A cybersecurity firm has encountered a new ransomware organization, dubbed Volcano Demon, responsible for recent attacks involving an encryptor called LukaLocker. The malware encrypts victims' files with the .nba extension and was successful in compromising Windows workstations and servers after ha…
ransomware
data-theft
2024-07-03
lukalocker
Published: July 3, 2024
Downloadable IOCs: 3
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-37082

9.0
    Cloud Foundry
Published: July 3, 2024

CVE-2024-2376

8.8
    2code
  • Wpqa Builder
Published: July 3, 2024

CVE-2024-5887

8.8
    UNKNOWN
Published: July 3, 2024

CVE-2024-39830

8.1
    Mattermost
Published: July 3, 2024

CVE-2024-6426

8.1
    MESbook
Published: July 3, 2024

CVE-2024-32937

8.1
    Grandstream GXP2135
Published: July 3, 2024

CVE-2024-6427

7.5
    MESbook
Published: July 3, 2024

CVE-2024-35227

7.5
    Discourse
Published: July 3, 2024

CVE-2024-5672

7.2
    UNKNOWN
Published: July 3, 2024

CVE-2024-6052

6.5
    Checkmk
Published: July 3, 2024

CVE-2024-3332

6.5
    UNKNOWN
Published: July 3, 2024

CVE-2024-37157

6.4
    Discourse
Published: July 3, 2024

CVE-2024-6471

6.3
    SourceCodester Online Tours & Travels Management
Published: July 3, 2024

CVE-2024-5821

6.2
    UNKNOWN
Published: July 3, 2024

CVE-2024-39683

5.7
    ZITADEL
Published: July 3, 2024

CVE-2024-2234

5.4
    2code
  • Himer
Published: July 3, 2024

CVE-2024-2375

5.4
    2code
  • Wpqa Builder
Published: July 3, 2024

CVE-2024-4482

5.4
    Posimyth
  • The Plus Addons For Elementor
Published: July 3, 2024

CVE-2024-6263

5.4
    Syedbalkhi
  • Wp Lightbox 2
Published: July 3, 2024

CVE-2024-6340

5.4
    Leap13
  • Premium Addons For Elementor
Published: July 3, 2024

CVE-2024-6428

5.3
    Mattermost
Published: July 3, 2024

CVE-2024-31223

5.3
    Fides
Published: July 3, 2024

CVE-2024-6383

5.3
    MongoDB C Driver
Published: July 3, 2024

CVE-2024-36113

4.9
    Discourse
Published: July 3, 2024

CVE-2024-4543

4.3
    Yeken
  • Snippet Shortcodes
Published: July 3, 2024

CVE-2024-2040

4.3
    2code
  • Himer
Published: July 3, 2024

CVE-2024-2233

4.3
    2code
  • Himer
Published: July 3, 2024

CVE-2024-2235

4.3
    2code
  • Himer
Published: July 3, 2024

CVE-2024-35234

4.2
    Discourse
Published: July 3, 2024

CVE-2024-6126

3.2
    cockpit
Published: July 3, 2024

CVE-2024-39361

3.1
    Mattermost
Published: July 3, 2024

CVE-2024-39807

3.1
    Mattermost
Published: July 3, 2024

CVE-2024-36257

2.7
    Mattermost
Published: July 3, 2024

CVE-2024-39353

2.7
    Mattermost
Published: July 3, 2024

CVE-2024-6469

2.7
    playSMS
Published: July 3, 2024

CVE-2024-6470

2.7
    playSMS
Published: July 3, 2024

CVE-2024-36122

2.4
    Discourse
Published: July 3, 2024

CVE-2024-32673

None
    Walrus Webassembly runtime engine
Published: July 3, 2024

CVE-2024-39920

None
    UNKNOWN
Published: July 3, 2024

CVE-2024-2231

None
    WordPress
Published: July 3, 2024

CVE-2024-38453

None
    Avalara for Salesforce CPQ app
Published: July 3, 2024

CVE-2024-37726

None
    Micro-Star International Co., Ltd MSI Center
Published: July 3, 2024

CVE-2024-39220

None
    BAS-IP Intercom Systems
Published: July 3, 2024

CVE-2024-39223

None
    gost
Published: July 3, 2024

CVE-2024-39248

None
    SimpCMS
Published: July 3, 2024

CVE-2024-39844

None
    ZNC
Published: July 3, 2024

CVE-2023-52168

None
    7-Zip
Published: July 3, 2024

CVE-2023-52169

None
    7-Zip
Published: July 3, 2024

CVE-2024-29506

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-29508

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-29509

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-29507

None
    Ghostscript
Published: July 3, 2024

CVE-2024-29510

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-29511

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-33869

None
    Ghostscript
Published: July 3, 2024

CVE-2024-33870

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-33871

None
    Artifex Ghostscript
Published: July 3, 2024

CVE-2024-6488

None
    UNKNOWN
Published: July 3, 2024

CVE-2024-34750

None
    Apache Tomcat
Published: July 3, 2024

CVE-2024-6461

None
    UNKNOWN
Published: July 3, 2024

CVE-2024-6463

None
    UNKNOWN
Published: July 3, 2024

CVE-2024-6464

None
    UNKNOWN
Published: July 3, 2024

CVE-2024-6284

None
    UNKNOWN
Published: July 3, 2024
Click here to see more Vulnerabilities