Tag : 2024-07-10

9 attack reports | 107 vulnerabilities

Attack Reports

Title	Published	Tags	Description	Number of indicators
Analysis of Suspected APT Attack Activities by “Silver Fox”	July 10, 2024, 10:19 a.m.	malware obfuscation apt phishing cybercrime winos 2024-07-10 updatedll	This document examines the recent activities of the Silver Fox cybercrime group, which has traditionally targeted financial and t…	7
Kematian-Stealer: A Deep Dive into a New Information Stealer	July 10, 2024, 10:08 a.m.	malware stealer persistence data exfiltration github 2024-07-10 kematian-stealer	This report provides an in-depth analysis of a newly discovered information stealer named Kematian-Stealer, actively developed on…	4
VayGren and Mr.Burns: Strong Ties in Finance	July 10, 2024, 9:49 a.m.	purecrypter metastealer 2024-07-10 teamviewer redline stealer warzonerat ave maria purelogs burnsrat	F.A.C.C.T experts analyzed the tools and connections of cybercriminals attacking Russian accountants. An analysis of the infectio…	131
How do cryptocurrency drainer phishing scams work?	July 10, 2024, 9:42 a.m.	phishing social engineering cryptocurrency financial fraud cybercrime 2024-07-10	Cryptodrainer phishing scams have emerged as a significant threat, targeting unsuspecting individuals through deceptive tactics t…	14
Persistent npm Campaign Shipping Trojanized jQuery	July 10, 2024, 9:36 a.m.	malware supply chain exfiltration npm github 2024-07-10	The report describes a persistent supply chain attack involving the distribution of a trojanized version of jQuery through variou…	67
Decrypted: DoNex Ransomware and its Predecessors	July 10, 2024, 9:33 a.m.	ransomware lockbit darkrace donex encryption 2024-07-10 chacha20 rebranding muse cryptography	Researchers have uncovered a cryptographic flaw in the DoNex ransomware and its previous iterations, allowing for the creation of…	8
Ticket Heist: Olympic Games and Sporting Events at Risk	July 10, 2024, 9:28 a.m.	impersonation fraud 2024-07-10 olympics tickets uefa events	This analysis examines an ongoing, undetected fraudulent campaign named 'Ticket Heist' targeting Russian-speaking users, several …	685
Resurrecting Internet Explorer: Threat Actors Using Zero-day Tricks in Internet Shortcut File to Lure Victims (CVE-2024-38112)	July 10, 2024, 9:24 a.m.	social engineering windows zero-day CVE-2023-36025 exploitation CVE-2021-40444 CVE-2024-38112 2024-07-10 internet explorer malicious files	Check Point Research discovered threat actors leveraging novel techniques to execute malicious code on Windows systems by exploit…	7
Distribution of AsyncRAT Disguised as Ebook	July 10, 2024, 9:22 a.m.	obfuscation powershell persistence trojan asyncrat 2024-07-10	This analysis covers the distribution of AsyncRAT malware disguised as an ebook. The compressed file contains a malicious LNK and…	5

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-6422	9.8	July 10, 2024, 8:15 a.m.	UNKNOWN	CWE-306 info@cert.vde.com 2024-07-10 CVE-2024-6422
CVE-2024-37113	9.8	July 10, 2024, 6:15 p.m.	WishList Member X	CWE-200 audit@patchstack.com 2024-07-10 CVE-2024-37113
CVE-2024-37310	9.0	July 10, 2024, 8:15 p.m.	EVerest EV charging software stack	security-advisories@github.com CWE-122 2024-07-10 CVE-2024-37310
CVE-2024-21417	8.8	July 10, 2024, 12:15 a.m.	Windows Text Services Framework	CWE-862 secure@microsoft.com 2024-07-10 CVE-2024-21417
CVE-2023-7061	8.8	July 10, 2024, 2:15 a.m.	Advanced File Manager Shortcodes plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2023-7061
CVE-2023-7062	8.8	July 10, 2024, 2:15 a.m.	Advanced File Manager Shortcodes plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2023-7062
CVE-2024-5792	8.8	July 10, 2024, 2:15 a.m.	Houzez CRM plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-5792
CVE-2024-6411	8.8	July 10, 2024, 5:15 a.m.	ProfileGrid WordPress plugin	security@wordfence.com 2024-07-10 CVE-2024-6411
CVE-2024-28827	8.8	July 10, 2024, 1:15 p.m.	Checkmk	CWE-732 security@checkmk.com 2024-07-10 CVE-2024-28827
CVE-2024-28828	8.8	July 10, 2024, 1:15 p.m.	Checkmk	CWE-352 security@checkmk.com 2024-07-10 CVE-2024-28828
CVE-2024-21525	8.3	July 10, 2024, 5:15 a.m.	node-twain	CWE-703 report@snyk.io 2024-07-10 CVE-2024-21525
CVE-2024-21524	8.2	July 10, 2024, 5:15 a.m.	node-stringbuilder	CWE-125 report@snyk.io 2024-07-10 CVE-2024-21524
CVE-2024-37148	8.1	July 10, 2024, 8:15 p.m.	GLPI	security-advisories@github.com CWE-89 2024-07-10 CVE-2024-37148
CVE-2024-38354	8.1	July 10, 2024, 8:15 p.m.	CodiMD	security-advisories@github.com CWE-79 2024-07-10 CVE-2024-38354
CVE-2024-6433	7.5	July 10, 2024, 1:15 a.m.	GitHub repository stitionai/devika	security@huntr.dev CWE-23 2024-07-10 CVE-2024-6433
CVE-2024-21521	7.5	July 10, 2024, 5:15 a.m.	@discordjs/opus	CWE-400 report@snyk.io 2024-07-10 CVE-2024-21521
CVE-2024-21522	7.5	July 10, 2024, 5:15 a.m.	audify	CWE-129 report@snyk.io 2024-07-10 CVE-2024-21522
CVE-2024-21523	7.5	July 10, 2024, 5:15 a.m.	images	CWE-400 report@snyk.io 2024-07-10 CVE-2024-21523
CVE-2024-21526	7.5	July 10, 2024, 5:15 a.m.	speaker	CWE-400 report@snyk.io 2024-07-10 CVE-2024-21526
CVE-2024-6421	7.5	July 10, 2024, 8:15 a.m.	UNKNOWN	CWE-200 info@cert.vde.com 2024-07-10 CVE-2024-6421
CVE-2024-37110	7.5	July 10, 2024, 6:15 p.m.	WishList Member X	CWE-200 audit@patchstack.com 2024-07-10 CVE-2024-37110
CVE-2024-37115	7.5	July 10, 2024, 6:15 p.m.	Automattic Newspack Blocks	CWE-200 audit@patchstack.com 2024-07-10 CVE-2024-37115
CVE-2024-39693	7.5	July 10, 2024, 8:15 p.m.	Next.js	security-advisories@github.com CWE-400 2024-07-10 CVE-2024-39693
CVE-2024-37149	7.2	July 10, 2024, 8:15 p.m.	GLPI	security-advisories@github.com CWE-73 2024-07-10 CVE-2024-37149
CVE-2024-32469	7.1	July 10, 2024, 7:15 p.m.	Decidim	security-advisories@github.com CWE-79 2024-07-10 CVE-2024-32469
CVE-2024-38301	6.7	July 10, 2024, 3:15 a.m.	Dell Alienware Command Center	security_alert@emc.com 2024-07-10 CVE-2024-38301 CWE-1107
CVE-2024-20456	6.7	July 10, 2024, 4:15 p.m.	Cisco IOS XR Software	CWE-732 ykramarz@cisco.com 2024-07-10 CVE-2024-20456
CVE-2024-4866	6.4	July 10, 2024, 2:15 a.m.	UltraAddons – Elementor Addons plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-4866
CVE-2024-5664	6.4	July 10, 2024, 8:15 a.m.	MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-5664
CVE-2024-6644	6.3	July 10, 2024, 5:15 p.m.	zmops ArgusDBM	CWE-502 cna@vuldb.com 2024-07-10 CVE-2024-6644
CVE-2024-6645	6.3	July 10, 2024, 5:15 p.m.	WuKongOpenSource Wukong_nocode	CWE-502 cna@vuldb.com 2024-07-10 CVE-2024-6645
CVE-2024-25023	6.2	July 10, 2024, 1:15 a.m.	IBM Cloud Pak for Security	psirt@us.ibm.com CWE-312 2024-07-10 CVE-2024-25023
CVE-2023-6813	6.1	July 10, 2024, 8:15 a.m.	Login by Auth0 plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2023-6813
CVE-2023-32467	5.7	July 10, 2024, 3:15 a.m.	Dell Edge Gateway BIOS	security_alert@emc.com CWE-665 2024-07-10 CVE-2023-32467
CVE-2023-32472	5.7	July 10, 2024, 3:15 a.m.	Dell Edge Gateway BIOS	security_alert@emc.com CWE-125 2024-07-10 CVE-2023-32472
CVE-2023-35006	5.4	July 10, 2024, 4:15 p.m.	IBM Security QRadar EDR	psirt@us.ibm.com 2024-07-10 CVE-2023-35006
CVE-2024-27095	5.4	July 10, 2024, 7:15 p.m.	Decidim	security-advisories@github.com CWE-79 2024-07-10 CVE-2024-27095
CVE-2024-6550	5.3	July 10, 2024, 4:15 a.m.	Gravity Forms: Multiple Form Instances plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-6550
CVE-2024-6556	5.3	July 10, 2024, 9:15 a.m.	SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-6556
CVE-2023-33859	5.3	July 10, 2024, 4:15 p.m.	IBM Security QRadar EDR	psirt@us.ibm.com CWE-204 2024-07-10 CVE-2023-33859
CVE-2023-33860	5.3	July 10, 2024, 4:15 p.m.	IBM Security QRadar EDR	psirt@us.ibm.com CWE-614 2024-07-10 CVE-2023-33860
CVE-2024-37205	5.3	July 10, 2024, 6:15 p.m.	affiliate-toolkit	audit@patchstack.com CWE-532 2024-07-10 CVE-2024-37205
CVE-2024-37270	5.3	July 10, 2024, 6:15 p.m.	TrustedLogin Vendor	audit@patchstack.com CWE-532 2024-07-10 CVE-2024-37270
CVE-2024-37498	5.3	July 10, 2024, 6:15 p.m.	Table & Contact Form 7 Database - Tablesome	CWE-200 audit@patchstack.com 2024-07-10 CVE-2024-37498
CVE-2024-37504	5.3	July 10, 2024, 6:15 p.m.	Ninja Team FileBird Document Library	CWE-200 audit@patchstack.com 2024-07-10 CVE-2024-37504
CVE-2024-6646	5.3	July 10, 2024, 6:15 p.m.	Netgear WN604	CWE-200 cna@vuldb.com 2024-07-10 CVE-2024-6646
CVE-2024-27090	5.3	July 10, 2024, 7:15 p.m.	Decidim participatory democracy framework	security-advisories@github.com CWE-200 2024-07-10 CVE-2024-27090
CVE-2024-38353	5.3	July 10, 2024, 8:15 p.m.	CodiMD	security-advisories@github.com CWE-338 2024-07-10 CVE-2024-38353
CVE-2024-6647	4.7	July 10, 2024, 6:15 p.m.	Croogo	CWE-434 cna@vuldb.com 2024-07-10 CVE-2024-6647
CVE-2024-5677	4.3	July 10, 2024, 2:15 a.m.	Featured Image Generator plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-5677
CVE-2024-6410	4.3	July 10, 2024, 5:15 a.m.	ProfileGrid - User Profiles, Groups and Communities plugin for WordPress	security@wordfence.com 2024-07-10 CVE-2024-6410
CVE-2024-37147	4.3	July 10, 2024, 7:15 p.m.	GLPI	CWE-284 security-advisories@github.com 2024-07-10 CVE-2024-37147
CVE-2024-6649	4.3	July 10, 2024, 7:15 p.m.	SourceCodester Employee and Visitor Gate Pass Logging System	CWE-352 cna@vuldb.com 2024-07-10 CVE-2024-6649
CVE-2024-22018	2.9	July 10, 2024, 2:15 a.m.	Node.js	support@hackerone.com 2024-07-10 CVE-2024-22018
CVE-2024-32670	None	July 10, 2024, 1:15 a.m.	Samsung Galaxy SmartTag2	CWE-200 PSIRT@samsung.com 2024-07-10 CVE-2024-32670
CVE-2024-38875	None	July 10, 2024, 5:15 a.m.	Django	cve@mitre.org 2024-07-10 CVE-2024-38875
CVE-2024-39329	None	July 10, 2024, 5:15 a.m.	Django	cve@mitre.org 2024-07-10 CVE-2024-39329
CVE-2024-39330	None	July 10, 2024, 5:15 a.m.	Django	cve@mitre.org 2024-07-10 CVE-2024-39330
CVE-2024-39614	None	July 10, 2024, 5:15 a.m.	Django	cve@mitre.org 2024-07-10 CVE-2024-39614
CVE-2024-36450	None	July 10, 2024, 7:15 a.m.	Webmin	vultures@jpcert.or.jp 2024-07-10 CVE-2024-36450
CVE-2024-36451	None	July 10, 2024, 7:15 a.m.	Webmin	vultures@jpcert.or.jp 2024-07-10 CVE-2024-36451
CVE-2024-36452	None	July 10, 2024, 7:15 a.m.	Webmin	vultures@jpcert.or.jp 2024-07-10 CVE-2024-36452
CVE-2024-36453	None	July 10, 2024, 7:15 a.m.	Webmin	vultures@jpcert.or.jp 2024-07-10 CVE-2024-36453
CVE-2024-39886	None	July 10, 2024, 7:15 a.m.	TONE store App	vultures@jpcert.or.jp 2024-07-10 CVE-2024-39886
CVE-2024-39927	None	July 10, 2024, 7:15 a.m.	Ricoh MFPs and printers	vultures@jpcert.or.jp 2024-07-10 CVE-2024-39927
CVE-2024-39488	None	July 10, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39488
CVE-2024-39489	None	July 10, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39489
CVE-2024-39490	None	July 10, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39490
CVE-2024-39491	None	July 10, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39491
CVE-2024-39492	None	July 10, 2024, 8:15 a.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39492
CVE-2024-39493	None	July 10, 2024, 8:15 a.m.	Linux kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-10 CVE-2024-39493
CVE-2024-3798	None	July 10, 2024, 12:15 p.m.	Phoniebox	cvd@cert.pl CWE-352 2024-07-10 CVE-2024-3798
CVE-2024-3799	None	July 10, 2024, 12:15 p.m.	Phoniebox	cvd@cert.pl CWE-78 2024-07-10 CVE-2024-3799
CVE-2024-40328	None	July 10, 2024, 1:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40328
CVE-2024-40329	None	July 10, 2024, 1:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40329
CVE-2024-40333	None	July 10, 2024, 1:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40333
CVE-2024-40334	None	July 10, 2024, 1:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40334
CVE-2024-6642	None	July 10, 2024, 1:15 p.m.	UNKNOWN	ecc0f906-8666-484c-bcf8-c3b7520a72f0 2024-07-10 CVE-2024-6642
CVE-2024-40331	None	July 10, 2024, 2:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40331
CVE-2024-40332	None	July 10, 2024, 2:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40332
CVE-2024-40336	None	July 10, 2024, 2:15 p.m.	idccms	cve@mitre.org 2024-07-10 CVE-2024-40336
CVE-2024-40412	None	July 10, 2024, 4:15 p.m.	Tenda AX12	cve@mitre.org 2024-07-10 CVE-2024-40412
CVE-2024-40417	None	July 10, 2024, 4:15 p.m.	Tenda AX1806	cve@mitre.org 2024-07-10 CVE-2024-40417
CVE-2024-3325	None	July 10, 2024, 5:15 p.m.	Jaspersoft JasperReport Server	security@tibco.com 2024-07-10 CVE-2024-3325
CVE-2024-4879	None	July 10, 2024, 5:15 p.m.	ServiceNow Now Platform	CWE-1287 2024-07-10 CVE-2024-4879 psirt@servicenow.com
CVE-2024-5178	None	July 10, 2024, 5:15 p.m.	ServiceNow	CWE-184 2024-07-10 psirt@servicenow.com CVE-2024-5178
CVE-2024-5217	None	July 10, 2024, 5:15 p.m.	ServiceNow	CWE-184 2024-07-10 psirt@servicenow.com CVE-2024-5217
CVE-2024-32759	None	July 10, 2024, 6:15 p.m.	C●CURE 9000	productsecurity@jci.com CWE-1391 2024-07-10 CVE-2024-32759
CVE-2024-37770	None	July 10, 2024, 6:15 p.m.	14Finger	cve@mitre.org 2024-07-10 CVE-2024-37770
CVE-2024-6630	None	July 10, 2024, 6:15 p.m.	UNKNOWN	security@wordfence.com 2024-07-10 CVE-2024-6630
CVE-2024-5491	None	July 10, 2024, 7:15 p.m.	NetScaler ADC	secure@citrix.com 2024-07-10 CVE-2024-5491
CVE-2024-5492	None	July 10, 2024, 7:15 p.m.	Citrix NetScaler ADC	secure@citrix.com 2024-07-10 CVE-2024-5492
CVE-2024-5910	None	July 10, 2024, 7:15 p.m.	Palo Alto Networks Expedition	CWE-306 psirt@paloaltonetworks.com 2024-07-10 CVE-2024-5910
CVE-2024-5911	None	July 10, 2024, 7:15 p.m.	Palo Alto Networks Panorama software	CWE-434 psirt@paloaltonetworks.com 2024-07-10 CVE-2024-5911
CVE-2024-5912	None	July 10, 2024, 7:15 p.m.	Palo Alto Networks Cortex XDR agent	CWE-347 psirt@paloaltonetworks.com 2024-07-10 CVE-2024-5912
CVE-2024-5913	None	July 10, 2024, 7:15 p.m.	Palo Alto Networks PAN-OS	CWE-20 psirt@paloaltonetworks.com 2024-07-10 CVE-2024-5913
CVE-2024-6235	None	July 10, 2024, 7:15 p.m.	NetScaler	secure@citrix.com 2024-07-10 CVE-2024-6235
CVE-2024-25076	None	July 10, 2024, 8:15 p.m.	Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices	cve@mitre.org 2024-07-10 CVE-2024-25076
CVE-2024-25077	None	July 10, 2024, 8:15 p.m.	Renesas SmartBond DA14691	cve@mitre.org 2024-07-10 CVE-2024-25077
CVE-2024-6148	None	July 10, 2024, 9:15 p.m.	Citrix Workspace app for HTML5	secure@citrix.com 2024-07-10 CVE-2024-6148
CVE-2024-6149	None	July 10, 2024, 9:15 p.m.	Citrix Workspace app for HTML5	secure@citrix.com 2024-07-10 CVE-2024-6149
CVE-2024-6150	None	July 10, 2024, 9:15 p.m.	Citrix Provisioning	secure@citrix.com 2024-07-10 CVE-2024-6150
CVE-2024-6151	None	July 10, 2024, 9:15 p.m.	Citrix Virtual Apps and Desktops	secure@citrix.com 2024-07-10 CVE-2024-6151
CVE-2024-6236	None	July 10, 2024, 9:15 p.m.	Citrix NetScaler Console (NetScaler ADM)	secure@citrix.com 2024-07-10 CVE-2024-6236
CVE-2024-6286	None	July 10, 2024, 9:15 p.m.	Citrix Workspace app for Windows	secure@citrix.com 2024-07-10 CVE-2024-6286
CVE-2024-6663	None	July 10, 2024, 9:15 p.m.	UNKNOWN	2024-07-10 CVE-2024-6663 15c01472-ff32-4bec-916d-912e60a9fe4c
CVE-2024-6664	None	July 10, 2024, 9:15 p.m.	UNKNOWN	2024-07-10 15c01472-ff32-4bec-916d-912e60a9fe4c CVE-2024-6664

» Click here to see all Vulnerabilities «