SecuriTricks - 2024-10-04

Attack Reports

Title	Published	Tags	Description	Number of indicators
Pig Butchering Alert: Fraudulent Trading App targeted iOS and Android users	Oct. 4, 2024, 10:27 a.m.	ios social engineering android cross-platform 2024-10-04 pig butchering uniapp fraudulent trading apps unishadowtrade goldpickaxe	A large-scale fraud campaign involving fake trading apps targeting Apple iOS and Android users across multiple regions has been u…	9
Tweaking AsyncRAT: Using Python and TryCloudflare to Deploy Malware	Oct. 4, 2024, 10:23 a.m.	obfuscation xworm phishing python powershell asyncrat webdav 2024-10-04 shellcode injection trycloudflare	A new AsyncRAT malware campaign utilizes TryCloudflare quick tunnels and Python packages to deliver malicious payloads. The attac…	15
CHARMING KITTEN	Oct. 4, 2024, 10:16 a.m.	iran infrastructure domain registration 2024-10-04 spear-phishing credential phishing mint sandstorm ta453 apt42	Since June 2024, the Iran-nexus actor CHARMING KITTEN has been creating new network infrastructure for credential phishing, targe…	11
Bulbature, beneath the waves of GobRAT	Oct. 4, 2024, 10:11 a.m.	china ddos botnet proxy 2024-10-04 gobrat orb edge devices bulbature	This report examines an infrastructure used to control compromised edge devices transformed into Operational Relay Boxes for laun…	120
perfctl: A Stealthy Malware Targeting Millions of Linux Servers	Oct. 4, 2024, 10:08 a.m.	linux rootkit evasion privilege-escalation persistence cryptomining CVE-2023-33246 2024-10-04 tor CVE-2021-4043 proxy-jacking perfctl	A sophisticated Linux malware named 'perfctl' has been actively targeting millions of servers worldwide for the past 3-4 years. I…	9
Threat actor believed to be spreading new MedusaLocker variant since 2022	Oct. 4, 2024, 10:06 a.m.	iab ransomware credential theft lateral movement financially motivated 2024-10-04 babylockerkz medusalocker	A financially motivated threat actor has been active since 2022, delivering a MedusaLocker ransomware variant called 'BabyLockerK…	11
Threat Brief: Understanding Akira Ransomware	Oct. 4, 2024, 10:04 a.m.	ransomware lateral movement conti akira raas 2024-10-04 double extortion defense evasion CVE-2023-20269 chacha encryption CVE-2019-6693 credential dumping CVE-2021-21972 CVE-2022-40684	Akira is a prolific ransomware operating since March 2023, targeting multiple industries in North America, the UK, and Australia.…	3

» Click here to see all Attack Reports «

Vulnerabilities

CVE	CVSS	Published	Product impacted	Tags
CVE-2024-9514	8.8	Oct. 4, 2024, 2:15 p.m.	D-Link DIR-605L	CWE-120 cna@vuldb.com 2024-10-04 CVE-2024-9514
CVE-2024-9515	8.8	Oct. 4, 2024, 2:15 p.m.	D-Link DIR-605L	CWE-120 cna@vuldb.com 2024-10-04 CVE-2024-9515
CVE-2024-47183	8.1	Oct. 4, 2024, 3:15 p.m.	Parse Server	security-advisories@github.com CWE-285 2024-10-04 CVE-2024-47183
CVE-2024-47850	7.5	Oct. 4, 2024, 5:15 a.m.	CUPS cups-browsed	cve@mitre.org CWE-400 2024-10-04 CVE-2024-47850
CVE-2024-47769	7.5	Oct. 4, 2024, 3:15 p.m.	IDURAR	security-advisories@github.com CWE-22 2024-10-04 CVE-2024-47769
CVE-2024-38040	7.5	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-73 2024-10-04 psirt@esri.com CVE-2024-38040
CVE-2024-47911	6.7	Oct. 4, 2024, 9:15 p.m.	SonarSource SonarQube	cve@mitre.org 2024-10-04 CVE-2024-47911
CVE-2024-8519	6.4	Oct. 4, 2024, 5:15 a.m.	Ultimate Member Plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-8519
CVE-2024-9368	6.4	Oct. 4, 2024, 5:15 a.m.	Aggregator Advanced Settings plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9368
CVE-2024-9372	6.4	Oct. 4, 2024, 5:15 a.m.	WP Blocks Hub plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9372
CVE-2024-9421	6.4	Oct. 4, 2024, 5:15 a.m.	Login Logout Shortcode plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9421
CVE-2024-9445	6.4	Oct. 4, 2024, 5:15 a.m.	Display Medium Posts plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9445
CVE-2024-8804	6.4	Oct. 4, 2024, 6:15 a.m.	Code Embed plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-8804
CVE-2024-9242	6.4	Oct. 4, 2024, 6:15 a.m.	Memberful – Membership Plugin plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9242
CVE-2024-9071	6.4	Oct. 4, 2024, 10:15 a.m.	WordPress Easy Demo Importer plugin	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9071
CVE-2024-9271	6.4	Oct. 4, 2024, 10:15 a.m.	Re:WP plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9271
CVE-2024-6442	6.3	Oct. 4, 2024, 6:15 a.m.	UNKNOWN	CWE-787 vulnerabilities@zephyrproject.org 2024-10-04 CVE-2024-6442
CVE-2024-6443	6.3	Oct. 4, 2024, 6:15 a.m.	Zephyr Project	CWE-125 vulnerabilities@zephyrproject.org 2024-10-04 CVE-2024-6443
CVE-2024-6444	6.3	Oct. 4, 2024, 7:15 a.m.	Zephyr Project	CWE-122 vulnerabilities@zephyrproject.org 2024-10-04 CVE-2024-6444
CVE-2024-8802	6.1	Oct. 4, 2024, 5:15 a.m.	Clio Grow plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-8802
CVE-2024-9204	6.1	Oct. 4, 2024, 5:15 a.m.	Smart Custom 404 Error Page plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9204
CVE-2024-9237	6.1	Oct. 4, 2024, 5:15 a.m.	WooCommerce Fish and Ships Shipping Rate Plugin	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9237
CVE-2024-9345	6.1	Oct. 4, 2024, 5:15 a.m.	WooCommerce - Lite plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9345
CVE-2024-9349	6.1	Oct. 4, 2024, 5:15 a.m.	Auto Amazon Links – Amazon Associates Affiliate Plugin plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9349
CVE-2024-9353	6.1	Oct. 4, 2024, 5:15 a.m.	Popularis Extra plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9353
CVE-2024-9375	6.1	Oct. 4, 2024, 5:15 a.m.	WordPress Captcha Plugin by Captcha Bank	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9375
CVE-2024-9384	6.1	Oct. 4, 2024, 5:15 a.m.	Quantity Dynamic Pricing & Bulk Discounts for WooCommerce plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9384
CVE-2024-47854	6.1	Oct. 4, 2024, 6:15 a.m.	Veritas Data Insight	cve@mitre.org 2024-10-04 CVE-2024-47854
CVE-2024-9435	6.1	Oct. 4, 2024, 7:15 a.m.	ShiftController Employee Shift Scheduling plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9435
CVE-2024-25691	6.1	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-79 2024-10-04 CVE-2024-25691 psirt@esri.com
CVE-2024-38037	6.1	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-601 2024-10-04 psirt@esri.com CVE-2024-38037
CVE-2024-38038	6.1	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-79 2024-10-04 psirt@esri.com CVE-2024-38038
CVE-2024-8148	6.1	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-601 2024-10-04 psirt@esri.com CVE-2024-8148
CVE-2024-44204	5.5	Oct. 4, 2024, 12:15 a.m.	iOS	product-security@apple.com NVD-CWE-noinfo 2024-10-04 CVE-2024-44204
CVE-2024-38039	5.4	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-80 2024-10-04 psirt@esri.com CVE-2024-38039
CVE-2024-8520	5.3	Oct. 4, 2024, 5:15 a.m.	Ultimate Member Plugin	security@wordfence.com CWE-352 2024-10-04 CVE-2024-8520
CVE-2024-9410	5.3	Oct. 4, 2024, 2:15 p.m.	UNKNOWN	vulnreport@tenable.com CWE-918 2024-10-04 CVE-2024-9410
CVE-2024-9481	5.1	Oct. 4, 2024, 1:15 p.m.	AVG/Avast Antivirus	CWE-787 security@nortonlifelock.com 2024-10-04 CVE-2024-9481
CVE-2024-9482	5.1	Oct. 4, 2024, 1:15 p.m.	Avast Antivirus	CWE-787 security@nortonlifelock.com 2024-10-04 CVE-2024-9482
CVE-2024-9483	5.1	Oct. 4, 2024, 1:15 p.m.	AVG/Avast Antivirus	CWE-476 security@nortonlifelock.com 2024-10-04 CVE-2024-9483
CVE-2024-9484	5.1	Oct. 4, 2024, 1:15 p.m.	AVG/Avast Antivirus	CWE-476 security@nortonlifelock.com 2024-10-04 CVE-2024-9484
CVE-2024-25694	4.8	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS Enterprise	CWE-79 2024-10-04 psirt@esri.com CVE-2024-25694
CVE-2024-25701	4.8	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS Enterprise Experience Builder	CWE-79 2024-10-04 psirt@esri.com CVE-2024-25701
CVE-2024-25702	4.8	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS Enterprise Sites	CWE-79 2024-10-04 psirt@esri.com CVE-2024-25702
CVE-2024-25707	4.8	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-79 2024-10-04 psirt@esri.com CVE-2024-25707
CVE-2024-8499	4.7	Oct. 4, 2024, 1:15 p.m.	Checkout Field Editor (Checkout Manager) for WooCommerce plugin	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-8499
CVE-2024-38036	4.6	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-79 2024-10-04 psirt@esri.com CVE-2024-38036
CVE-2024-8149	4.6	Oct. 4, 2024, 6:15 p.m.	Esri Portal for ArcGIS	CWE-79 2024-10-04 psirt@esri.com CVE-2024-8149
CVE-2024-9306	4.4	Oct. 4, 2024, 7:15 a.m.	WP Booking Calendar plugin for WordPress	CWE-79 security@wordfence.com 2024-10-04 CVE-2024-9306
CVE-2024-44207	4.3	Oct. 4, 2024, 12:15 a.m.	iOS	product-security@apple.com NVD-CWE-noinfo 2024-10-04 CVE-2024-44207
CVE-2024-9513	3.7	Oct. 4, 2024, 1:15 p.m.	NetAdmin IAM	cna@vuldb.com CWE-203 2024-10-04 CVE-2024-9513
CVE-2024-47855	None	Oct. 4, 2024, 6:15 a.m.	JSON-lib	cve@mitre.org 2024-10-04 CVE-2024-47855
CVE-2024-47651	None	Oct. 4, 2024, 12:15 p.m.	Shilpi Client Dashboard	vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47651 CWE-235
CVE-2024-6400	None	Oct. 4, 2024, 12:15 p.m.	Finrota Netahsilat	iletisim@usom.gov.tr 2024-10-04 CVE-2024-6400 CWE-202
CVE-2024-47652	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Client Dashboard	vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47652 CWE-308
CVE-2024-47653	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Client Dashboard	CWE-266 vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47653
CVE-2024-47654	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Client Dashboard	vdisclose@cert-in.org.in CWE-799 2024-10-04 CVE-2024-47654
CVE-2024-47655	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Client Dashboard	CWE-434 vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47655
CVE-2024-47656	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Client Dashboard	vdisclose@cert-in.org.in CWE-307 2024-10-04 CVE-2024-47656
CVE-2024-47657	None	Oct. 4, 2024, 1:15 p.m.	Shilpi Net Back Office	CWE-639 vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47657
CVE-2024-47789	None	Oct. 4, 2024, 1:15 p.m.	D3D Security IP Camera	CWE-319 vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47789
CVE-2024-47790	None	Oct. 4, 2024, 1:15 p.m.	D3D Security IP Camera	CWE-862 vdisclose@cert-in.org.in 2024-10-04 CVE-2024-47790
CVE-2024-47765	None	Oct. 4, 2024, 3:15 p.m.	Minecraft MOTD Parser	security-advisories@github.com CWE-79 2024-10-04 CVE-2024-47765
CVE-2024-47768	None	Oct. 4, 2024, 3:15 p.m.	Lif Authentication Server	security-advisories@github.com CWE-287 2024-10-04 CVE-2024-47768
CVE-2024-46409	None	Oct. 4, 2024, 5:15 p.m.	SeedDMS	cve@mitre.org 2024-10-04 CVE-2024-46409
CVE-2024-46486	None	Oct. 4, 2024, 5:15 p.m.	TP-LINK TL-WDR5620	cve@mitre.org 2024-10-04 CVE-2024-46486
CVE-2024-41511	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41511
CVE-2024-41512	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41512
CVE-2024-41513	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41513
CVE-2024-41514	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41514
CVE-2024-41515	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41515
CVE-2024-41516	None	Oct. 4, 2024, 6:15 p.m.	CADClick	cve@mitre.org 2024-10-04 CVE-2024-41516
CVE-2024-44439	None	Oct. 4, 2024, 6:15 p.m.	Shanghai Zhouma Network Technology CO., Ltd IMS Intelligent Manufacturing Collaborative Internet of Things System	cve@mitre.org 2024-10-04 CVE-2024-44439
CVE-2024-47211	None	Oct. 4, 2024, 6:15 p.m.	OpenStack Ironic	cve@mitre.org 2024-10-04 CVE-2024-47211
CVE-2023-26770	None	Oct. 4, 2024, 7:15 p.m.	TaskCafe	cve@mitre.org 2024-10-04 CVE-2023-26770
CVE-2023-26771	None	Oct. 4, 2024, 7:15 p.m.	Taskcafe	cve@mitre.org 2024-10-04 CVE-2023-26771
CVE-2024-46077	None	Oct. 4, 2024, 7:15 p.m.	Online Tours and Travels Management System	cve@mitre.org 2024-10-04 CVE-2024-46077
CVE-2024-46078	None	Oct. 4, 2024, 7:15 p.m.	itsourcecode Sports Management System Project	cve@mitre.org 2024-10-04 CVE-2024-46078
CVE-2024-43683	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-601 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-43683
CVE-2024-43684	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-352 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-43684
CVE-2024-43685	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-287 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-43685
CVE-2024-43686	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-79 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-43686
CVE-2024-43687	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-79 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-43687
CVE-2024-47764	None	Oct. 4, 2024, 8:15 p.m.	cookie	security-advisories@github.com CWE-74 2024-10-04 CVE-2024-47764
CVE-2024-7801	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100	CWE-89 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-7801
CVE-2024-9054	None	Oct. 4, 2024, 8:15 p.m.	Microchip TimeProvider 4100 (Configuration modules)	CWE-200 dc3f6da9-85b5-4a73-84a2-2ec90b40fca5 2024-10-04 CVE-2024-9054
CVE-2024-37868	None	Oct. 4, 2024, 9:15 p.m.	Itsourcecode Online Discussion Forum Project	cve@mitre.org 2024-10-04 CVE-2024-37868
CVE-2024-37869	None	Oct. 4, 2024, 9:15 p.m.	Itsourcecode Online Discussion Forum Project	cve@mitre.org 2024-10-04 CVE-2024-37869
CVE-2024-47910	None	Oct. 4, 2024, 9:15 p.m.	SonarQube	cve@mitre.org 2024-10-04 CVE-2024-47910
CVE-2024-47913	None	Oct. 4, 2024, 10:15 p.m.	MediaWiki	cve@mitre.org 2024-10-04 CVE-2024-47913

» Click here to see all Vulnerabilities «

Tag : 2024-10-04