Today > vulnerabilities - You can now download lists of IOCs here!

Tag: 2024-09-03

3 attack reports | 72 vulnerabilities

Attack reports

Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads

Multiple Microsoft Office documents generated by the MacroPack framework have been discovered, likely used by malicious actors to deploy various payloads. These documents, uploaded to VirusTotal between May and July 2024, originated from different countries including China, Pakistan, Russia, and th…

Published: September 3, 2024

Downloadable IOCs 16

Zharkbot Strings

Zharkbot is a C++ downloader with extensive anti-analysis and anti-sandbox features. It uses in-line string encryption and API calls, making static and emulation analysis challenging. The malware performs sandbox detection by checking for specific usernames and hypervisors. It installs itself in th…

string encryption

c2 communication

Published: September 3, 2024

Downloadable IOCs 2

Advanced Persistent Threat Targeting Vietnamese Human Rights Defenders

A long-term intrusion targeting a Vietnamese human rights non-profit organization has been discovered, likely spanning at least four years. The attack shows significant overlaps with techniques used by APT32/OceanLotus, a threat actor known for targeting Vietnamese activists. The intrusion involved…

dll side-loading

Published: September 3, 2024

Downloadable IOCs 46

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-8380

SourceCodester Contact Manager with Export to VCF

Published: September 3, 2024

CVE-2024-7261

Zyxel NWA1123ACv3

Published: September 3, 2024

CVE-2024-44921

Published: September 3, 2024

CVE-2024-8381

Published: September 3, 2024

CVE-2024-8384

Published: September 3, 2024

CVE-2024-8385

Published: September 3, 2024

CVE-2024-8387

Published: September 3, 2024

CVE-2024-8389

Published: September 3, 2024

CVE-2024-4259

Published: September 3, 2024

CVE-2024-45307

Published: September 3, 2024

CVE-2024-45390

@blakeembrey/template

Published: September 3, 2024

CVE-2024-41433

PingCAP TiDB

Published: September 3, 2024

CVE-2024-44809

Pi Camera project

Published: September 3, 2024

CVE-2024-7345

Published: September 3, 2024

CVE-2024-45586

Symphony XTS Web Trading and Mobile Trading platforms

Published: September 3, 2024

CVE-2024-45587

Symphony XTS Web Trading platform

Published: September 3, 2024

CVE-2024-8382

Published: September 3, 2024

CVE-2023-49233

Visual Planning Admin Center

Published: September 3, 2024

CVE-2024-42902

Published: September 3, 2024

CVE-2024-7970

Google Chrome

Published: September 3, 2024

CVE-2024-8362

Google Chrome

Published: September 3, 2024

CVE-2024-42057

Zyxel ATP series

Published: September 3, 2024

CVE-2024-45588

Symphony XTS Web Trading platform

Published: September 3, 2024

CVE-2024-42991

Published: September 3, 2024

CVE-2024-38811

VMware Fusion

Published: September 3, 2024

CVE-2024-3655

Arm Ltd Bifrost GPU Kernel Driver

Published: September 3, 2024

CVE-2024-8374

Ultimaker Cura slicer

Published: September 3, 2024

CVE-2024-6473

Yandex Browser for Desktop

Published: September 3, 2024

CVE-2024-38456

Published: September 3, 2024

CVE-2024-45394

Authenticator browser extension

Published: September 3, 2024

CVE-2024-42058

Zyxel ATP series

Published: September 3, 2024

CVE-2024-5412

Zyxel VMG8825-T50K firmware

Published: September 3, 2024

CVE-2024-6232

Published: September 3, 2024

CVE-2024-8383

Published: September 3, 2024

CVE-2024-6119

Published: September 3, 2024

CVE-2024-41435

Published: September 3, 2024

CVE-2024-41436

Published: September 3, 2024

CVE-2024-45391

@tinacms/cli

Published: September 3, 2024

CVE-2024-42059

Zyxel ATP series

Published: September 3, 2024

CVE-2024-42060

Zyxel ATP series

Published: September 3, 2024

CVE-2024-7203

Zyxel ATP series

Published: September 3, 2024

CVE-2024-42903

Published: September 3, 2024

CVE-2024-4629

Published: September 3, 2024

CVE-2024-42061

Zyxel ATP series

Published: September 3, 2024

CVE-2024-44920

Published: September 3, 2024

CVE-2024-8386

Published: September 3, 2024

CVE-2024-7654

OpenEdge Management

Published: September 3, 2024

CVE-2024-42904

Published: September 3, 2024

CVE-2024-43412

Published: September 3, 2024

CVE-2024-45180

SquaredUp DS for SCOM

Published: September 3, 2024

CVE-2024-45389

Published: September 3, 2024

CVE-2024-8388

Firefox for Android

Published: September 3, 2024

CVE-2024-34463

BPL Personal Weighing Scale PWS-01BT IND/09/18/599

Published: September 3, 2024

CVE-2024-6343

Zyxel ATP series

Published: September 3, 2024

CVE-2024-37136

Dell Path to PowerProtect

Published: September 3, 2024

CVE-2024-43803

Bare Metal Operator (BMO)

Published: September 3, 2024

CVE-2024-7346

Published: September 3, 2024

CVE-2024-42901

Lime Survey

Published: September 3, 2024

CVE-2024-43413

Published: September 3, 2024

CVE-2024-8399

Focus for iOS

Published: September 3, 2024

CVE-2024-41434

PingCAP TiDB

Published: September 3, 2024

CVE-2024-45619

Published: September 3, 2024

CVE-2024-45678

Yubico YubiKey 5 Series devices

Published: September 3, 2024

CVE-2024-45615

Published: September 3, 2024

CVE-2024-45616

Published: September 3, 2024

CVE-2024-45617

Published: September 3, 2024

CVE-2024-45618

Published: September 3, 2024

CVE-2024-45620

Published: September 3, 2024

CVE-2024-45310

Published: September 3, 2024

CVE-2024-41718

Published: September 3, 2024

CVE-2024-8371

Published: September 3, 2024

CVE-2024-7619

Published: September 3, 2024

» Click here to see all Vulnerabilities «