Tag: 2024-09-17

7 Attack Reports | 181 Vulnerabilities

Attack reports

Marko Polo Navigates Uncharted Waters with Infostealer Empire

An analysis has uncovered a highly adaptable cybercriminal group, codenamed 'Marko Polo', that operates sophisticated scams employing information-stealing malware to target individuals and organizations globally. They primarily operate through social media, impersonating legitimate brands in sector…
impersonation
infostealers
scams
social_engineering
2024-09-17
cybercriminal
marko polo
Published: September 17, 2024
Downloadable IOCs: 47

Credential Flusher Research

This intelligence report describes a technique employed by threat actors to compel victims into entering their credentials into a browser, thereby enabling the credentials to be stolen from the browser's credential store using traditional credential-stealing malware. The method involves launching t…
stealer
autoit
credential
stealc
2024-09-17
flusher
kiosk
Published: September 17, 2024
Downloadable IOCs: 8

Observes Targeted Attacks Amid FBI Warnings

The report details targeted attacks observed by Jamf Threat Labs that align with FBI warnings about the Democratic People's Republic of Korea (DPRK) targeting individuals in the crypto industry through social engineering tactics for malware delivery. It outlines attack scenarios involving malicious…
malware
backdoor
infostealer
northkorea
2024-09-17
socialengineering
rustdoor
thiefbucket
cryptoindustry
Published: September 17, 2024
Downloadable IOCs: 8

A Network of Harm: Gigabud Threat and Its Associates

An investigation reveals a significant connection between Gigabud and Spynote malware families, targeting over 50 financial apps including banks and cryptocurrency platforms. The campaign utilizes sophisticated distribution methods, including 11 command and control servers and 79 phishing websites …
phishing
cryptocurrency
spynote
banking trojan
2024-09-17
gigabud
android rat
Published: September 17, 2024
Downloadable IOCs: 116

Unpacking the unpleasant FIN7 gift: PackXOR

This analysis delves into PackXOR, a private packer associated with FIN7's AvNeutralizer tool. PackXOR employs a two-section structure with XOR encryption and LZNT1 compression. The packer utilizes Run-Time Dynamic Linking and encrypts API function names. Notably, PackXOR has been observed packing …
avneutralizer
2024-09-17
r77 rootkit
packxor
Published: September 17, 2024
Downloadable IOCs: 12

ShrinkLocker Malware: Abusing BitLocker to Lock Your Data

ShrinkLocker is a new ransomware strain that exploits Windows BitLocker to encrypt targeted data. Unlike typical ransomware, it abuses this legitimate feature to create a secure boot partition, locking users out unless a ransom is paid. The malware performs system checks, modifies registry entries,…
ransomware
encryption
bitlocker
2024-09-17
shrinklocker
disk partitioning
Published: September 17, 2024
Downloadable IOCs: 2

From Automation to Exploitation: The Growing Misuse of Selenium Grid for Cryptomining and Proxyjacking

Two campaigns targeting Selenium Grid, a popular web testing tool, have been identified. The attacks exploit misconfigured instances lacking authentication to deploy cryptominers and proxyjacking tools. The first campaign injects a base64 encoded Python script to download and execute a reverse shel…
cryptomining
vulnerability exploitation
2024-09-17
tor
proxyjacking
perfcc
iproyal pawns
gsocket
traffmonetizer
selenium grid
Published: September 17, 2024
Linked vulnerabilities : CVE-2021-4043
Downloadable IOCs: 18
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-44146

10.0
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44148

10.0
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-45496

9.9
    OpenShift Container Platform
Published: September 17, 2024

CVE-2024-8767

9.9
    Acronis Backup plugin for cPanel & WHM
  • Version(s): before build 619
    Acronis Backup extension for Plesk
  • Version(s): before build 555
    Acronis Backup plugin for DirectAdmin
  • Version(s): before build 147
Published: September 17, 2024

CVE-2024-45798

9.9
    arduino-esp32
Published: September 17, 2024

CVE-2024-38812

9.8
    Vmware
  • Vcenter Server
Published: September 17, 2024

CVE-2024-38813

9.8
    Vmware
  • Vcenter Server
Published: September 17, 2024

CVE-2024-45682

9.8
    Millbeck
  • Proroute H685t-W Firmware
  • Proroute H685t-W
Published: September 17, 2024

CVE-2024-8944

9.8
    Fabianros
  • Hospital Management System
Published: September 17, 2024

CVE-2024-8957

9.8
    Ptzoptics
  • Pt30x-Sdi Firmware
  • Pt30x-Sdi
  • Pt30x-Ndi-Xx-G2 Firmware
  • Pt30x-Ndi-Xx-G2
Published: September 17, 2024

CVE-2024-43976

9.8
    Superstorefinder
  • Super Store Finder
Published: September 17, 2024

CVE-2024-43978

9.8
    Superstorefinder
  • Super Store Finder
Published: September 17, 2024

CVE-2024-44004

9.8
    Wptaskforce
  • Track \& Trace
Published: September 17, 2024

CVE-2024-7387

9.1
    OpenShift
Published: September 17, 2024

CVE-2024-8956

9.1
    Ptzoptics
  • Pt30x-Sdi Firmware
  • Pt30x-Sdi
  • Pt30x-Ndi-Xx-G2 Firmware
  • Pt30x-Ndi-Xx-G2
Published: September 17, 2024

CVE-2021-27915

9.0
    Acquia
  • Mautic
Published: September 17, 2024

CVE-2024-46085

8.8
    FrogCMS
  • Version(s): 0.9.5
Published: September 17, 2024

CVE-2024-46362

8.8
    FrogCMS
  • Version(s): 0.9.5
Published: September 17, 2024

CVE-2024-21743

8.8
    Houzez Login Register
  • Version(s): n/a through 3.2.5
Published: September 17, 2024

CVE-2024-22303

8.8
    Houzez
  • Version(s): n/a - 3.2.4
Published: September 17, 2024

CVE-2024-8945

8.8
    Fairsketch
  • Rise Ultimate Project Manager
Published: September 17, 2024

CVE-2024-38183

8.8
    Microsoft
  • Groupme
Published: September 17, 2024

CVE-2024-43460

8.8
    Microsoft
  • Dynamics 365 Business Central
Published: September 17, 2024

CVE-2024-8949

8.8
    Oretnom23
  • Online Eyewear Shop
Published: September 17, 2024

CVE-2024-45398

8.8
    Contao
  • Contao
Published: September 17, 2024

CVE-2024-8904

8.8
    Google Chrome
  • Version(s): before 129.0.6668.58
Published: September 17, 2024

CVE-2024-8905

8.8
    Google Chrome
  • Version(s): before 129.0.6668.58
Published: September 17, 2024

CVE-2024-44132

8.4
    macOS Sequoia
  • Version(s): 15
Published: September 17, 2024

CVE-2024-47049

8.2
    Czim
  • File-Handling
Published: September 17, 2024

CVE-2024-27876

8.1
    macOS
  • Version(s): Ventura 13.7, Sonoma 14.7, Sequoia 15
    iOS
  • Version(s): 17.7, 18
    iPadOS
  • Version(s): 17.7, 18
    visionOS
  • Version(s): 2
Published: September 17, 2024

CVE-2024-44167

8.1
    macOS Sequoia
  • Version(s): 15
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
    visionOS
  • Version(s): 2
    macOS Sonoma
  • Version(s): 14.7
    macOS Ventura
  • Version(s): 13.7
Published: September 17, 2024

CVE-2024-44169

8.1
    macOS Sequoia
  • Version(s): 15
    iOS
  • Version(s): 17.7, 18
    iPadOS
  • Version(s): 17.7, 18
    visionOS
  • Version(s): 2
    watchOS
  • Version(s): 11
    macOS Sonoma
  • Version(s): 14.7
    tvOS
  • Version(s): 18
    macOS Ventura
  • Version(s): 13.7
Published: September 17, 2024

CVE-2021-27916

8.1
    Acquia
  • Mautic
Published: September 17, 2024

CVE-2024-8947

8.1
    Micropython
  • Micropython
Published: September 17, 2024

CVE-2024-40841

7.8
    macOS
  • Version(s): Sonoma 14.7, Sequoia 15
Published: September 17, 2024

CVE-2024-40861

7.8
    macOS Sequoia
  • Version(s): 15
Published: September 17, 2024

CVE-2024-44160

7.8
    macOS
  • Version(s): Ventura 13.7, Sonoma 14.7, Sequoia 15
Published: September 17, 2024

CVE-2024-44162

7.8
    Apple
  • Xcode
Published: September 17, 2024

CVE-2024-7788

7.8
    Libreoffice
  • Libreoffice
Published: September 17, 2024

CVE-2024-44147

7.7
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
Published: September 17, 2024

CVE-2024-43969

7.6
    Spiffy Calendar
  • Version(s): n/a - 4.9.12
Published: September 17, 2024

CVE-2024-27795

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27869

7.5
    macOS Sequoia
  • Version(s): 15
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
Published: September 17, 2024

CVE-2024-27874

7.5
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
Published: September 17, 2024

CVE-2024-27879

7.5
    iOS
  • Version(s): 17.7, 18
    iPadOS
  • Version(s): 17.7, 18
Published: September 17, 2024

CVE-2024-40770

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40848

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40852

7.5
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
Published: September 17, 2024

CVE-2024-40856

7.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-40862

7.5
    Xcode
  • Version(s): 16
Published: September 17, 2024

CVE-2024-44149

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44152

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44165

7.5
    Apple
  • Macos
  • Iphone Os
  • Ipados
  • Visionos
Published: September 17, 2024

CVE-2024-44189

7.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-8110

7.5
    Dual-redundant Platform for Computer
Published: September 17, 2024

CVE-2024-47047

7.5
    In2code
  • Powermail
Published: September 17, 2024

CVE-2024-8768

7.5
    UNKNOWN
Published: September 17, 2024

CVE-2024-8900

7.5
    Mozilla
  • Firefox
Published: September 17, 2024

CVE-2024-8946

7.5
    Micropython
  • Micropython
Published: September 17, 2024

CVE-2024-8948

7.5
    Micropython
  • Micropython
Published: September 17, 2024

CVE-2024-46982

7.5
    Next.js
  • Version(s): 13.5.1 - 14.2.9
Published: September 17, 2024

CVE-2024-42501

7.2
    ArubaOS
Published: September 17, 2024

CVE-2024-42502

7.2
    ArubaOS
Published: September 17, 2024

CVE-2024-42503

7.2
    ArubaOS
Published: September 17, 2024

CVE-2024-44164

7.1
    Apple
  • Macos
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-40866

6.5
    Apple
  • Safari
  • Macos
Published: September 17, 2024

CVE-2024-44124

6.5
    Apple
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-44187

6.5
    Apple
  • Safari
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-8044

6.5
    Rubayathasan
  • Infolinks Ad Wrap
Published: September 17, 2024

CVE-2024-8047

6.5
    Gowildchild
  • Visual Sound
Published: September 17, 2024

CVE-2024-8091

6.5
    Jakesnyder
  • Enhanced Search Box
Published: September 17, 2024

CVE-2024-8093

6.5
    Lucasgarcia
  • Posts Reminder
Published: September 17, 2024

CVE-2024-8490

6.5
    Wp-Property-Hive
  • Propertyhive
Published: September 17, 2024

CVE-2024-45537

6.5
    Apache
  • Druid
Published: September 17, 2024

CVE-2024-45815

6.5
    Backstage
  • Backstage
Published: September 17, 2024

CVE-2024-45816

6.5
    Backstage
  • Backstage
Published: September 17, 2024

CVE-2024-43938

6.5
    Name Directory
  • Version(s): n/a, 1.29.0
Published: September 17, 2024

CVE-2024-45812

6.4
    Vite
  • Version(s): 5.4.6, 5.3.6, 5.2.14, 4.5.5, 3.2.11
Published: September 17, 2024

CVE-2024-8939

6.2
    ilab model serve component
Published: September 17, 2024

CVE-2024-40797

6.1
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40826

6.1
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-40857

6.1
    Apple
  • Safari
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-8052

6.1
    Moc
  • Review Ratings
Published: September 17, 2024

CVE-2024-8761

6.1
    Wp-Unit
  • Share This Image
Published: September 17, 2024

CVE-2024-8897

6.1
    Mozilla
  • Firefox
    Google
Published: September 17, 2024

CVE-2024-45803

6.1
    Wireui
  • Wireui
Published: September 17, 2024

CVE-2024-8951

6.1
    Oretnom23
  • Resort Reservation System
Published: September 17, 2024

CVE-2024-8907

6.1
    Google
  • Chrome
Published: September 17, 2024

CVE-2024-44007

6.1
    Sktthemes
  • Skt Templates
Published: September 17, 2024

CVE-2024-44009

6.1
    Wclovers
  • Wcfm Marketplace
Published: September 17, 2024

CVE-2024-44064

6.1
    Likebtn
  • Like Button Rating
Published: September 17, 2024

CVE-2024-40825

6.0
    macOS Sequoia
  • Version(s): 15
    visionOS
  • Version(s): 2
Published: September 17, 2024

CVE-2024-37985

5.6
    Microsoft
  • Windows 11 22h2
  • Windows 11 23h2
Published: September 17, 2024

CVE-2024-23237

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27858

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27860

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27861

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27875

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-27880

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-40790

5.5
    Apple
  • Visionos
Published: September 17, 2024

CVE-2024-40801

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40831

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40837

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40842

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40843

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40844

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-40845

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40846

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40847

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40850

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-40859

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40860

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-40863

5.5
    Apple
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-44125

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44128

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44129

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44131

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-44133

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44134

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44135

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44151

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44153

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44154

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44158

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-44161

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44163

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44166

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44168

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44170

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Watchos
Published: September 17, 2024

CVE-2024-44176

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-44177

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44178

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44181

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44182

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44183

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-44184

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-44186

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44188

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44190

5.5
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44191

5.5
    Apple
  • Xcode
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-44198

5.5
    Apple
  • Ipados
  • Iphone Os
  • Macos
  • Tvos
  • Visionos
  • Watchos
Published: September 17, 2024

CVE-2024-8043

5.4
    Seanschulte
  • Vikinghammer Tweet
Published: September 17, 2024

CVE-2024-8051

5.4
    Moc
  • Special Feed Items
Published: September 17, 2024

CVE-2024-8092

5.4
    Alaingonzalez
  • Accordion Image Menu
Published: September 17, 2024

CVE-2024-38380

5.4
    Millbeckcommunications
  • Proroute H685t-W Firmware
  • Proroute H685t-W
Published: September 17, 2024

CVE-2024-46976

5.4
    Backstage
  • Backstage
Published: September 17, 2024

CVE-2024-43977

5.4
    Posimyth
  • The Plus Addons For Elementor
Published: September 17, 2024

CVE-2024-44008

5.4
    Cyberhobo
  • Geo Mashup
Published: September 17, 2024

CVE-2024-44047

5.4
    Idxbroker
  • Impress For Idx Broker
Published: September 17, 2024

CVE-2024-44049

5.4
    Themehunk
  • Gutenberg Blocks
Published: September 17, 2024

CVE-2024-44050

5.4
    Cryoutcreations
  • Verbosa
Published: September 17, 2024

CVE-2024-44051

5.4
    Vanderwijk
  • Content Blocks
Published: September 17, 2024

CVE-2024-45451

5.4
    Cryoutcreations
  • Roseta
Published: September 17, 2024

CVE-2024-45452

5.4
    Cryoutcreations
  • Septera
Published: September 17, 2024

CVE-2024-44127

5.3
    iOS
  • Version(s): 17.7, 18
    iPadOS
  • Version(s): 17.7, 18
Published: September 17, 2024

CVE-2024-44202

5.3
    iOS
  • Version(s): 18
    iPadOS
  • Version(s): 18
Published: September 17, 2024

CVE-2024-8796

5.3
    Tinfoilsecurity
  • Devise-Two-Factor
Published: September 17, 2024

CVE-2024-45384

5.3
    Apache
  • Druid
Published: September 17, 2024

CVE-2024-45612

5.3
    Contao
  • Contao
Published: September 17, 2024

CVE-2024-5998

5.2
    langchain-ai/langchain
Published: September 17, 2024

CVE-2024-5170

4.8
    Wp-Master
  • Logo Manager For Enamad
Published: September 17, 2024

CVE-2024-8660

4.8
    Concretecms
  • Concrete Cms
Published: September 17, 2024

CVE-2024-45811

4.8
    Vite
  • Version(s): 3.2.11, 4.5.5, 5.2.14, 5.3.6, 5.4.6
Published: September 17, 2024

CVE-2024-43985

4.8
    Mage-People
  • Bus Ticket Booking With Seat Reservation
Published: September 17, 2024

CVE-2024-40840

4.6
    Apple
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-44171

4.6
    Apple
  • Ipados
  • Iphone Os
  • Watchos
Published: September 17, 2024

CVE-2024-44130

4.4
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-45604

4.3
    Contao
  • Contao
Published: September 17, 2024

CVE-2024-45605

4.3
    Sentry
  • Sentry
Published: September 17, 2024

CVE-2024-45606

4.3
    Sentry
  • Sentry
Published: September 17, 2024

CVE-2024-8906

4.3
    Google
  • Chrome
Published: September 17, 2024

CVE-2024-8908

4.3
    Google
  • Chrome
Published: September 17, 2024

CVE-2024-8909

4.3
    Google
  • Chrome
    Apple
Published: September 17, 2024

CVE-2024-40791

3.3
    Apple
  • Ipados
  • Iphone Os
  • Macos
Published: September 17, 2024

CVE-2024-40830

3.3
    Apple
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-40838

3.3
    Apple
  • Macos
Published: September 17, 2024

CVE-2024-44139

2.4
    Apple
  • Ipad Os
  • Iphone Os
Published: September 17, 2024

CVE-2024-44180

2.4
    Apple
  • Ipados
  • Iphone Os
Published: September 17, 2024

CVE-2024-7873

None
    Veribilim Software Veribase Order
  • Version(s): before v4.010.3
Published: September 17, 2024

CVE-2024-38860

None
    Checkmk
  • Version(s): before 2.3.0p16, before 2.2.0p34
Published: September 17, 2024

CVE-2024-45804

None
    UNKNOWN
Published: September 17, 2024
Click here to see more Vulnerabilities