Tag: 2024-07-12

4 Attack Reports | 201 Vulnerabilities

Attack reports

Fake Microsoft Teams for Mac delivers Atomic Stealer

A malvertising campaign lures Mac users into downloading a counterfeit Microsoft Teams installer containing Atomic Stealer, a data-stealing malware. The campaign uses advanced filtering techniques, compromised ad accounts, and decoy pages to deliver unique payloads that bypass security measures. Up…
malvertising
data theft
stealer
macos
adware
2024-07-12
atomic stealer
Published: July 12, 2024
Downloadable IOCs: 6

Patch or Peril: A Veeam vulnerability incident

While the vulnerability CVE-2023-27532 was made public in March 2023 and subsequently patched by Veeam for versions 12/11a and later for Veeam Backup & Replication software, Group-IB’s Digital Forensics and Incident Response (DFIR) team recently observed a notable incident related to this vulnerabi…
backdoor
ransomware
adfind
vpn
2024-07-12
fortigate
veeam
CVE-2023-27532
svhost
netscan
Published: July 12, 2024
Downloadable IOCs: 2

MoonWalk

This blog post examines MoonWalk, a new backdoor employed by APT41, a China-based threat actor known for campaigns in Southeast Asia. MoonWalk utilizes numerous evasion techniques, including DLL hollowing, call stack spoofing, and the abuse of Windows Fibers to evade security solutions. It also lev…
backdoor
evasion
windows
moonwalk
nationstate
dodgebox
2024-07-12
googledrive
Published: July 12, 2024
Downloadable IOCs: 3

BianLian Ransomware Group: 2024 Activity Analysis

The intelligence report delves into the evolving tactics and operations of the BianLian ransomware group, which has emerged as one of the top three most active ransomware groups. It details the group's shift from encryption tactics to a steal-and-extort model after a decryptor was released. The ana…
ransomware
extortion
cybercrime
bianlian
2024-07-12
data breach
Published: July 12, 2024
Downloadable IOCs: 8
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-6396

9.8
    aimhubio/aim
Published: July 12, 2024

CVE-2024-6328

9.8
    MStore API - Create Native Android & iOS Apps On The Cloud plugin for WordPress
  • Version(s): up to 4.14.7
Published: July 12, 2024

CVE-2024-37927

9.8
    Jobmonster
  • Version(s): from n/a, 4.7.0
Published: July 12, 2024

CVE-2024-39914

9.8
    FOG
  • Version(s): 1.5.10.34
Published: July 12, 2024

CVE-2024-40539

9.8
    Codermy
  • My-Springsecurity-Plus
Published: July 12, 2024

CVE-2024-40540

9.8
    Codermy
  • My-Springsecurity-Plus
Published: July 12, 2024

CVE-2024-40541

9.8
    Codermy
  • My-Springsecurity-Plus
Published: July 12, 2024

CVE-2024-40542

9.8
    Codermy
  • My-Springsecurity-Plus
Published: July 12, 2024

CVE-2024-37933

9.3
    Woocommerce OpenPos
  • Version(s): n/a, 6.4.4
Published: July 12, 2024

CVE-2024-38734

9.1
    SpreadsheetConverter
  • Version(s): from n/a through 10.1.4
Published: July 12, 2024

CVE-2024-38736

9.1
    Realtyna Organic IDX plugin
  • Version(s): n/a, 4.14.13
Published: July 12, 2024

CVE-2024-6024

8.8
    ContentLock WordPress plugin
  • Version(s): 1.0.3
Published: July 12, 2024

CVE-2024-6353

8.8
    Wallet for WooCommerce plugin for WordPress
  • Version(s): up to 1.5.4
Published: July 12, 2024

CVE-2024-5325

8.8
    Form Vibes plugin for WordPress
  • Version(s): up to 1.4.10
Published: July 12, 2024

CVE-2024-40518

8.8
    Seacms
  • Seacms
Published: July 12, 2024

CVE-2024-40519

8.8
    Seacms
  • Seacms
Published: July 12, 2024

CVE-2024-40520

8.8
    Seacms
  • Seacms
Published: July 12, 2024

CVE-2024-40521

8.8
    Seacms
  • Seacms
Published: July 12, 2024

CVE-2024-40522

8.8
    Seacms
  • Seacms
Published: July 12, 2024

CVE-2024-40543

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40544

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40545

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40546

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40548

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40549

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40550

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40551

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-40552

8.8
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-37928

8.6
    Jobmonster
  • Version(s): n/a, up to 4.7.0
Published: July 12, 2024

CVE-2024-37932

8.6
    Woocommerce OpenPos
  • Version(s): n/a - 6.4.4
Published: July 12, 2024

CVE-2024-39903

8.6
    solara
  • Version(s): <1.35.1
Published: July 12, 2024

CVE-2024-37564

8.5
    PayPlus Payment Gateway
  • Version(s): n/a, 7.0.7
Published: July 12, 2024

CVE-2024-37560

8.0
    WP User Switch
  • Version(s): from n/a through 1.1.0
Published: July 12, 2024

CVE-2024-38735

7.5
    N.O.U.S. Open Useful and Simple Event post
  • Version(s): from n/a through 5.9.5
Published: July 12, 2024

CVE-2024-37940

7.4
    Seraphinite Accelerator (Full, premium)
  • Version(s): from n/a through 2.21.13
Published: July 12, 2024

CVE-2024-39917

7.2
    xrdp
  • Version(s): before 0.10.0
Published: July 12, 2024

CVE-2024-5902

7.2
    User Feedback WordPress plugin
  • Version(s): up to 1.0.15
Published: July 12, 2024

CVE-2024-35773

7.1
    WPJohnny
  • Version(s): n/a, 1.3
    zerOneIT Comment Reply Email
  • Version(s): n/a, 1.3
Published: July 12, 2024

CVE-2024-37213

7.1
    Ali2Woo Lite
  • Version(s): n/a - 3.3.9
Published: July 12, 2024

CVE-2024-38717

7.1
    Booking Ultra Pro
  • Version(s): from n/a through 1.1.13
Published: July 12, 2024

CVE-2024-37202

6.5
    Ultimate Custom Add To Cart Button (Ajax) For WooCommerce
  • Version(s): n/a - 1.222.16
Published: July 12, 2024

CVE-2024-38700

6.5
    realmag777 WPCS
  • Version(s): n/a, 1.2.0.3
Published: July 12, 2024

CVE-2024-38704

6.5
    DynamicWebLab WordPress Team Manager
  • Version(s): n/a through 2.1.12
Published: July 12, 2024

CVE-2024-38706

6.5
    HT Mega
  • Version(s): n/a, 2.5.7
Published: July 12, 2024

CVE-2024-38715

6.5
    ExS Widgets
  • Version(s): n/a, 0.3.1
Published: July 12, 2024

CVE-2024-39909

6.5
    KubeClarity
  • Version(s): 2.23.1
Published: July 12, 2024

CVE-2024-37405

6.5
    Rocket.Chat
  • Version(s): before 4.0.0
Published: July 12, 2024

CVE-2024-38716

6.5
    Blue Plugins Events Calendar for Google
  • Version(s): n/a - 2.1.0
Published: July 12, 2024

CVE-2024-40547

6.5
    Publiccms
  • Publiccms
Published: July 12, 2024

CVE-2024-6588

6.4
    PowerPress Podcasting plugin by Blubrry plugin for WordPress
  • Version(s): up to 11.9.10
Published: July 12, 2024

CVE-2024-6495

6.4
    Premium Addons for Elementor plugin for WordPress
  • Version(s): up to 4.10.36
Published: July 12, 2024

CVE-2024-39916

6.4
    FOG Project
  • Version(s): 1.5.10.30
Published: July 12, 2024

CVE-2024-6625

5.5
    WP Total Branding
  • Version(s): up to 1.2
Published: July 12, 2024

CVE-2024-40690

5.4
    IBM InfoSphere Server
  • Version(s): 11.7
Published: July 12, 2024

CVE-2024-6555

5.3
    WP Popups - WordPress Popup builder plugin
  • Version(s): up to 2.2.0.1
Published: July 12, 2024

CVE-2024-38709

5.3
    GD Rating System
  • Version(s): n/a, 3.1 - 3.6
Published: July 12, 2024

CVE-2024-0974

4.8
    Social Media Widget WordPress plugin
  • Version(s): before 4.0.9
Published: July 12, 2024

CVE-2024-2696

4.8
    socialdriver-framework WordPress plugin
  • Version(s): before 2024.04.30
Published: July 12, 2024

CVE-2024-1375

4.3
    WordPress Event post plugin
  • Version(s): up to 5.9.5
Published: July 12, 2024

CVE-2024-37544

4.3
    Get Better Reviews for WooCommerce
  • Version(s): n/a, 4.0.6
Published: July 12, 2024

CVE-2024-37938

4.3
    SociallyViral
  • Version(s): n/a, 1.0.10
Published: July 12, 2024

CVE-2024-37939

4.3
    VolThemes Patricia Lite
  • Version(s): n/a - 1.2.3
Published: July 12, 2024

CVE-2024-37941

4.3
    Internal Link Juicer: SEO Auto Linker for WordPress
  • Version(s): n/a - 2.24.3
Published: July 12, 2024

CVE-2023-41093

3.1
    Silabs Bluetooth SDK
  • Version(s): through 8.0.0
Published: July 12, 2024

CVE-2024-6677

None
    uberAgent
Published: July 12, 2024

CVE-2024-2430

None
    Page or Post WordPress plugin
  • Version(s): before 2024.04.09
Published: July 12, 2024

CVE-2024-2640

None
    Watu Quiz WordPress plugin
  • Version(s): before 3.4.1.2
Published: July 12, 2024

CVE-2024-3112

None
    Quotes and Tips by BestWebSoft WordPress plugin
  • Version(s): before 1.45
Published: July 12, 2024

CVE-2024-4753

None
    WP Secure Maintenance WordPress plugin
  • Version(s): before 1.7
Published: July 12, 2024

CVE-2024-5626

None
    Inline Related Posts WordPress plugin
  • Version(s): before 3.7.0
Published: July 12, 2024

CVE-2024-5811

None
    Simple Video Directory WordPress plugin
  • Version(s): before 1.4.4
Published: July 12, 2024

CVE-2024-6022

None
    ContentLock WordPress plugin
  • Version(s): up to 1.0.3
Published: July 12, 2024

CVE-2024-6023

None
    ContentLock WordPress plugin
  • Version(s): up to 1.0.3
Published: July 12, 2024

CVE-2024-36522

None
    Apache Xalan-J
  • Version(s): 10.1.0, 9.18.0, 8.16.0
Published: July 12, 2024

CVE-2024-39340

None
    Securepoint UTM
  • Version(s): before 12.6.5
Published: July 12, 2024

CVE-2024-39494

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-39495

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39496

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39497

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39498

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39499

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39500

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-39501

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39502

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39503

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39504

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39505

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-39506

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-39507

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39508

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-39509

None
    Linux kernel
Published: July 12, 2024

CVE-2024-39510

None
    Linux Kernel
  • Version(s): 6.8.0
Published: July 12, 2024

CVE-2024-40899

None
    Linux kernel
  • Version(s): 6.8.0-rc7-dirty
Published: July 12, 2024

CVE-2024-40900

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40901

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40902

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40903

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40904

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40905

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40906

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40907

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40908

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40909

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40910

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40911

None
    Linux kernel
  • Version(s): UNKNOWN
Published: July 12, 2024

CVE-2024-40912

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40913

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40914

None
    Linux kernel
  • Version(s): 6.9.0-rc4-00491-gd5ce28f156fe-dirty
Published: July 12, 2024

CVE-2024-40915

None
    Linux kernel
  • Version(s): 6.9.0-g1d4c6d784ef6
Published: July 12, 2024

CVE-2024-40916

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40917

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40918

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40919

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40920

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40921

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40922

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40923

None
    Linux kernel
  • Version(s): 6.9.3
Published: July 12, 2024

CVE-2024-40924

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40925

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40926

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40927

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40928

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40929

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40930

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40931

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40932

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40933

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40934

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40935

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40936

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40937

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40938

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40939

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40940

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40941

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40942

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40943

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40944

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40945

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40946

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40947

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40948

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40949

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40950

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40951

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40952

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40953

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40954

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40955

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40956

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40957

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40958

None
    Linux Kernel
  • Version(s): Unknown
Published: July 12, 2024

CVE-2024-40959

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40960

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40961

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40962

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40963

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40964

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40965

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40966

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40967

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40968

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40969

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40970

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40971

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40972

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40973

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40974

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40975

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40976

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40977

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40978

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40979

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40980

None
    Linux kernel
  • Version(s): 6.9.0-rc2-rt1+
Published: July 12, 2024

CVE-2024-40981

None
    Linux kernel
  • Version(s): 6.8.0-rc7
Published: July 12, 2024

CVE-2024-40982

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40983

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40984

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40985

None
    Linux kernel
  • Version(s): 5
Published: July 12, 2024

CVE-2024-40986

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40987

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40988

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40989

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40990

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40991

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40992

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40993

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40994

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40995

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40996

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40997

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40998

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-40999

None
    Linux kernel
Published: July 12, 2024

CVE-2024-41000

None
    Linux kernel
Published: July 12, 2024

CVE-2024-41001

None
    Linux kernel
Published: July 12, 2024

CVE-2024-41002

None
    Linux Kernel
Published: July 12, 2024

CVE-2024-41003

None
    Linux kernel
Published: July 12, 2024

CVE-2024-41004

None
    Linux kernel
  • Version(s): 6.9.0
Published: July 12, 2024

CVE-2024-41005

None
    Linux kernel
Published: July 12, 2024

CVE-2024-41006

None
    Linux kernel
Published: July 12, 2024

CVE-2024-40110

None
    Sourcecodester Poultry Farm Management System
  • Version(s): v1.0
Published: July 12, 2024
Click here to see more Vulnerabilities