Tag: 2024-08-20

6 Attack Reports | 142 Vulnerabilities

Attack reports

New Backdoor Targeting Taiwan Employs Stealthy Communications

A previously undiscovered backdoor malware, Backdoor.Msupedge, has been deployed in an attack against a university in Taiwan. This backdoor utilizes an atypical technique, communicating with a command-and-control server through DNS traffic. It receives commands by resolving structured host names, a…
CVE-2024-4577
2024-08-20
backdoor.msupedge
Published: August 20, 2024
Linked vulnerabilities : CVE-2024-4577 (CVSS 9.8)
Downloadable IOCs: 3

Best Laid Plans: TA453 Targets Religious Figure with Fake Podcast Invite Delivering New BlackSmith Malware Toolset

Proofpoint security researchers identified an Iranian threat group known as TA453 targeting a prominent religious figure through a sophisticated social engineering campaign. The threat actors impersonated a legitimate organization and invited the target to participate in a podcast interview. Upon e…
social engineering
iran
2024-08-20
anvilecho
blacksmith
Published: August 20, 2024
Downloadable IOCs: 10

Meet UULoader: An Emerging and Evasive Malicious Installer

An analysis uncovered a malicious installer dubbed 'UULoader', which employs creative techniques to evade detection, including file header stripping, side-loading legitimate executables, and obfuscation. This multi-staged approach to payload delivery proves effective at evading static detection, as…
gh0strat
mimikatz
2024-08-20
uuloader
Published: August 20, 2024
Downloadable IOCs: 23

Double Trouble: Latrodectus And ACR Stealer Observed Spreading Via Google Authenticator Phishing Site

The Cyble Research and Intelligence Lab (CRIL) discovered a sophisticated phishing website mimicking Google Safety Centre, designed to trick users into downloading malware. The malware, compromising security and stealing sensitive information, drops two threats: Latrodectus, which maintains persist…
malware
phishing
stealer
latrodectus
downloader
cybersecurity
acr stealer
2024-08-20
Published: August 20, 2024
Linked vulnerabilities : CVE-2024-21887, CVE-2023-46805, CVE-2021-44228, CVE-2017-11882, CVE-2024-21412, CVE-2024-21893
Downloadable IOCs: 15

Ongoing Social Engineering Campaign Refreshes Payloads

Rapid7 observed a shift in tools utilized by threat actors in an ongoing social engineering campaign. The initial lure involves an email bombing followed by calls to users offering fake solutions. Once connected remotely, threat actors deploy payloads for credential harvesting, establishing command…
phishing
2024-08-20
social_engineering
remote_access
update7.exe
credential_access
update4.exe
update8.exe
update6.exe
update7.ps1
update3.exe
update2.dll
update5.dll
lateral_movement
update1.exe
antispam.exe
CVE-2022-26923
Published: August 20, 2024
Linked vulnerabilities : CVE-2022-26923
Downloadable IOCs: 43

Major Payment Disruption: Ransomware Strikes Indian Banking Infrastructure

CloudSEK's threat research team uncovered a ransomware attack impacting banks and payment providers in India. The attack, initiated through a compromised Jenkins server at Brontoo Technology Solutions, is attributed to the RansomEXX ransomware group. This sophisticated threat actor employs tactics …
ransomware
vulnerability
india
banking
2024-08-20
jenkins
ransomexx
CVE-2024-23897
Published: August 20, 2024
Linked vulnerabilities : CVE-2024-23897
Downloadable IOCs: 18
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-7936

9.8
    Project Expense Monitoring System Project
  • Project Expense Monitoring System
Published: August 20, 2024

CVE-2024-7937

9.8
    Project Expense Monitoring System Project
  • Project Expense Monitoring System
Published: August 20, 2024

CVE-2024-5932

9.8
    Givewp
  • Givewp
Published: August 20, 2024

CVE-2024-7946

9.8
    Adonesevangelista
  • Online Blood Bank Management System
Published: August 20, 2024

CVE-2024-7947

9.8
    Janobe
  • Point Of Sales And Inventory Management System
Published: August 20, 2024

CVE-2024-6847

9.8
    Chatbot with ChatGPT WordPress plugin
Published: August 20, 2024

CVE-2024-43202

9.8
    Apache DolphinScheduler
Published: August 20, 2024

CVE-2024-42336

9.8
    Servision
  • Ivg Webmax
Published: August 20, 2024

CVE-2024-42556

9.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42558

9.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42559

9.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42562

9.8
    Pharmacy Management System
Published: August 20, 2024

CVE-2024-42563

9.8
    ERP
Published: August 20, 2024

CVE-2024-42565

9.8
    ERP
Published: August 20, 2024

CVE-2024-42566

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42567

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42568

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42569

9.8
    School Management System
Published: August 20, 2024

CVE-2024-42570

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42571

9.8
    School Management System
Published: August 20, 2024

CVE-2024-42572

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42573

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42574

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-42575

9.8
    Arajajyothibabu
  • School Management System
Published: August 20, 2024

CVE-2024-33872

9.8
    Keyfactor Command
Published: August 20, 2024

CVE-2024-8003

9.8
    Gotribe
  • Gotribe-Admin
Published: August 20, 2024

CVE-2024-8005

9.8
    Demozx
  • Gf Cms
Published: August 20, 2024

CVE-2024-30949

9.8
    Newlib Project
  • Newlib
Published: August 20, 2024

CVE-2024-43404

9.8
    Megacord
  • Megabot
Published: August 20, 2024

CVE-2024-42919

9.8
    eScan Management Console
Published: August 20, 2024

CVE-2024-6800

9.8
    Github
  • Enterprise Server
Published: August 20, 2024

CVE-2024-42361

9.8
    Apache
  • Hertzbeat
Published: August 20, 2024

CVE-2024-38175

9.6
    Azure Managed Instance for Apache Cassandra
Published: August 20, 2024

CVE-2024-27185

9.1
    Joomla
Published: August 20, 2024

CVE-2024-7777

9.0
    Bitapps
  • Contact Form Builder
Published: August 20, 2024

CVE-2024-35540

9.0
    Typecho
  • Typecho
Published: August 20, 2024

CVE-2024-7943

8.8
    Adonesevangelista
  • Laravel Property Management System
Published: August 20, 2024

CVE-2024-7827

8.8
    Shopping Cart & eCommerce Store plugin for WordPress
Published: August 20, 2024

CVE-2024-7944

8.8
    Adonesevangelista
  • Laravel Property Management System
Published: August 20, 2024

CVE-2024-7949

8.8
    Tamparongj 03
  • Online Graduate Tracer System
Published: August 20, 2024

CVE-2024-42553

8.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42554

8.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42555

8.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42557

8.8
    Hotel Management System
Published: August 20, 2024

CVE-2024-42561

8.8
    Pharmacy Management System
Published: August 20, 2024

CVE-2024-42576

8.8
    Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42577

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42579

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42580

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42581

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42582

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42583

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42584

8.8
    Siamonhasan
  • Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42585

8.8
    Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42586

8.8
    Warehouse Inventory System
Published: August 20, 2024

CVE-2024-42608

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-39690

8.8
    Projectcapsule
  • Capsule
Published: August 20, 2024

CVE-2024-42603

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42604

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42605

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42606

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42607

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42609

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42610

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42611

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42613

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42616

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42617

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42618

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-42621

8.8
    Pligg
  • Pligg Cms
Published: August 20, 2024

CVE-2024-43406

8.8
    Lfedge
  • Ekuiper
Published: August 20, 2024

CVE-2024-42612

8.8
    Pligg CMS
Published: August 20, 2024

CVE-2024-42619

8.8
    Pligg CMS
Published: August 20, 2024

CVE-2024-31842

8.8
    Italtel
  • Embrace
Published: August 20, 2024

CVE-2024-41657

8.8
    Casbin
  • Casdoor
Published: August 20, 2024

CVE-2024-42362

8.8
    Apache
  • Hertzbeat
Published: August 20, 2024

CVE-2024-42363

8.8
    Kubernetes
Published: August 20, 2024

CVE-2024-43403

8.8
    Kanister
Published: August 20, 2024

CVE-2024-42552

8.6
    Hotel Management System
Published: August 20, 2024

CVE-2024-41659

8.1
    memos
Published: August 20, 2024

CVE-2024-42578

8.0
    Warehouse Inventory System
Published: August 20, 2024

CVE-2024-7305

7.8
    AutoCAD
Published: August 20, 2024

CVE-2024-21689

7.6
    Bamboo Data Center
    Bamboo Server
Published: August 20, 2024

CVE-2024-42564

7.6
    ERP
Published: August 20, 2024

CVE-2024-41698

7.5
    Priority-Software
  • Priority
Published: August 20, 2024

CVE-2024-41699

7.5
    Priority-Software
  • Priority
Published: August 20, 2024

CVE-2024-41700

7.5
    Barix
  • Sip Client Firmware
Published: August 20, 2024

CVE-2024-6918

7.5
    Accutech Manager
Published: August 20, 2024

CVE-2024-34458

7.5
    Keyfactor
  • Command
Published: August 20, 2024

CVE-2024-42006

7.5
    Keyfactor
  • Aws Orchestrator
Published: August 20, 2024

CVE-2024-42662

7.5
    Apolloconfig
  • Apollo
Published: August 20, 2024

CVE-2024-27187

7.5
    Joomla
Published: August 20, 2024

CVE-2024-22281

7.5
    Apache Helix Front (UI)
Published: August 20, 2024

CVE-2024-43688

7.3
    OpenBSD
Published: August 20, 2024

CVE-2022-1206

7.2
    AdRotate Banner Manager plugin for WordPress
Published: August 20, 2024

CVE-2024-7702

7.2
    Bitapps
  • Contact Form Builder
Published: August 20, 2024

CVE-2024-7780

7.2
    Bitapps
  • Contact Form Builder
Published: August 20, 2024

CVE-2024-42598

6.7
    SeaCMS
Published: August 20, 2024

CVE-2024-38810

6.5
    Spring Security
Published: August 20, 2024

CVE-2024-7782

6.5
    Bitapps
  • Contact Form Builder
Published: August 20, 2024

CVE-2024-25009

6.5
    Ericsson Packet Core Controller (PCC)
Published: August 20, 2024

CVE-2024-43409

6.5
    Ghost
  • Ghost
Published: August 20, 2024

CVE-2024-41773

6.5
    Ibm
  • Global Configuration Management
Published: August 20, 2024

CVE-2024-6337

6.5
    Github
  • Enterprise Server
Published: August 20, 2024

CVE-2024-5576

6.4
    Tutor LMS Elementor Addons plugin for WordPress
Published: August 20, 2024

CVE-2024-7054

6.4
    Popup Maker plugin for WordPress
Published: August 20, 2024

CVE-2024-43408

6.3
    Discourse
Published: August 20, 2024

CVE-2024-7850

6.1
    BP Profile Search plugin for WordPress
Published: August 20, 2024

CVE-2024-41697

6.1
    Priority-Software
  • Priority
Published: August 20, 2024

CVE-2024-42560

6.1
    Blood Bank And Donation Management System
Published: August 20, 2024

CVE-2024-6377

6.1
    3ds
  • 3dexperience
Published: August 20, 2024

CVE-2024-6379

6.1
    3ds
  • 3dexperience
Published: August 20, 2024

CVE-2024-41658

6.1
    Casbin
  • Casdoor
Published: August 20, 2024

CVE-2024-43861

5.5
    Linux
  • Linux Kernel
Published: August 20, 2024

CVE-2024-7942

5.4
    Rems
  • Leads Manager Tool
Published: August 20, 2024

CVE-2024-5941

5.4
    Givewp
  • Givewp
Published: August 20, 2024

CVE-2024-7945

5.4
    Adonesevangelista
  • Laravel Property Management System
Published: August 20, 2024

CVE-2024-7948

5.4
    Rems
  • Account Manager App
Published: August 20, 2024

CVE-2024-5763

5.4
    Posimyth
  • The Plus Addons For Elementor
Published: August 20, 2024

CVE-2024-6575

5.4
    Posimyth
  • The Plus Addons For Elementor
Published: August 20, 2024

CVE-2024-6864

5.4
    Sayandatta
  • Wp Last Modified Info
Published: August 20, 2024

CVE-2024-42335

5.4
    7-Twenty
  • Bot
Published: August 20, 2024

CVE-2024-39094

5.4
    Friendica
  • Friendica
Published: August 20, 2024

CVE-2024-6378

5.4
    3ds
  • 3dexperience
Published: August 20, 2024

CVE-2024-43396

5.4
    Khoj
  • Khoj
Published: August 20, 2024

CVE-2024-5939

5.3
    Givewp
  • Givewp
Published: August 20, 2024

CVE-2024-5940

5.3
    Givewp
  • Givewp
Published: August 20, 2024

CVE-2024-42369

5.3
    Matrix
  • Javascript Sdk
Published: August 20, 2024

CVE-2024-43376

5.3
    Umbraco
  • Umbraco Cms
Published: August 20, 2024

CVE-2024-7775

4.8
    Bitapps
  • Contact Form Builder
Published: August 20, 2024

CVE-2024-6322

4.4
    Grafana
Published: August 20, 2024

CVE-2024-38808

4.3
    Spring Framework
Published: August 20, 2024

CVE-2024-43377

4.3
    Umbraco
  • Umbraco Cms
Published: August 20, 2024

CVE-2024-43397

4.3
    Apolloconfig
  • Apollo
Published: August 20, 2024

CVE-2024-7711

4.3
    Github
  • Enterprise Server
Published: August 20, 2024

CVE-2024-28829

None
    Checkmk
Published: August 20, 2024

CVE-2024-42334

None
    UNKNOWN
Published: August 20, 2024

CVE-2024-27184

None
    Joomla
Published: August 20, 2024

CVE-2024-27186

None
    Joomla
Published: August 20, 2024

CVE-2024-40743

None
    Joomla
Published: August 20, 2024

CVE-2023-1673

None
    UNKNOWN
Published: August 20, 2024

CVE-2024-35214

None
    CylanceOPTICS for Windows
Published: August 20, 2024
Click here to see more Vulnerabilities