Today > 2 Critical | 3 High | 25 Medium vulnerabilities - You can now download lists of IOCs here!

Tag: 2024-09-26

5 attack reports | 120 vulnerabilities

Attack reports

WalletConnect Scam: A Case Study in Crypto Drainer Tactics

An investigation uncovered a malicious app on Google Play targeting mobile users to steal cryptocurrency. The app, posing as a legitimate WalletConnect tool, used advanced evasion techniques to avoid detection for nearly five months. It achieved over 10,000 downloads through fake reviews and brandi…

Published: September 26, 2024

Downloadable IOCs 6

Unraveling Tool Set: KLogEXE and FPSpy

Unit 42 researchers have uncovered two new malware samples used by the North Korean threat group Sparkling Pisces (aka Kimsuky). These include an undocumented keylogger called KLogEXE and a variant of a backdoor named FPSpy. The analysis reveals the group's evolving capabilities and extensive arsen…

Published: September 26, 2024

Downloadable IOCs 8

Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy

Unit 42 researchers have uncovered two new malware samples used by the North Korean threat group Sparkling Pisces (aka Kimsuky). These include an undocumented keylogger called KLogEXE and a variant of a backdoor named FPSpy. The analysis reveals the group's evolving capabilities and extensive arsen…

Published: September 26, 2024

Downloadable IOCs 0

A hard look at BBTok

This analysis dissects the infection chain of BBTok, a Brazilian-targeted threat. The malware utilizes an ISO image containing a shortcut file and various components. It employs the Microsoft Build Engine to compile and execute malicious C# code on the victim's machine. The core component, Trammy.d…

Published: September 26, 2024

Downloadable IOCs 19

BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell

This analysis dissects the infection chain of BBTok, a Brazilian-targeted threat. The malware utilizes an ISO image containing a shortcut file and various components. It employs the Microsoft Build Engine to compile and execute malicious C# code on the victim's machine. The core component, Trammy.d…

Published: September 26, 2024

Downloadable IOCs 0

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-7772

Jupiter X Core plugin for WordPress

Published: September 26, 2024

CVE-2024-7781

Jupiter X Core plugin for WordPress

Published: September 26, 2024

CVE-2024-7108

Published: September 26, 2024

CVE-2024-46628

Tenda G3 Router firmware

Published: September 26, 2024

CVE-2024-46627

Published: September 26, 2024

CVE-2024-47177

Published: September 26, 2024

CVE-2024-47330

Supsystic Slider

Published: September 26, 2024

CVE-2024-8126

Advanced File Manager plugin for WordPress

Published: September 26, 2024

CVE-2024-45979

Lines Police CAD

Published: September 26, 2024

CVE-2024-45980

Published: September 26, 2024

CVE-2024-45981

BookReviewLibrary

Published: September 26, 2024

CVE-2024-45982

Published: September 26, 2024

CVE-2024-47126

goTenna Pro series

Published: September 26, 2024

CVE-2024-47169

Published: September 26, 2024

CVE-2024-47179

Published: September 26, 2024

CVE-2024-47180

Published: September 26, 2024

CVE-2024-47076

Published: September 26, 2024

CVE-2024-47175

Published: September 26, 2024

CVE-2024-41605

Foxit PDF Reader

Published: September 26, 2024

CVE-2024-0132

NVIDIA Container Toolkit

Published: September 26, 2024

CVE-2023-52946

Synology Drive Client

Published: September 26, 2024

CVE-2024-46328

VONETS VAP11G-300

Published: September 26, 2024

CVE-2024-46329

VONETS VAP11G-300

Published: September 26, 2024

CVE-2024-8404

PaperCut NG/MF

Published: September 26, 2024

CVE-2022-49038

Synology Drive Client

Published: September 26, 2024

CVE-2024-47045

NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION Home GateWay/Hikari Denwa routers

Published: September 26, 2024

CVE-2024-47197

Maven Archetype Plugin

Published: September 26, 2024

CVE-2024-9199

Clibo Manager

Published: September 26, 2024

CVE-2024-7107

National Keep Cyber Security Services CyberMath

Published: September 26, 2024

CVE-2024-37125

Dell SmartFabric OS10 Software

Published: September 26, 2024

CVE-2024-44860

Published: September 26, 2024

CVE-2024-7594

Published: September 26, 2024

CVE-2024-46330

VONETS VAP11G-300

Published: September 26, 2024

CVE-2024-40506

Published: September 26, 2024

CVE-2024-40507

Published: September 26, 2024

CVE-2024-40508

Published: September 26, 2024

CVE-2024-8704

WordPress Advanced File Manager plugin

Published: September 26, 2024

CVE-2024-43191

IBM ManageIQ

Published: September 26, 2024

CVE-2024-39577

Dell SmartFabric OS10 Software

Published: September 26, 2024

CVE-2022-49039

Synology Drive Client

Published: September 26, 2024

CVE-2024-30134

HCL Traveler for Microsoft Outlook

Published: September 26, 2024

CVE-2024-6769

Microsoft Windows

Published: September 26, 2024

CVE-2022-49037

Synology Drive Client

Published: September 26, 2024

CVE-2024-45372

MZK-DP300N firmware

Published: September 26, 2024

CVE-2024-47003

Published: September 26, 2024

CVE-2024-41722

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-43108

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-43694

goTenna Pro ATAK Plugin application

Published: September 26, 2024

CVE-2024-45374

goTenna Pro ATAK Plugin application

Published: September 26, 2024

CVE-2024-45723

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-45987

Projectworld Online Voting System

Published: September 26, 2024

CVE-2024-47121

goTenna Pro series

Published: September 26, 2024

CVE-2024-47122

goTenna Pro application

Published: September 26, 2024

CVE-2024-47124

goTenna Pro Series

Published: September 26, 2024

CVE-2024-47130

goTenna Pro series

Published: September 26, 2024

CVE-2024-47075

Published: September 26, 2024

CVE-2024-45983

kishan0725's Hospital Management System

Published: September 26, 2024

CVE-2024-8803

Bulk NoIndex & NoFollow Toolkit plugin for WordPress

Published: September 26, 2024

CVE-2024-45836

PLANEX COMMUNICATIONS network cameras

Published: September 26, 2024

CVE-2024-6517

Contact Form 7 Math Captcha WordPress plugin

Published: September 26, 2024

CVE-2024-8872

Store Hours for WooCommerce plugin for WordPress

Published: September 26, 2024

CVE-2022-4541

WordPress Visitors plugin

Published: September 26, 2024

CVE-2024-47174

Nix Package Manager

Published: September 26, 2024

CVE-2024-46327

VONETS VAP11G-300

Published: September 26, 2024

CVE-2024-8405

PaperCut NG/MF

Published: September 26, 2024

CVE-2023-52949

Synology Active Backup for Business Agent

Published: September 26, 2024

CVE-2024-8723

012 Ps Multi Languages plugin for WordPress

Published: September 26, 2024

CVE-2024-42406

Published: September 26, 2024

CVE-2024-45843

Published: September 26, 2024

CVE-2024-8861

ProfileGrid WordPress plugin

Published: September 26, 2024

CVE-2024-9115

WordPress Common Tools for Site plugin

Published: September 26, 2024

CVE-2024-9117

Mapplic Lite plugin for WordPress

Published: September 26, 2024

CVE-2024-9125

king_IE plugin for WordPress

Published: September 26, 2024

CVE-2024-9127

Super Testimonials plugin for WordPress

Published: September 26, 2024

CVE-2024-9173

GF Custom Style plugin for WordPress

Published: September 26, 2024

CVE-2024-9198

Clibo Manager

Published: September 26, 2024

CVE-2024-8725

Published: September 26, 2024

CVE-2024-9177

Themedy Toolbox plugin for WordPress

Published: September 26, 2024

CVE-2024-47125

goTenna Pro series

Published: September 26, 2024

CVE-2024-45986

Projectworld Online Voting System

Published: September 26, 2024

CVE-2023-52950

Synology Active Backup for Business Agent

Published: September 26, 2024

CVE-2024-47044

Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION

Published: September 26, 2024

CVE-2024-9025

The Sight - Professional Image Gallery and Portfolio plugin for WordPress

Published: September 26, 2024

CVE-2024-39319

aimeos/ai-controller-frontend

Published: September 26, 2024

CVE-2024-47176

Published: September 26, 2024

CVE-2024-4099

Published: September 26, 2024

CVE-2023-52948

Synology Active Backup for Business Agent

Published: September 26, 2024

CVE-2024-8633

Form Maker by 10Web plugin for WordPress

Published: September 26, 2024

CVE-2024-45984

Blood Bank And Donation Management System

Published: September 26, 2024

CVE-2024-45985

Blood Bank and Donation Management System

Published: September 26, 2024

CVE-2022-49040

Synology Drive Client

Published: September 26, 2024

CVE-2022-49041

Synology Drive Client

Published: September 26, 2024

CVE-2023-46175

IBM Cloud Pak for Multicloud Management

Published: September 26, 2024

CVE-2024-7259

Published: September 26, 2024

CVE-2024-45042

Published: September 26, 2024

CVE-2024-8552

WordPress Download Monitor plugin

Published: September 26, 2024

CVE-2024-47145

Published: September 26, 2024

CVE-2024-47337

Joy Of Text Lite

Published: September 26, 2024

CVE-2024-31899

IBM Cognos Command Center

Published: September 26, 2024

CVE-2024-9155

Published: September 26, 2024

CVE-2024-46632

Published: September 26, 2024

CVE-2024-8771

Email Subscribers by Icegram

Published: September 26, 2024

CVE-2024-41715

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-41931

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-43814

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-45838

goTenna Pro ATAK Plugin

Published: September 26, 2024

CVE-2024-47128

goTenna Pro

Published: September 26, 2024

CVE-2024-47129

goTenna Pro

Published: September 26, 2024

CVE-2024-47170

Published: September 26, 2024

CVE-2024-47171

Published: September 26, 2024

CVE-2024-8974

Published: September 26, 2024

CVE-2024-45989

Monica AI Assistant desktop application

Published: September 26, 2024

CVE-2024-0133

NVIDIA Container Toolkit

Published: September 26, 2024

CVE-2023-52947

Synology Active Backup for Business Agent

Published: September 26, 2024

CVE-2024-47123

goTenna Pro series

Published: September 26, 2024

CVE-2024-47127

goTenna Pro

Published: September 26, 2024

CVE-2024-4278

Published: September 26, 2024

CVE-2024-9203

Enpass Password Manager

Published: September 26, 2024

CVE-2024-9166

Published: September 26, 2024

CVE-2024-8118

Published: September 26, 2024

» Click here to see all Vulnerabilities «