SecuriTricks - 2024-08-19

Attack Reports

Title	Published	Tags	Description	Number of indicators
SMS Spam Shipping Multi-Tool Targeting SaaS Credentials	Aug. 19, 2024, 5:14 p.m.	smishing 2024-08-19 xeon sender	Xeon Sender is a Python script that enables threat actors to conduct SMS spam and smishing campaigns by leveraging legitimate API…	0
Ailurophile: G DATA has sighted a new info stealer in the wild	Aug. 19, 2024, 1:39 p.m.	infostealer stealer exfiltration credential theft 2024-08-19 cryptocurrency theft ailurophile stealer	G DATA has detected a novel information-stealing malware, dubbed 'Ailurophile Stealer'. It is a PHP-based stealer offered through…	2
Strike Ready: Introducing the Bitter APT Group	Aug. 19, 2024, 1:35 p.m.	espionage persistence infostealers backdoors 2024-08-19 olmapi32.dll scm.exe stom.jpg sparrow.jpg schs.exe orpcbackdoor figlio.exe sstn.exe payloads searchapp.jpg	The report provides an in-depth analysis of the Bitter APT Group, a threat actor primarily focusing on cyber espionage activities…	82
TodoSwift Disguises Malware Download Behind Bitcoin PDF	Aug. 19, 2024, 1:35 p.m.	cryptocurrency macos dropper 2024-08-19 rustbucket kandykorn todoswift	This report details a macOS threat actor likely originating from North Korea that employs a dropper application written in Swift/…	7
The Abuse of ITarian RMM by Dolphin Loader	Aug. 19, 2024, 1:24 p.m.	stealthy python lummac2 rhadamanthys rmm darkgate redline autoit malware-as-a-service sectoprat 2024-08-19 itarian evade dolphin loader	This report explores how the Dolphin Loader, a malware-as-a-service loader, abuses the legitimate ITarian Remote Monitoring and M…	24
Exploring the D3F@ck Malware-as-a-Service Loader	Aug. 19, 2024, 1:17 p.m.	malware loader obfuscation stealer danabot metastealer sectoprat 2024-08-19 raccoon stealer certificates d3f@ck loader	This report analyzes the D3F@ck Loader, a malware-as-a-service (MaaS) offering orchestrated by an individual going by the alias S…	4

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-37099	10.0	Aug. 19, 2024, 5:15 p.m.	GiveWP	audit@patchstack.com CWE-502 2024-08-19 CVE-2024-37099
CVE-2024-43249	9.9	Aug. 19, 2024, 6:15 p.m.	Bit Form Pro	audit@patchstack.com CWE-434 2024-08-19 CVE-2024-43249
CVE-2024-44076	9.8	Aug. 19, 2024, 3:15 a.m.	Microcks	cve@mitre.org CWE-269 2024-08-19 CVE-2024-44076
CVE-2024-44083	9.8	Aug. 19, 2024, 4:15 a.m.	Hex-Rays IDA Pro	cve@mitre.org CWE-400 2024-08-19 CVE-2024-44083
CVE-2024-6330	9.8	Aug. 19, 2024, 6:15 a.m.	GEO my WP WordPress plugin	contact@wpscan.com 2024-08-19 CVE-2024-6330
CVE-2024-43245	9.8	Aug. 19, 2024, 6:15 p.m.	eyecix JobSearch	CWE-269 audit@patchstack.com 2024-08-19 CVE-2024-43245
CVE-2024-42813	9.8	Aug. 19, 2024, 8:15 p.m.	TRENDnet TEW-752DRU	cve@mitre.org CWE-120 2024-08-19 CVE-2024-42813
CVE-2024-43311	9.8	Aug. 19, 2024, 8:15 p.m.	Login As Users	CWE-269 audit@patchstack.com 2024-08-19 CVE-2024-43311
CVE-2024-43354	9.8	Aug. 19, 2024, 8:15 p.m.	myCred	audit@patchstack.com CWE-502 2024-08-19 CVE-2024-43354
CVE-2024-43261	9.6	Aug. 19, 2024, 6:15 p.m.	Compute Links	audit@patchstack.com CWE-98 2024-08-19 CVE-2024-43261
CVE-2024-43240	9.4	Aug. 19, 2024, 5:15 p.m.	Ultimate Membership Pro	CWE-269 audit@patchstack.com 2024-08-19 CVE-2024-43240
CVE-2024-43400	9.0	Aug. 19, 2024, 5:15 p.m.	XWiki Platform	security-advisories@github.com CWE-96 2024-08-19 CVE-2024-43400
CVE-2024-43401	9.0	Aug. 19, 2024, 5:15 p.m.	XWiki Platform	security-advisories@github.com CWE-269 2024-08-19 CVE-2024-43401
CVE-2024-43242	9.0	Aug. 19, 2024, 6:15 p.m.	Ultimate Membership Pro	audit@patchstack.com CWE-502 2024-08-19 CVE-2024-43242
CVE-2024-43252	9.0	Aug. 19, 2024, 6:15 p.m.	Crew HRM	audit@patchstack.com CWE-502 2024-08-19 CVE-2024-43252
CVE-2024-42658	8.8	Aug. 19, 2024, 5:15 p.m.	wishnet Nepstech Wifi Router NTPL-XPON1GFEVN	cve@mitre.org CWE-200 2024-08-19 CVE-2024-42658
CVE-2024-43247	8.8	Aug. 19, 2024, 6:15 p.m.	WHMpress	audit@patchstack.com CWE-862 2024-08-19 CVE-2024-43247
CVE-2024-43248	8.6	Aug. 19, 2024, 6:15 p.m.	Bit Form Pro	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43248
CVE-2024-43221	8.5	Aug. 19, 2024, 5:15 p.m.	Crocoblock JetGridBuilder	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43221
CVE-2024-43232	8.5	Aug. 19, 2024, 5:15 p.m.	WP OnlineSupport	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43232
CVE-2024-43271	8.5	Aug. 19, 2024, 6:15 p.m.	Themelocation Woo Products Widgets For Elementor	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43271
CVE-2024-43328	8.3	Aug. 19, 2024, 8:15 p.m.	WPDeveloper EmbedPress	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43328
CVE-2024-43399	8.0	Aug. 19, 2024, 3:15 p.m.	Mobile Security Framework (MobSF)	security-advisories@github.com CWE-23 2024-08-19 CVE-2024-43399
CVE-2024-32927	7.8	Aug. 19, 2024, 5:15 p.m.	UNKNOWN	CWE-416 dsap-vuln-management@google.com 2024-08-19 CVE-2024-32927
CVE-2024-4785	7.6	Aug. 19, 2024, 10:15 p.m.	UNKNOWN	CWE-20 vulnerabilities@zephyrproject.org 2024-08-19 CVE-2024-4785
CVE-2024-43345	7.5	Aug. 19, 2024, 8:15 p.m.	PluginOps Landing Page Builder	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43345
CVE-2024-7926	7.3	Aug. 19, 2024, 8:15 p.m.	ZZCMS	CWE-22 cna@vuldb.com 2024-08-19 CVE-2024-7926
CVE-2024-7927	7.3	Aug. 19, 2024, 8:15 p.m.	ZZCMS	CWE-22 cna@vuldb.com 2024-08-19 CVE-2024-7927
CVE-2024-6451	7.2	Aug. 19, 2024, 6:15 a.m.	AI Engine WordPress plugin	contact@wpscan.com 2024-08-19 CVE-2024-6451
CVE-2024-43250	7.1	Aug. 19, 2024, 6:15 p.m.	Bit Form Pro	audit@patchstack.com CWE-863 2024-08-19 CVE-2024-43250
CVE-2024-43256	7.1	Aug. 19, 2024, 6:15 p.m.	Leopard - WordPress offload media	audit@patchstack.com CWE-862 2024-08-19 CVE-2024-43256
CVE-2024-7922	6.3	Aug. 19, 2024, 3:15 p.m.	D-Link DNS Series	cna@vuldb.com CWE-77 2024-08-19 CVE-2024-7922
CVE-2024-7930	6.3	Aug. 19, 2024, 10:15 p.m.	SourceCodester Clinics Patient Management System	CWE-89 cna@vuldb.com 2024-08-19 CVE-2024-7930
CVE-2024-7931	6.3	Aug. 19, 2024, 10:15 p.m.	SourceCodester Online Graduate Tracer System	CWE-89 cna@vuldb.com 2024-08-19 CVE-2024-7931
CVE-2024-25582	5.4	Aug. 19, 2024, 7:15 a.m.	Open-Xchange	CWE-79 security@open-xchange.com 2024-08-19 CVE-2024-25582
CVE-2024-43326	5.4	Aug. 19, 2024, 8:15 p.m.	Jamie Bergen Plugin Notes Plus	audit@patchstack.com CWE-862 2024-08-19 CVE-2024-43326
CVE-2024-7919	5.3	Aug. 19, 2024, 12:15 a.m.	Anhui Deshun Intelligent Technology Jieshun JieLink+	CWE-284 cna@vuldb.com 2024-08-19 CVE-2024-7919
CVE-2024-43380	5.3	Aug. 19, 2024, 3:15 p.m.	fugit	security-advisories@github.com CWE-400 2024-08-19 CVE-2024-43380
CVE-2024-43272	5.3	Aug. 19, 2024, 6:15 p.m.	Icegram	audit@patchstack.com CWE-306 2024-08-19 CVE-2024-43272
CVE-2024-43281	5.3	Aug. 19, 2024, 6:15 p.m.	VOID CODERS Void Elementor Post Grid Addon for Elementor Page builder	audit@patchstack.com CWE-22 2024-08-19 CVE-2024-43281
CVE-2024-7924	5.3	Aug. 19, 2024, 6:15 p.m.	ZZCMS	CWE-22 cna@vuldb.com 2024-08-19 CVE-2024-7924
CVE-2024-7929	5.3	Aug. 19, 2024, 10:15 p.m.	SourceCodester Simple Forum Website	CWE-79 cna@vuldb.com 2024-08-19 CVE-2024-7929
CVE-2024-43236	4.7	Aug. 19, 2024, 5:15 p.m.	Easy PayPal Buy Now Button	audit@patchstack.com CWE-601 2024-08-19 CVE-2024-43236
CVE-2024-43280	4.7	Aug. 19, 2024, 6:15 p.m.	Salon Booking System	audit@patchstack.com CWE-601 2024-08-19 CVE-2024-43280
CVE-2024-7920	4.3	Aug. 19, 2024, 12:15 a.m.	Anhui Deshun Intelligent Technology Jieshun JieLink+	CWE-284 cna@vuldb.com 2024-08-19 CVE-2024-7920
CVE-2024-7921	4.3	Aug. 19, 2024, 3:15 a.m.	Anhui Deshun Intelligent Technology Jieshun JieLink+ JSOTC2016	CWE-284 cna@vuldb.com 2024-08-19 CVE-2024-7921
CVE-2024-7925	4.3	Aug. 19, 2024, 6:15 p.m.	ZZCMS	CWE-200 cna@vuldb.com 2024-08-19 CVE-2024-7925
CVE-2024-43317	4.3	Aug. 19, 2024, 8:15 p.m.	RegistrationMagic	CWE-79 audit@patchstack.com 2024-08-19 CVE-2024-43317
CVE-2024-7928	4.3	Aug. 19, 2024, 10:15 p.m.	FastAdmin	CWE-22 cna@vuldb.com 2024-08-19 CVE-2024-7928
CVE-2024-43379	3.4	Aug. 19, 2024, 3:15 p.m.	TruffleHog	security-advisories@github.com CWE-918 2024-08-19 CVE-2024-43379
CVE-2024-44067	None	Aug. 19, 2024, 1:15 a.m.	T-Head XuanTie C910 CPU in TH1520 SoC	cve@mitre.org 2024-08-19 CVE-2024-44067
CVE-2024-44069	None	Aug. 19, 2024, 2:15 a.m.	Pi-hole	cve@mitre.org 2024-08-19 CVE-2024-44069
CVE-2024-44070	None	Aug. 19, 2024, 2:15 a.m.	FRRouting (FRR)	cve@mitre.org 2024-08-19 CVE-2024-44070
CVE-2024-44073	None	Aug. 19, 2024, 3:15 a.m.	Miniscript (rust-miniscript)	cve@mitre.org 2024-08-19 CVE-2024-44073
CVE-2024-6843	None	Aug. 19, 2024, 6:15 a.m.	Chatbot with ChatGPT WordPress plugin	contact@wpscan.com 2024-08-19 CVE-2024-6843
CVE-2024-42675	None	Aug. 19, 2024, 9:15 a.m.	UNKNOWN	cve@mitre.org 2024-08-19 CVE-2024-42675
CVE-2024-39306	None	Aug. 19, 2024, 2:15 p.m.	UNKNOWN	security-advisories@github.com 2024-08-19 CVE-2024-39306
CVE-2024-43372	None	Aug. 19, 2024, 2:15 p.m.	UNKNOWN	security-advisories@github.com 2024-08-19 CVE-2024-43372
CVE-2022-1443	None	Aug. 19, 2024, 3:15 p.m.	UNKNOWN	security@wordfence.com 2024-08-19 CVE-2022-1443
CVE-2022-4404	None	Aug. 19, 2024, 4:15 p.m.	UNKNOWN	security@wordfence.com 2024-08-19 CVE-2022-4404
CVE-2022-4411	None	Aug. 19, 2024, 4:15 p.m.	UNKNOWN	security@wordfence.com 2024-08-19 CVE-2022-4411
CVE-2022-4425	None	Aug. 19, 2024, 4:15 p.m.	UNKNOWN	security@wordfence.com 2024-08-19 CVE-2022-4425
CVE-2024-42633	None	Aug. 19, 2024, 4:15 p.m.	Linksys E1500	cve@mitre.org 2024-08-19 CVE-2024-42633
CVE-2024-6348	None	Aug. 19, 2024, 4:15 p.m.	Nissan Altima Blind Spot Protection Sensor ECU	CWE-330 cve@asrg.io 2024-08-19 CVE-2024-6348
CVE-2024-32928	None	Aug. 19, 2024, 5:15 p.m.	libcurl	dsap-vuln-management@google.com 2024-08-19 CVE-2024-32928
CVE-2024-42657	None	Aug. 19, 2024, 5:15 p.m.	wishnet Nepstech Wifi Router NTPL-XPON1GFEVN	cve@mitre.org 2024-08-19 CVE-2024-42657
CVE-2024-23729	None	Aug. 19, 2024, 7:15 p.m.	ColorOS Internet Browser	cve@mitre.org 2024-08-19 CVE-2024-23729
CVE-2024-7592	None	Aug. 19, 2024, 7:15 p.m.	CPython	CWE-400 cna@python.org 2024-08-19 CVE-2024-7592
CVE-2024-42812	None	Aug. 19, 2024, 8:15 p.m.	D-Link DIR-860L	cve@mitre.org 2024-08-19 CVE-2024-42812
CVE-2024-42815	None	Aug. 19, 2024, 8:15 p.m.	TP-Link RE365	cve@mitre.org 2024-08-19 CVE-2024-42815
CVE-2024-7958	None	Aug. 19, 2024, 8:15 p.m.	UNKNOWN	cna@python.org 2024-08-19 CVE-2024-7958
CVE-2024-35538	None	Aug. 19, 2024, 9:15 p.m.	Typecho	cve@mitre.org 2024-08-19 CVE-2024-35538
CVE-2024-35539	None	Aug. 19, 2024, 9:15 p.m.	Typecho	cve@mitre.org 2024-08-19 CVE-2024-35539

» Click here to see all Vulnerabilities «

Tag : 2024-08-19