Attack Reports
| Title | Published | Tags | Description | Number of indicators |
|---|---|---|---|---|
| Russia-linked crypto threat actor involved in political spoofing tracked | Sept. 20, 2024, 11:42 a.m. | A Russia-linked threat actor is deploying domains for crypto scams targeting the US Presidential Election and prominent tech bran… | 6 | |
| Derailing the Raptor Train | Sept. 20, 2024, 11:41 a.m. | A large, multi-tiered botnet called Raptor Train, likely operated by Chinese threat actors Flax Typhoon, has been discovered. Con… | 198 | |
| Kimsuky: A Gift That Keeps on Giving | Sept. 20, 2024, 11:39 a.m. | This analysis details a sophisticated cyber attack attributed to the North Korean-linked Kimsuky APT group. The attack begins wit… | 2 | |
| Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC | Sept. 20, 2024, 11:22 a.m. | Earth Baxia, a suspected China-based threat actor, targeted government organizations, telecommunication businesses, and the energ… | 29 | |
| Supershell Malware Being Distributed to Linux SSH Servers | Sept. 20, 2024, 11:22 a.m. | A Chinese-developed Go-based backdoor called Supershell is targeting poorly managed Linux SSH servers. The malware, which support… | 5 | |
| Unicorn: New Spy Scripts Steal Data from Russian Companies | Sept. 20, 2024, 11:21 a.m. | A new malware campaign targeting Russian energy companies, factories, and electronic component suppliers has been detected. The m… | 2 | |
| Black Basta Ransomware: What You Need to Know | Sept. 20, 2024, 11:21 a.m. | Black Basta is a ransomware-as-a-service group that emerged in April 2022, known for double extortion tactics. They target organi… | 82 | |
| Deep Fake Crypto Scams | Sept. 20, 2024, 11:11 a.m. | Cybercriminals exploited the U.S. presidential debate to launch a cryptocurrency scam using deep fake videos. The scam featured f… | 24 | |
| UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks | Sept. 20, 2024, 11:10 a.m. | UNC1860 is an Iranian state-sponsored threat actor likely affiliated with Iran's Ministry of Intelligence and Security. It employ… | 22 |
Vulnerabilities
| CVE | CVSS | Published | Product impacted | Tags |
|---|---|---|---|---|
| CVE-2024-41721 | 9.8 | Sept. 20, 2024, 8:15 a.m. |  FreeBSD |
|
| CVE-2024-8853 | 9.8 | Sept. 20, 2024, 8:15 a.m. | WordPress Webo-facto plugin |
|
| CVE-2024-9043 | 9.8 | Sept. 20, 2024, 11:15 a.m. | Secure Email Gateway from Cellopoint |
|
| CVE-2024-45489 | 9.8 | Sept. 20, 2024, 5:15 p.m. | Arc |
|
| CVE-2024-9032 | 8.8 | Sept. 20, 2024, 1:15 p.m. | SourceCodester Simple Forum-Discussion System |
|
| CVE-2023-47480 | 8.4 | Sept. 20, 2024, 5:15 p.m. | Pure Data |
|
| CVE-2024-47061 | 8.3 | Sept. 20, 2024, 7:15 p.m. | Plate |
|
| CVE-2024-47000 | 8.1 | Sept. 20, 2024, 12:15 a.m. | Zitadel |
|
| CVE-2024-42346 | 7.6 | Sept. 20, 2024, 7:15 p.m. | Galaxy |
|
| CVE-2024-45807 | 7.5 | Sept. 20, 2024, 12:15 a.m. | Envoy Proxy |
|
| CVE-2024-46999 | 7.3 | Sept. 20, 2024, 12:15 a.m. | Zitadel |
|
| CVE-2024-9034 | 7.3 | Sept. 20, 2024, 3:15 p.m. | code-projects Patient Record Management System |
|
| CVE-2024-9035 | 7.3 | Sept. 20, 2024, 3:15 p.m. | Blood Bank Management System |
|
| CVE-2024-9037 | 7.3 | Sept. 20, 2024, 4:15 p.m. | Codezips Internal Marks Calculation |
|
| CVE-2024-9039 | 7.3 | Sept. 20, 2024, 4:15 p.m. | SourceCodester Best House Rental Management System |
|
| CVE-2024-45229 | 6.6 | Sept. 20, 2024, 7:15 p.m. | Versa Director |
|
| CVE-2024-45806 | 6.5 | Sept. 20, 2024, 12:15 a.m. | Envoy Proxy |
|
| CVE-2024-45808 | 6.5 | Sept. 20, 2024, 12:15 a.m. | Envoy |
|
| CVE-2024-45810 | 6.5 | Sept. 20, 2024, 12:15 a.m. | Envoy Proxy |
|
| CVE-2024-42351 | 6.5 | Sept. 20, 2024, 7:15 p.m. | Galaxy |
|
| CVE-2024-9009 | 6.3 | Sept. 20, 2024, 12:15 a.m. | Online Quiz Site |
|
| CVE-2024-9011 | 6.3 | Sept. 20, 2024, 1:15 a.m. | Crud Operation System |
|
| CVE-2024-9036 | 6.3 | Sept. 20, 2024, 4:15 p.m. | itsourcecode Online Bookstore |
|
| CVE-2024-9041 | 6.3 | Sept. 20, 2024, 5:15 p.m. | SourceCodester Best House Rental Management System |
|
| CVE-2024-42697 | 6.1 | Sept. 20, 2024, 6:15 p.m. | Leo Product Search Module |
|
| CVE-2024-45809 | 5.3 | Sept. 20, 2024, 12:15 a.m. | Envoy Proxy |
|
| CVE-2024-46654 | 4.8 | Sept. 20, 2024, 7:15 p.m. | Maccms10 |
|
| CVE-2024-45793 | 4.8 | Sept. 20, 2024, 8:15 p.m. | Confidant |
|
| CVE-2024-47060 | 4.3 | Sept. 20, 2024, 12:15 a.m. | Zitadel |
|
| CVE-2024-9038 | 4.3 | Sept. 20, 2024, 4:15 p.m. | Codezips Online Shopping Portal |
|
| CVE-2024-8612 | 3.8 | Sept. 20, 2024, 6:15 p.m. | QEMU |
|
| CVE-2024-9030 | 3.5 | Sept. 20, 2024, 12:15 p.m. | CodeCanyon CRMGo SaaS |
|
| CVE-2024-9031 | 3.5 | Sept. 20, 2024, 12:15 p.m. | CodeCanyon CRMGo SaaS |
|
| CVE-2024-9033 | 3.5 | Sept. 20, 2024, 3:15 p.m. | SourceCodester Best House Rental Management System |
|
| CVE-2024-9040 | 2.3 | Sept. 20, 2024, 5:15 p.m. | Blood Bank Management System |
|
| CVE-2024-46652 | None | Sept. 20, 2024, 4:15 p.m. | Tenda AC8v4 |
|
| CVE-2024-37879 | None | Sept. 20, 2024, 5:15 p.m. | User-friendly SVN (USVN) |
|
| CVE-2024-47062 | None | Sept. 20, 2024, 7:15 p.m. | Navidrome |
|
| CVE-2024-46101 | None | Sept. 20, 2024, 9:15 p.m. | GDidees CMS |
|
| CVE-2024-46103 | None | Sept. 20, 2024, 9:15 p.m. | SEMCMS |
|
| CVE-2024-46640 | None | Sept. 20, 2024, 9:15 p.m. | SeaCMS |
|
| CVE-2024-46644 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |
|
| CVE-2024-46645 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |
|
| CVE-2024-46646 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |
|
| CVE-2024-46647 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |
|
| CVE-2024-46648 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |
|
| CVE-2024-46649 | None | Sept. 20, 2024, 9:15 p.m. | eNMS |