Tag: 2024-10-07

7 Attack Reports | 109 Vulnerabilities

Attack reports

Exploring GenAI in Cybersecurity: Gemini for Malware Analysis

This analysis explores the application of Generative AI, specifically Google's Gemini Advanced, in malware analysis. The experiment focuses on analyzing executable files, particularly a RisePro Stealer sample. The methodology involves decompiling the malware using Ghidra and IDA Pro, then using spe…

malware analysis

risepro stealer

ai-assisted analysis

executable files

Published: October 8, 2024

Downloadable IOCs: 1

Mamba 2FA: A new contender in the AiTM phishing ecosystem

Mamba 2FA is a newly discovered adversary-in-the-middle (AiTM) phishing kit being sold as phishing-as-a-service (PhaaS). It features capabilities similar to other popular AiTM phishing services, including handling two-step verifications for non-phishing-resistant MFA methods, supporting various aut…

evasion techniques

multi-factor authentication

Published: October 7, 2024

Downloadable IOCs: 0

Cuckoo Threat Actor Arsenal

This report delves into the technical aspects of the NOOPDOOR and NOOPLDR malwares employed by the APT10 threat actor in the Cuckoo Spear campaign. The analysis reveals how these tools operate and the potential risks they pose, helping cybersecurity professionals better understand and defend agains…

Published: October 7, 2024

Downloadable IOCs: 9

YUNIT STEALER

Yunit Stealer is a sophisticated malware targeting sensitive user data through credential theft and system manipulation. It employs advanced evasion techniques to bypass security measures, maintaining persistence on compromised systems. The malware performs comprehensive data extraction, including …

credential extraction

Published: October 7, 2024

Downloadable IOCs: 0

Analyzing the Awaken Likho APT group implant: new tools and techniques

A new campaign by the Awaken Likho APT group targeting Russian government agencies and industrial enterprises was discovered in June 2024. The group has significantly changed its attack methods, now preferring the MeshCentral platform agent instead of UltraVNC for remote access. The implant is deli…

Published: October 7, 2024

Downloadable IOCs: 0

SIEM agent being used in SilentCryptoMiner attacks

A global malware campaign targeting mainly Russian-speaking users has been distributing cryptocurrency mining malware through fake software download sites, Telegram channels, and YouTube videos. The multi-stage infection chain uses unusual techniques for persistence and evasion, including hiding ma…

defense evasion

silentcryptominer

Published: October 7, 2024

Downloadable IOCs: 8

VILSA STEALER

A new malware called Vilsa Stealer has emerged on GitHub, notable for its speed and efficiency in extracting sensitive data. This sophisticated tool targets browser credentials, tokens, and various application data. It supports major browsers and over 40 crypto wallets, using Python as its programm…

browser credentials

Published: October 7, 2024

Downloadable IOCs: 3

Click here to see more Attack Reports

Vulnerabilities

CVE-2024-20100

wlan driver

Published: October 7, 2024

CVE-2024-20101

MediaTek WLAN driver

Published: October 7, 2024

CVE-2024-20103

MediaTek WLAN Firmware

Published: October 7, 2024

CVE-2024-33066

Published: October 7, 2024

CVE-2024-46446

Mecha

Published: October 7, 2024

CVE-2024-46076

Version(s): 4.7.9 and before

Published: October 7, 2024

CVE-2024-47556

Freeflow Core

Published: October 7, 2024

CVE-2024-47557

Freeflow Core

Published: October 7, 2024

CVE-2024-45873

VegaBird Yaazhini

Version(s): 2.0.2

Published: October 7, 2024

CVE-2024-45874

VegaBird Vooki

Version(s): 5.2.9

Published: October 7, 2024

CVE-2024-9563

Dir-605l Firmware
Dir-605l

Published: October 7, 2024

CVE-2024-9564

Dir-605l Firmware
Dir-605l

Published: October 7, 2024

CVE-2024-9565

Dir-605l Firmware
Dir-605l

Published: October 7, 2024

CVE-2024-9566

Dir-619l Firmware

Published: October 7, 2024

CVE-2024-9567

Dir-619l Firmware
Dir-619l

Published: October 7, 2024

CVE-2024-9568

Dir-619l Firmware
Dir-619l

Published: October 7, 2024

CVE-2024-9569

Dir-619l Firmware
Dir-619l

Published: October 7, 2024

CVE-2024-46041

IoT Haat Smart Plug IH-IN-16A-S

Version(s): 5.16.1

Published: October 7, 2024

CVE-2024-9570

Dir-619l Firmware
Dir-619l

Published: October 7, 2024

CVE-2024-27458

HP Hotkey Support software

Published: October 7, 2024

CVE-2024-47558

Freeflow Core

Published: October 7, 2024

CVE-2024-47559

Freeflow Core

Published: October 7, 2024

CVE-2024-45291

Phpspreadsheet

Published: October 7, 2024

CVE-2024-46278

Version(s): 1.11

Published: October 7, 2024

CVE-2024-47555

Published: October 7, 2024

CVE-2024-33064

Qca6574au Firmware
Qca6574au
Qca6574a Firmware
Qca6574a
Qca6564au Firmware
Qca6564au
Qca6564a Firmware
Qca6564a
Mdm9628 Firmware
Mdm9628

Published: October 7, 2024

CVE-2024-33073

Published: October 7, 2024

CVE-2024-43364

Cacti

Published: October 7, 2024

CVE-2024-43365

Cacti

Published: October 7, 2024

CVE-2024-45051

Discourse

Published: October 7, 2024

CVE-2024-44068

Samsung Mobile Processor and Wearable Processor Exynos

Version(s): 9820, 9825, 980, 990, 850, W920

Published: October 7, 2024

CVE-2024-20092

Published: October 7, 2024

CVE-2024-21455

Published: October 7, 2024

CVE-2024-23369

Published: October 7, 2024

CVE-2024-33065

Wsa8845h Firmware
Wsa8845h
Wsa8845 Firmware
Wsa8845
Wsa8840 Firmware
Wsa8840
Wsa8835 Firmware
Wsa8835
Wsa8830 Firmware
Wsa8830
Wsa8815 Firmware
Wsa8815
Wsa8810 Firmware
Wsa8810
Wcd9385 Firmware
Wcd9385
Wcd9380 Firmware
Wcd9380
Wcd9375 Firmware
Wcd9375
Wcd9370 Firmware
Wcd9370
Wcd9341 Firmware
Wcd9341
Wcd9340 Firmware
Wcd9340
Snapdragon 8cx Gen 3 Compute Platform \(Sc8280xp-Ab\, Bb\) Firmware
Snapdragon 8cx Gen 3 Compute Platform \(Sc8280xp-Ab\, Bb\)
Snapdragon 8cx Gen 2 5g Compute Platform \(Sc8180xp-Aa\, Ab\) Firmware
Snapdragon 8cx Gen 2 5g Compute Platform \(Sc8180xp-Aa\, Ab\)
Snapdragon 8cx Gen 2 5g Compute Platform \(Sc8180x-Ac\, Af\) \"Poipu Pro\" Firmware
Snapdragon 8cx Gen 2 5g Compute Platform \(Sc8180x-Ac\, Af\) \"Poipu Pro\"
Snapdragon 8cx Compute Platform \(Sc8180xp-Ac\, Af\) \"Poipu Pro\" Firmware
Snapdragon 8cx Compute Platform \(Sc8180xp-Ac\, Af\) \"Poipu Pro\"
Snapdragon 8cx Compute Platform \(Sc8180x-Aa\, Ab\) Firmware
Snapdragon 8cx Compute Platform \(Sc8180x-Aa\, Ab\)
Snapdragon 8c Compute Platform \(Sc8180xp-Ad\) \"Poipu Lite\" Firmware
Snapdragon 8c Compute Platform \(Sc8180xp-Ad\) \"Poipu Lite\"
Snapdragon 8c Compute Platform \(Sc8180x-Ad\) \"Poipu Lite\" Firmware
Snapdragon 8c Compute Platform \(Sc8180x-Ad\) \"Poipu Lite\"
Snapdragon 7c\+ Gen 3 Compute Firmware
Snapdragon 7c\+ Gen 3 Compute
Snapdragon 7c Gen 2 Compute Platform \(Sc7180-Ad\) \"Rennell Pro\" Firmware
Snapdragon 7c Gen 2 Compute Platform \(Sc7180-Ad\) \"Rennell Pro\"
Snapdragon 7c Compute Platform \(Sc7180-Ac\) Firmware
Snapdragon 7c Compute Platform \(Sc7180-Ac\)
Sm6250 Firmware
Sm6250
Sc8380xp Firmware
Sc8380xp
Sc8180x\+Sdx55 Firmware
Sc8180x\+Sdx55
Qualcomm Video Collaboration Vc3 Platform Firmware
Qualcomm Video Collaboration Vc3 Platform
Qcs6490 Firmware
Qcs6490
Qcs5430 Firmware
Qcs5430
Qcm6490 Firmware
Qcm6490
Qcm5430 Firmware
Qcm5430
Qca6430 Firmware
Qca6430
Qca6420 Firmware
Qca6420
Qca6391 Firmware
Qca6391
Fastconnect 7800 Firmware
Fastconnect 7800
Fastconnect 6900 Firmware
Fastconnect 6900
Fastconnect 6800 Firmware
Fastconnect 6800
Fastconnect 6700 Firmware
Fastconnect 6700
Fastconnect 6200 Firmware
Fastconnect 6200
Aqt1000 Firmware
Aqt1000

Published: October 7, 2024

CVE-2024-38399

Published: October 7, 2024

CVE-2024-43047

Published: October 7, 2024

CVE-2024-47335

Bit Form - Contact Form Plugin

Version(s): from n/a, through 2.13.11

Published: October 7, 2024

CVE-2024-47782

WikiDiscover

Published: October 7, 2024

CVE-2024-20094

Published: October 7, 2024

CVE-2024-33049

Published: October 7, 2024

CVE-2024-33069

Published: October 7, 2024

CVE-2024-33070

Qca6574au Firmware
Qca6574au
Qca6574a Firmware
Qca6574a
Qca6564au Firmware
Qca6564au
Qca6564a Firmware
Qca6564a
Mdm9628 Firmware
Mdm9628

Published: October 7, 2024

CVE-2024-33071

Mdm9628 Firmware
Mdm9628
Qca6564a Firmware
Qca6564a
Qca6564au Firmware
Qca6564au
Qca6574a Firmware
Qca6574a
Qca6574au Firmware
Qca6574au

Published: October 7, 2024

CVE-2024-38397

Published: October 7, 2024

CVE-2024-45293

PHPSpreadsheet

Version(s): 1.29.1, 2.1.1, 2.3.0

Published: October 7, 2024

CVE-2024-45290

Phpspreadsheet

Published: October 7, 2024

CVE-2023-6361

Version(s): 16.1 SR-1, 20.4

Published: October 7, 2024

CVE-2023-6362

Version(s): 16.1 SR-1, 20.4

Published: October 7, 2024

CVE-2024-47610

Version(s): 0.16.5 and later

Published: October 7, 2024

CVE-2024-43363

Cacti

Published: October 7, 2024

CVE-2024-9576

Distro Linux Workbooth

Version(s): 2.5

Published: October 7, 2024

CVE-2024-47975

Solidigm DC Products

Published: October 7, 2024

CVE-2024-31449

Version(s): 6.2.16, 7.2.6, 7.4.1

Published: October 7, 2024

CVE-2024-20090

vdec

Published: October 7, 2024

CVE-2024-20098

MediaTek Android devices

Published: October 7, 2024

CVE-2024-20099

Published: October 7, 2024

CVE-2024-23370

Wsa8835 Firmware
Wsa8835
Wsa8830 Firmware
Wsa8830
Wcn3988 Firmware
Wcn3988
Wcn3980 Firmware
Wcn3980
Sw5100p Firmware
Sw5100p
Sw5100 Firmware
Sw5100
Snapdragon Auto 5g Modem-Rf Gen 2 Firmware
Snapdragon Auto 5g Modem-Rf Gen 2
Qca9377 Firmware
Qca9377
Qca9367 Firmware
Qca9367
Qca6698aq Firmware
Qca6698aq
Qca6584au Firmware
Qca6584au

Published: October 7, 2024

CVE-2024-23374

Published: October 7, 2024

CVE-2024-23375

Wsa8835 Firmware
Wsa8835
Wsa8830 Firmware
Wsa8830
Wcn3988 Firmware
Wcn3988
Wcn3980 Firmware
Wcn3980
Wcn3680b Firmware
Wcn3680b
Wcn3660b Firmware
Wcn3660b
Sw5100p Firmware
Sw5100p
Sw5100 Firmware
Sw5100
Snapdragon W5\+ Gen 1 Wearable Platform Firmware
Snapdragon W5\+ Gen 1 Wearable Platform
Sa8195p Firmware
Sa8195p
Sa8155p Firmware
Sa8155p
Sa6155p Firmware
Sa6155p
Sa4155p Firmware
Sa4155p
Sa4150p Firmware
Sa4150p

Published: October 7, 2024

CVE-2024-23376

Published: October 7, 2024

CVE-2024-23378

Published: October 7, 2024

CVE-2024-23379

Published: October 7, 2024

CVE-2024-42027

Rocket.Chat Mobile

Version(s): before 4.5.1

Published: October 7, 2024

CVE-2024-47976

Solidigm DC Products

Published: October 7, 2024

CVE-2024-45933

OnlineNewsSite

Version(s): v1.0

Published: October 7, 2024

CVE-2024-9573

Soplanning

Published: October 7, 2024

CVE-2024-9574

Soplanning

Published: October 7, 2024

CVE-2024-46040

IoT Haat Smart Plug IH-IN-16A-S

Version(s): v5.16.1

Published: October 7, 2024

CVE-2024-47971

SSD DC Products

Published: October 7, 2024

CVE-2024-45919

Version(s): 24.4.2

Published: October 7, 2024

CVE-2024-47818

Version(s): 1.0.0-beta16

Published: October 7, 2024

CVE-2024-47079

Meshtastic firmware

Version(s): 2.5.1

Published: October 7, 2024

CVE-2024-47969

Solidigm DC Products

Published: October 7, 2024

CVE-2024-38425

Wsa8835 Firmware
Wsa8835
Wsa8830 Firmware
Wsa8830
Wcd9380 Firmware
Wcd9380
Snapdragon 8\+ Gen 2 Mobile Platform Firmware
Snapdragon 8\+ Gen 2 Mobile Platform
Snapdragon 8\+ Gen 1 Mobile Platform Firmware
Snapdragon 8\+ Gen 1 Mobile Platform
Snapdragon 8 Gen 3 Mobile Platform Firmware
Snapdragon 8 Gen 3 Mobile Platform
Snapdragon 8 Gen 2 Mobile Platform Firmware
Snapdragon 8 Gen 2 Mobile Platform
Snapdragon 8 Gen 1 Mobile Platform Firmware
Snapdragon 8 Gen 1 Mobile Platform
Snapdragon 7\+ Gen 2 Mobile Platform Firmware
Snapdragon 7\+ Gen 2 Mobile Platform
Snapdragon 7 Gen 1 Mobile Platform Firmware
Snapdragon 7 Gen 1 Mobile Platform
Snapdragon 695 5g Mobile Platform Firmware
Snapdragon 695 5g Mobile Platform
Snapdragon 685 4g Mobile Platform \(Sm6225-Ad\) Firmware
Snapdragon 685 4g Mobile Platform \(Sm6225-Ad\)
Snapdragon 680 4g Mobile Platform Firmware
Snapdragon 680 4g Mobile Platform
Snapdragon 662 Mobile Platform Firmware
Snapdragon 662 Mobile Platform
Snapdragon 6 Gen 1 Mobile Platform Firmware
Snapdragon 6 Gen 1 Mobile Platform
Snapdragon 480\+ 5g Mobile Platform \(Sm4350-Ac\) Firmware
Snapdragon 480\+ 5g Mobile Platform \(Sm4350-Ac\)
Snapdragon 480 5g Mobile Platform Firmware
Snapdragon 480 5g Mobile Platform
Snapdragon 4 Gen 2 Mobile Platform Firmware
Snapdragon 4 Gen 2 Mobile Platform
Snapdragon 4 Gen 1 Mobile Platform Firmware
Snapdragon 4 Gen 1 Mobile Platform
Sm8750 Firmware
Sm8750
Sm8635 Firmware
Sm8635
Sm7435 Firmware
Sm7435
Fastconnect 7800 Firmware
Fastconnect 7800
Fastconnect 6900 Firmware
Fastconnect 6900

Published: October 7, 2024

CVE-2024-28709

Limesurvey

Published: October 7, 2024

CVE-2024-28710

Limesurvey

Published: October 7, 2024

CVE-2024-46300

Angeljudesuarez

Placement Management System

Published: October 7, 2024

CVE-2024-42831

Elaine's Realtime CRM Automation

Version(s): 6.18.17

Published: October 7, 2024

CVE-2024-45060

Phpspreadsheet

Published: October 7, 2024

CVE-2024-47772

Discourse

Published: October 7, 2024

CVE-2024-47817

Lara-zeus Dynamic Dashboard

Lara-zeus artemis

Published: October 7, 2024

CVE-2024-44674

D-Link COVR-2600R

Version(s): FW101b05

Published: October 7, 2024

CVE-2024-46325

TP-Link WR740N V6

Published: October 7, 2024

CVE-2024-31228

Version(s): 6.2.16, 7.2.6, 7.4.1

Published: October 7, 2024

CVE-2024-45153

Adobe Experience Manager

Version(s): 6.5.20 and earlier

Published: October 7, 2024

CVE-2024-9571

Soplanning

Published: October 7, 2024

CVE-2024-9572

Soplanning

Published: October 7, 2024

CVE-2024-45292

PHPSpreadsheet

Version(s): 1.29.2, 2.1.1, 2.3.0

Published: October 7, 2024

CVE-2024-43362

Cacti

Published: October 7, 2024

CVE-2024-47344

StylemixThemes uListing

Version(s): n/a, 2.1.5

Published: October 7, 2024

CVE-2024-47973

Solidigm DC Products

Published: October 7, 2024

CVE-2024-20102

Android

Published: October 7, 2024

CVE-2024-45932

Krayin Crm

Published: October 7, 2024

CVE-2024-20091

Android

Published: October 7, 2024

CVE-2024-20093

Android

Published: October 7, 2024

CVE-2024-20095

Android

Published: October 7, 2024

CVE-2024-20096

Android

Published: October 7, 2024

CVE-2024-20097

Android

Published: October 7, 2024

CVE-2024-31227

Version(s): 7, 7.2.6, 7.4.1

Published: October 7, 2024

CVE-2024-47967

Solidigm DC Products

Published: October 7, 2024

CVE-2024-47974

Solidigm DC Products

Published: October 7, 2024

CVE-2024-47968

Solidigm DC Products

Published: October 7, 2024

CVE-2024-43789

Discourse

Published: October 7, 2024

CVE-2024-45297

Discourse

Published: October 7, 2024

CVE-2024-47972

Solidigm DC Products

Published: October 7, 2024

CVE-2024-47814

Vim

Version(s): < 9.1.0764

Published: October 7, 2024

CVE-2024-45894

Version(s): 1.6

Published: October 7, 2024

CVE-2024-47781

CreateWiki extension

Published: October 7, 2024

Click here to see more Vulnerabilities