Tag: 2024-07-30

5 Attack Reports | 171 Vulnerabilities

Attack reports

Analysis of Golang Payload and Information Theft Campaign

The report details a recent cyber attack campaign attributed to the APT-C-09 (Mozambique) threat group, which has historically targeted Pakistan and surrounding nations. The campaign employed a novel Golang malware payload and Quasar RAT to gather sensitive information. The analysis covers the tech…
malware
apt
espionage
pakistan
exfiltration
golang
2024-07-30
quasar
client.exe
winver.exe
Published: July 30, 2024
Downloadable IOCs: 8

Secret Message: Steganography Tricks of TA558 Group in Cyber Attacks on Enterprises in Russia and Belarus

F.A.C.C.T.'s Threat Intelligence analysts have investigated numerous cyberattacks by the TA558 group targeting enterprises, government institutions, and banks in Russia and Belarus. The attacks aimed to steal data and gain access to the organization's internal systems. TA558 used multi-stage phishi…
malware
phishing
social engineering
russia
belarus
remcos
steganography
CVE-2017-11882
agent tesla
2024-07-30
Published: July 30, 2024
Linked vulnerabilities : CVE-2017-11882
Downloadable IOCs: 74

Cryptomining Campaign Exploiting Grid Services

Wiz researchers discovered an ongoing threat campaign, dubbed 'SeleniumGreed', that exploits exposed Selenium Grid services for cryptomining. The campaign targets publicly accessible instances of Selenium Grid, an integral component of the widely used Selenium testing framework. By leveraging featu…
xmrig
cryptomining
threat
2024-07-30
webdriver
grid
selenium
Published: July 30, 2024
Downloadable IOCs: 14

SideWinder Utilizes New Infrastructure to Target Ports and Maritime Facilities in the Mediterranean Sea

BlackBerry's researchers have uncovered a new campaign by the nation-state threat actor SideWinder. The group employs sophisticated techniques, such as utilizing carefully crafted phishing emails with visual lures designed to target specific organizations. The campaign aims to compromise ports and …
espionage
phishing
vulnerability
nation-state
javascript
targeted
CVE-2017-0199
CVE-2017-11882
2024-07-30
infrastructure
maritime
Published: July 30, 2024
Linked vulnerabilities : CVE-2017-11882, CVE-2017-0199
Downloadable IOCs: 47

Mid-year Doppelganger information operations in Europe and the US

This investigation delves into information operations conducted by Russian actors known as Doppelgänger, focusing on their activities from early June to late-July 2024. It examines their tactics, associated infrastructure, and motivations, particularly in relation to the unexpected snap general ele…
disinformation
redirection
2024-07-30
elections
social media
russian actors
Published: July 30, 2024
Downloadable IOCs: 700
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-41702

9.8
    SiberianCMS
Published: July 30, 2024

CVE-2024-7212

8.8
    TOTOLINK A7000R
Published: July 30, 2024

CVE-2024-7213

8.8
    TOTOLINK A7000R
Published: July 30, 2024

CVE-2024-7297

8.8
    Langflow
Published: July 30, 2024

CVE-2024-41802

8.1
    Xibo
Published: July 30, 2024

CVE-2024-42225

7.5
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-38429

7.5
    Matrix Tafnit
Published: July 30, 2024

CVE-2024-41695

7.5
    Cybonet
Published: July 30, 2024

CVE-2024-41696

7.5
    Priority ERP
Published: July 30, 2024

CVE-2023-33976

7.5
    TensorFlow
Published: July 30, 2024

CVE-2024-7219

7.3
    SourceCodester School Log Management System
Published: July 30, 2024

CVE-2024-41915

7.2
    ClearPass Policy Manager
Published: July 30, 2024

CVE-2024-42228

7.0
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-41916

6.8
    ClearPass Policy Manager
Published: July 30, 2024

CVE-2024-41804

6.5
    Xibo
Published: July 30, 2024

CVE-2023-38001

6.5
    IBM Aspera Orchestrator
Published: July 30, 2024

CVE-2024-41944

6.5
    Xibo
Published: July 30, 2024

CVE-2024-37281

6.5
    Kibana
Published: July 30, 2024

CVE-2024-7100

6.4
    Bold Page Builder plugin for WordPress
Published: July 30, 2024

CVE-2024-5901

6.4
    SiteOrigin Widgets Bundle plugin for WordPress
Published: July 30, 2024

CVE-2024-7214

6.3
    TOTOLINK LR350
Published: July 30, 2024

CVE-2024-7215

6.3
    TOTOLINK LR1200
Published: July 30, 2024

CVE-2024-7217

6.3
    TOTOLINK CA300-PoE
Published: July 30, 2024

CVE-2024-7220

6.3
    SourceCodester School Log Management System
Published: July 30, 2024

CVE-2024-7221

6.3
    SourceCodester School Log Management System
Published: July 30, 2024

CVE-2024-7222

6.3
    SourceCodester Lot Reservation Management System
Published: July 30, 2024

CVE-2024-7223

6.3
    SourceCodester Lot Reservation Management System
Published: July 30, 2024

CVE-2024-7224

6.3
    SourceCodester Lot Reservation Management System
Published: July 30, 2024

CVE-2024-37165

6.3
    Discourse
Published: July 30, 2024

CVE-2024-41109

6.3
    Pimcore's Admin Classic Bundle
Published: July 30, 2024

CVE-2024-3930

6.3
    Akana API Platform
Published: July 30, 2024

CVE-2024-7273

6.3
    Alton Management System
Published: July 30, 2024

CVE-2024-41693

6.1
    Mashov
Published: July 30, 2024

CVE-2024-39320

6.1
    Discourse
Published: July 30, 2024

CVE-2024-5486

5.8
    ClearPass Policy Manager
Published: July 30, 2024

CVE-2024-42231

5.5
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-38432

5.5
    UNKNOWN
Published: July 30, 2024

CVE-2023-26288

5.5
    IBM Aspera Orchestrator
Published: July 30, 2024

CVE-2024-38430

5.4
    Matrix
Published: July 30, 2024

CVE-2023-26289

5.4
    IBM Aspera Orchestrator
Published: July 30, 2024

CVE-2024-5249

5.4
    Akana API Platform
Published: July 30, 2024

CVE-2024-38431

5.3
    Matrix Tafnit
Published: July 30, 2024

CVE-2024-41694

5.3
    Cybonet
Published: July 30, 2024

CVE-2024-41701

5.3
    AccuPOS
Published: July 30, 2024

CVE-2024-37299

4.9
    Discourse
Published: July 30, 2024

CVE-2024-41803

4.9
    Xibo
Published: July 30, 2024

CVE-2024-42227

4.7
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-7274

4.7
    Alton Management System
Published: July 30, 2024

CVE-2024-42226

4.6
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-41943

4.6
    I, Librarian
Published: July 30, 2024

CVE-2024-42230

4.4
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2024-7226

4.3
    SourceCodester Medicine Tracker System
Published: July 30, 2024

CVE-2024-42229

4.1
    Linux
  • Linux Kernel
Published: July 30, 2024

CVE-2022-33167

3.7
    IBM Security Directory Integrator
    IBM Security Verify Directory Integrator
Published: July 30, 2024

CVE-2024-7218

3.5
    SourceCodester School Log Management System
Published: July 30, 2024

CVE-2024-7225

3.5
    SourceCodester Insurance Management System
Published: July 30, 2024

CVE-2024-5250

3.5
    Akana API Platform
Published: July 30, 2024

CVE-2024-41945

3.1
    fuels-ts
Published: July 30, 2024

CVE-2024-7216

2.6
    TOTOLINK LR1200
Published: July 30, 2024

CVE-2024-1286

None
    pmpro-membership-maps WordPress plugin
Published: July 30, 2024

CVE-2024-1287

None
    pmpro-member-directory WordPress plugin
Published: July 30, 2024

CVE-2024-3113

None
    FormFlow: WhatsApp Social and Advanced Form Builder with Easy Lead Collection WordPress plugin
Published: July 30, 2024

CVE-2024-3669

None
    Web Directory Free WordPress plugin
Published: July 30, 2024

CVE-2024-3986

None
    SportsPress WordPress plugin
Published: July 30, 2024

CVE-2024-4096

None
    Responsive Tabs WordPress plugin
Published: July 30, 2024

CVE-2024-5765

None
    WpStickyBar WordPress plugin
Published: July 30, 2024

CVE-2024-5807

None
    Business Card WordPress plugin
Published: July 30, 2024

CVE-2024-5808

None
    WP Ajax Contact Form WordPress plugin
Published: July 30, 2024

CVE-2024-5809

None
    WP Ajax Contact Form WordPress plugin
Published: July 30, 2024

CVE-2024-5975

None
    CZ Loan Management WordPress plugin
Published: July 30, 2024

CVE-2024-6021

None
    Donation Block For PayPal WordPress plugin
Published: July 30, 2024

CVE-2024-6223

None
    Send email only on Reply to My Comment WordPress plugin
Published: July 30, 2024

CVE-2024-6224

None
    Send email only on Reply to My Comment WordPress plugin
Published: July 30, 2024

CVE-2024-6226

None
    WpStickyBar WordPress plugin
Published: July 30, 2024

CVE-2024-6230

None
    پلاگین پرداخت دلخواه WordPress plugin
Published: July 30, 2024

CVE-2024-6536

None
    Zephyr Project Manager WordPress plugin
Published: July 30, 2024

CVE-2024-40094

None
    GraphQL Java (graphql-java)
Published: July 30, 2024

CVE-2023-52888

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42099

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42100

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42101

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42102

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42103

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42104

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42105

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42106

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42107

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42108

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42109

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42110

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42111

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42112

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42113

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42114

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42115

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42116

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42117

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42118

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42119

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42120

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42121

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42122

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42123

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42124

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42125

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42126

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42127

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42128

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42129

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42130

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42131

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42132

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42133

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42134

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42135

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42136

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42137

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42138

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42139

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42140

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42141

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42142

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42143

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42144

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42145

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42146

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42147

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42148

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42149

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42150

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42151

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42152

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42153

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42154

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42155

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42156

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42157

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42158

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42159

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42160

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42161

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42162

None
    Linux kernel
Published: July 30, 2024

CVE-2024-42223

None
    Linux Kernel
Published: July 30, 2024

CVE-2024-42224

None
    Linux Kernel
Published: July 30, 2024

CVE-2023-48396

None
    Apache SeaTunnel
Published: July 30, 2024

CVE-2024-40895

None
    FFRI AMC
Published: July 30, 2024

CVE-2024-41141

None
    EC-CUBE Web API Plugin
Published: July 30, 2024

CVE-2024-41924

None
    EC-CUBE
Published: July 30, 2024

CVE-2024-7127

None
    Stackposts Social Marketing Tool
Published: July 30, 2024

CVE-2024-6699

None
    Mikafon MA7
Published: July 30, 2024

CVE-2024-23091

None
    HotelDruid
Published: July 30, 2024

CVE-2024-38909

None
    Studio 42 elFinder
Published: July 30, 2024

CVE-2024-4188

None
    OpenText Documentum Server
Published: July 30, 2024

CVE-2024-7208

None
    UNKNOWN
Published: July 30, 2024

CVE-2024-7209

None
    UNKNOWN
Published: July 30, 2024

CVE-2024-41304

None
    WonderCMS
Published: July 30, 2024

CVE-2024-41305

None
    WonderCMS
Published: July 30, 2024

CVE-2024-41437

None
    hicolor
Published: July 30, 2024

CVE-2024-41438

None
    hicolor
Published: July 30, 2024

CVE-2024-41439

None
    hicolor
Published: July 30, 2024

CVE-2024-41440

None
    hicolor
Published: July 30, 2024

CVE-2024-41443

None
    hicolor
Published: July 30, 2024

CVE-2024-36572

None
    allpro form-manager
Published: July 30, 2024

CVE-2024-38984

None
    json-override
Published: July 30, 2024

CVE-2024-38986

None
    lodash
Published: July 30, 2024

CVE-2024-39010

None
    UNKNOWN
Published: July 30, 2024

CVE-2024-39011

None
    chargeover redoc
Published: July 30, 2024

CVE-2024-39012

None
    ais-ltd strategyen
Published: July 30, 2024

CVE-2024-41610

None
    D-Link DIR-820LW REVB
Published: July 30, 2024

CVE-2024-41611

None
    D-Link DIR-860L REVA
Published: July 30, 2024

CVE-2024-38983

None
    alykoshin mini-deep-assign
Published: July 30, 2024
Click here to see more Vulnerabilities