Today > vulnerabilities - You can now download lists of IOCs here!

Tag: 2024-09-11

5 attack reports | 111 vulnerabilities

Attack reports

New RansomHub attack uses TDSKiller and LaZagne, disables EDR

A recent analysis by the ThreatDown MDR team has uncovered a novel attack method employed by the RansomHub ransomware gang. The attackers are utilizing two tools: TDSSKiller, a legitimate Kaspersky rootkit removal utility, to disable endpoint detection and response (EDR) systems, and LaZagne, a cre…

credential harvesting

network segmentation

Published: September 11, 2024

Downloadable IOCs 2

Ransomware in the Cloud: Scattered Spider Targeting Insurance and Financial Industries

The Scattered Spider cybercriminal group is targeting cloud infrastructures in the insurance and financial sectors using advanced techniques. They exploit leaked authentication tokens, conduct phishing and smishing campaigns, and leverage SIM swapping to bypass multi-factor authentication. The grou…

redline stealer

raccoon stealer

Published: September 11, 2024

Downloadable IOCs 12

Threat Assessment: Repellent Scorpius, Distributors of Cicada3301 Ransomware

Repellent Scorpius is a new ransomware-as-a-service group distributing Cicada3301 ransomware. It emerged in May 2024 and employs double extortion tactics involving data theft. The report covers a technical analysis of the Cicada3301 ransomware, the group's tactics, connections to historical inciden…

Published: September 11, 2024

Downloadable IOCs 8

BLX STEALER

Identified as a sophisticated dropper binary designed to deploy an information stealer dubbed BLX Stealer or XLABB Stealer, this malware has been actively promoted on Telegram and Discord platforms. It targets credentials, browser data, cryptocurrency wallets, and other sensitive personal informati…

data exfiltration

Published: September 11, 2024

Downloadable IOCs 5

There's Something About CryptBot: Yet Another Silly Stealer

This report provides an in-depth technical analysis of a new variant of the CryptBot infostealer, dubbed Yet Another Silly Stealer (YASS). It details the delivery chain, involving the MustardSandwich downloader, and dissects the YASS payload's functionalities, including its data gathering, encrypti…

mustardsandwich

Published: September 11, 2024

Downloadable IOCs 13

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-8277

WooCommerce Photo Reviews Premium plugin for WordPress

Published: September 11, 2024

CVE-2024-45790

Reedos aiM-Star

Published: September 11, 2024

CVE-2024-6091

significant-gravitas/autogpt

Published: September 11, 2024

CVE-2024-27112

SO Planning

Published: September 11, 2024

CVE-2024-27113

SO Planning tool

Published: September 11, 2024

CVE-2024-27114

SO Planning

Published: September 11, 2024

CVE-2024-27115

SO Planning

Published: September 11, 2024

CVE-2024-44466

COMFAST CF-XR11

Published: September 11, 2024

CVE-2024-44541

evilnapsis Inventio Lite

Published: September 11, 2024

CVE-2024-8692

TDuckCloud TDuckPro

Published: September 11, 2024

CVE-2024-8253

WordPress Post Grid and Gutenberg Blocks plugin

Published: September 11, 2024

CVE-2024-8636

Published: September 11, 2024

CVE-2024-8637

Published: September 11, 2024

CVE-2024-8638

Published: September 11, 2024

CVE-2024-8639

Published: September 11, 2024

CVE-2024-20381

Cisco Crosswork Network Services Orchestrator (NSO)

Published: September 11, 2024

CVE-2024-44570

Published: September 11, 2024

CVE-2024-44571

Published: September 11, 2024

CVE-2024-44572

Published: September 11, 2024

CVE-2024-44574

Published: September 11, 2024

CVE-2024-44577

Published: September 11, 2024

CVE-2024-31336

Published: September 11, 2024

CVE-2024-21529

Published: September 11, 2024

CVE-2024-7626

WP Delicious - Recipe Plugin for Food Bloggers (formerly Delicious Recipes) plugin for WordPress

Published: September 11, 2024

CVE-2024-8642

Eclipse Dataspace Components

Published: September 11, 2024

CVE-2024-43690

Command Centre Server

Published: September 11, 2024

CVE-2024-40650

Published: September 11, 2024

CVE-2024-40655

Published: September 11, 2024

CVE-2024-40657

Published: September 11, 2024

CVE-2024-40658

Published: September 11, 2024

CVE-2024-40662

Published: September 11, 2024

CVE-2024-8306

Published: September 11, 2024

CVE-2024-39378

Published: September 11, 2024

CVE-2024-45026

Linux kernel

Published: September 11, 2024

CVE-2024-5760

Samsung Universal Print Driver for Windows

Published: September 11, 2024

CVE-2024-20398

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-45327

Published: September 11, 2024

CVE-2024-45788

Reedos aiM-Star

Published: September 11, 2024

CVE-2024-7609

Vidco Software VOC TESTER

Published: September 11, 2024

CVE-2024-20304

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-42760

Published: September 11, 2024

CVE-2024-23716

Linux Kernel

Published: September 11, 2024

CVE-2024-20317

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-20406

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-40652

Android Settings app

Published: September 11, 2024

CVE-2019-25212

video carousel slider with lightbox plugin for WordPress

Published: September 11, 2024

CVE-2024-20483

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-8686

Palo Alto Networks PAN-OS

Published: September 11, 2024

CVE-2024-45023

Linux kernel

Published: September 11, 2024

CVE-2024-8687

Palo Alto Networks PAN-OS software

Published: September 11, 2024

CVE-2024-24972

Controller 6000

Published: September 11, 2024

CVE-2024-8096

Published: September 11, 2024

CVE-2024-45786

Reedos aiM-Star

Published: September 11, 2024

CVE-2024-45787

Reedos aiM-Star

Published: September 11, 2024

CVE-2024-43793

Published: September 11, 2024

CVE-2024-8705

Published: September 11, 2024

CVE-2024-23906

Controller 6000

Published: September 11, 2024

CVE-2024-8646

Eclipse Glassfish

Published: September 11, 2024

CVE-2024-7312

Payara Platform Payara Server

Published: September 11, 2024

CVE-2024-41868

Published: September 11, 2024

CVE-2024-45009

Linux kernel

Published: September 11, 2024

CVE-2024-45010

Linux kernel

Published: September 11, 2024

CVE-2024-45011

Linux kernel

Published: September 11, 2024

CVE-2024-45012

Linux kernel

Published: September 11, 2024

CVE-2024-45013

Linux kernel

Published: September 11, 2024

CVE-2024-45014

Linux kernel

Published: September 11, 2024

CVE-2024-45015

Linux kernel

Published: September 11, 2024

CVE-2024-45016

Linux kernel

Published: September 11, 2024

CVE-2024-45017

Linux kernel

Published: September 11, 2024

CVE-2024-45018

Linux kernel

Published: September 11, 2024

CVE-2024-45019

Linux kernel

Published: September 11, 2024

CVE-2024-45020

Linux Kernel

Published: September 11, 2024

CVE-2024-45021

Linux kernel

Published: September 11, 2024

CVE-2024-45022

Linux kernel

Published: September 11, 2024

CVE-2024-45024

Linux Kernel

Published: September 11, 2024

CVE-2024-45025

Linux kernel

Published: September 11, 2024

CVE-2024-45027

Linux kernel

Published: September 11, 2024

CVE-2024-45028

Linux kernel

Published: September 11, 2024

CVE-2024-45029

Linux kernel

Published: September 11, 2024

CVE-2024-45030

Linux kernel

Published: September 11, 2024

CVE-2024-46672

Linux kernel

Published: September 11, 2024

CVE-2024-20343

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-20489

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-8440

Essential Addons for Elementor

Published: September 11, 2024

CVE-2024-8045

Advanced WordPress Backgrounds plugin

Published: September 11, 2024

CVE-2024-5416

Elementor Website Builder plugin for WordPress

Published: September 11, 2024

CVE-2024-44851

Published: September 11, 2024

CVE-2024-7727

HTML5 Video Player - mp4 Video Player Plugin and Block plugin for WordPress

Published: September 11, 2024

CVE-2024-20390

Cisco IOS XR Software

Published: September 11, 2024

CVE-2024-4465

Guardian/CMC

Published: September 11, 2024

CVE-2024-3899

WordPress Gallery Plugin

Published: September 11, 2024

CVE-2024-7716

Logo Slider WordPress plugin

Published: September 11, 2024

CVE-2024-39808

Controller 6000

Published: September 11, 2024

CVE-2024-8688

Palo Alto Networks PAN-OS

Published: September 11, 2024

CVE-2024-8690

Palo Alto Networks Cortex XDR agent

Published: September 11, 2024

CVE-2024-7721

HTML5 Video Player - mp4 Video Player Plugin and Block plugin for WordPress

Published: September 11, 2024

CVE-2024-45789

Reedos aiM-Star

Published: September 11, 2024

CVE-2024-8694

Published: September 11, 2024

CVE-2024-1656

Octopus Server

Published: September 11, 2024

CVE-2024-8693

Kaon CG3000

Published: September 11, 2024

CVE-2024-40654

Published: September 11, 2024

CVE-2024-40656

Published: September 11, 2024

CVE-2024-40659

Published: September 11, 2024

CVE-2024-7805

Published: September 11, 2024

CVE-2024-44573

Published: September 11, 2024

CVE-2024-44575

Published: September 11, 2024

CVE-2024-8097

Payara Platform Payara Server

Published: September 11, 2024

CVE-2024-8689

Cortex XSOAR

Published: September 11, 2024

CVE-2024-8691

Palo Alto Networks PAN-OS software

Published: September 11, 2024

CVE-2024-7889

Citrix Workspace app for Windows

Published: September 11, 2024

CVE-2024-7890

Citrix Workspace app for Windows

Published: September 11, 2024

» Click here to see all Vulnerabilities «