SecuriTricks - 2024-07-23

Attack Reports

Title	Published	Tags	Description	Number of indicators
Echoes of Braodo Tales from the Cyber Underworld	July 23, 2024, 2 p.m.	braodo stealer 2024-07-23	This report provides an in-depth analysis of a Vietnamese-based information stealer, known as Braodo Stealer. It is a Python-base…	1
Daggerfly: Espionage Group Makes Major Update to Toolset	July 23, 2024, 1:42 p.m.	2024-07-23 dazzlespy mgbot macma	An advanced persistent threat (APT) group, known as Daggerfly or Evasive Panda, has significantly updated its malware arsenal. Th…	20
Solving the 7777 Botnet enigma: A cybersecurity quest	July 23, 2024, 8 a.m.	iot botnet cybercrime 2024-07-23 microsoft 365 password spraying xlogin microsocks	Sekoia.io investigated the mysterious 7777 botnet (aka Quad7 botnet), which compromised TP-Link routers to relay password sprayin…	4
Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android	July 23, 2024, 7:49 a.m.	malware exploit android vulnerability telegram 2024-07-23 android/spy.spymax.t	ESET researchers discovered a vulnerability named EvilVideo that allows attackers to share malicious Android payloads disguised a…	1

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-38164	9.6	July 23, 2024, 10:15 p.m.	GroupMe	CWE-284 secure@microsoft.com 2024-07-23 CVE-2024-38164
CVE-2024-6714	8.8	July 23, 2024, 4:15 p.m.	provd	security@ubuntu.com CWE-73 2024-07-23 CVE-2024-6714
CVE-2020-11640	8.8	July 23, 2024, 6:15 p.m.	ABB Advant MOD 300 AdvaBuild	CWE-269 cybersecurity@ch.abb.com 2024-07-23 CVE-2020-11640
CVE-2024-41661	8.8	July 23, 2024, 6:15 p.m.	reNgine	security-advisories@github.com CWE-78 2024-07-23 CVE-2024-41661
CVE-2024-41668	8.3	July 23, 2024, 7:15 p.m.	cBioPortal for Cancer Genomics	security-advisories@github.com CWE-918 2024-07-23 CVE-2024-41668
CVE-2024-6885	8.1	July 23, 2024, 2:15 a.m.	MaxiBlocks plugin for WordPress	security@wordfence.com CWE-22 2024-07-23 CVE-2024-6885
CVE-2024-38176	8.1	July 23, 2024, 10:15 p.m.	GroupMe	secure@microsoft.com CWE-307 2024-07-23 CVE-2024-38176
CVE-2024-4079	7.8	July 23, 2024, 2:15 p.m.	LabVIEW	CWE-125 security@ni.com 2024-07-23 CVE-2024-4079
CVE-2024-4080	7.8	July 23, 2024, 2:15 p.m.	LabVIEW	CWE-119 security@ni.com 2024-07-23 CVE-2024-4080
CVE-2024-4081	7.8	July 23, 2024, 2:15 p.m.	NI LabVIEW	CWE-119 security@ni.com 2024-07-23 CVE-2024-4081
CVE-2024-5602	7.8	July 23, 2024, 2:15 p.m.	NI I/O Trace Tool	CWE-121 security@ni.com 2024-07-23 CVE-2024-5602
CVE-2020-11639	7.8	July 23, 2024, 6:15 p.m.	Advant MOD 300 AdvaBuild	cybersecurity@ch.abb.com 2024-07-23 CVE-2020-11639 CWE-924
CVE-2024-6717	7.7	July 23, 2024, 1:15 a.m.	Nomad	CWE-610 security@hashicorp.com 2024-07-23 CVE-2024-6717
CVE-2024-0760	7.5	July 23, 2024, 3:15 p.m.	BIND	2024-07-23 CVE-2024-0760 security-officer@isc.org
CVE-2024-1737	7.5	July 23, 2024, 3:15 p.m.	BIND	2024-07-23 security-officer@isc.org CVE-2024-1737
CVE-2024-1975	7.5	July 23, 2024, 3:15 p.m.	BIND	2024-07-23 security-officer@isc.org CVE-2024-1975
CVE-2024-41655	7.5	July 23, 2024, 3:15 p.m.	tf2-item-format	security-advisories@github.com CWE-1333 2024-07-23 CVE-2024-41655
CVE-2024-4076	7.5	July 23, 2024, 3:15 p.m.	BIND	2024-07-23 security-officer@isc.org CVE-2024-4076
CVE-2024-6828	7.2	July 23, 2024, 2:15 a.m.	Redux Framework plugin for WordPress	security@wordfence.com CWE-434 2024-07-23 CVE-2024-6828
CVE-2024-0981	7.1	July 23, 2024, 9:15 p.m.	Okta Browser Plugin	CWE-79 2024-07-23 CVE-2024-0981 psirt@okta.com
CVE-2024-41656	7.1	July 23, 2024, 10:15 p.m.	Sentry	security-advisories@github.com CWE-79 2024-07-23 CVE-2024-41656
CVE-2024-1575	6.5	July 23, 2024, 2:15 a.m.	Zyxel WBE660S firmware	CWE-269 security@zyxel.com.tw 2024-07-23 CVE-2024-1575
CVE-2024-41836	5.5	July 23, 2024, 12:15 p.m.	InDesign Desktop	psirt@adobe.com CWE-476 2024-07-23 CVE-2024-41836
CVE-2024-41665	5.5	July 23, 2024, 6:15 p.m.	Ampache	security-advisories@github.com CWE-79 2024-07-23 CVE-2024-41665
CVE-2024-34128	5.4	July 23, 2024, 12:15 p.m.	Adobe Experience Manager	CWE-79 psirt@adobe.com 2024-07-23 CVE-2024-34128
CVE-2024-41664	5.4	July 23, 2024, 5:15 p.m.	Canarytokens	security-advisories@github.com CWE-918 2024-07-23 CVE-2024-41664
CVE-2024-6783	4.8	July 23, 2024, 3:15 p.m.	Vue.js	CWE-79 2024-07-23 CVE-2024-6783 36c7be3b-2937-45df-85ea-ca7133ea542c
CVE-2024-41839	4.1	July 23, 2024, 12:15 p.m.	Adobe Experience Manager	CWE-20 psirt@adobe.com 2024-07-23 CVE-2024-41839
CVE-2024-41663	3.5	July 23, 2024, 4:15 p.m.	Canarytokens	security-advisories@github.com CWE-79 2024-07-23 CVE-2024-41663
CVE-2024-4260	None	July 23, 2024, 6:15 a.m.	Page Builder Gutenberg Blocks WordPress plugin	contact@wpscan.com 2024-07-23 CVE-2024-4260
CVE-2024-6231	None	July 23, 2024, 6:15 a.m.	Request a Quote WordPress plugin	contact@wpscan.com 2024-07-23 CVE-2024-6231
CVE-2024-6420	None	July 23, 2024, 6:15 a.m.	Hide My WP Ghost WordPress plugin	contact@wpscan.com 2024-07-23 CVE-2024-6420
CVE-2024-41012	None	July 23, 2024, 8:15 a.m.	Linux Kernel	416baaa9-dc9f-4396-8d5f-8c081fb06d67 2024-07-23 CVE-2024-41012
CVE-2024-29070	None	July 23, 2024, 9:15 a.m.	UNKNOWN	security@apache.org CWE-613 2024-07-23 CVE-2024-29070
CVE-2024-7014	None	July 23, 2024, 10:15 a.m.	Telegram for Android	CWE-20 security@eset.com 2024-07-23 CVE-2024-7014
CVE-2024-40060	None	July 23, 2024, 3:15 p.m.	go-chart	cve@mitre.org 2024-07-23 CVE-2024-40060
CVE-2024-41319	None	July 23, 2024, 3:15 p.m.	TOTOLINK A6000R	cve@mitre.org 2024-07-23 CVE-2024-41319
CVE-2024-39702	None	July 23, 2024, 4:15 p.m.	OpenResty	cve@mitre.org 2024-07-23 CVE-2024-39702
CVE-2024-41178	None	July 23, 2024, 5:15 p.m.	Apache Arrow Rust Object Store (`object_store` crate)	security@apache.org CWE-532 2024-07-23 CVE-2024-41178

» Click here to see all Vulnerabilities «

Tag : 2024-07-23