Tag: 2024-12-07

4 Attack Reports | 32 Vulnerabilities

Attack reports

Meeten Malware: A Cross-Platform Threat to Crypto Wallets on macOS and Windows

A sophisticated scam targeting Web3 professionals has been identified, involving the Realst crypto stealer malware with variants for both macOS and Windows. The threat actors have created fake companies using AI-generated content to appear legitimate, cycling through various names like Meetio, Clus…
windows
macos
social-engineering
information theft
cross-platform
ai-generated content
web3
2024-12-07
meeten
electron application
crypto-stealer
realst
Published: December 7, 2024
Downloadable IOCs: 0

Compromised ultralytics PyPI package delivers crypto coinminer

A malicious version of the popular AI library ultralytics was published on PyPI, containing downloader code for the XMRig coinminer. The compromise was achieved by exploiting a known GitHub Actions script injection. Two versions, 8.3.41 and 8.3.42, were affected before a clean version 8.3.43 was re…
xmrig
coinminer
pypi
2024-12-07
ultralytics
supply-chain-attack
Published: December 7, 2024
Downloadable IOCs: 0

A Technical Look At The New 'Termite' Ransomware That Hit Blue Yonder

The Termite ransomware, a rebranded version of Babuk, recently targeted supply chain management platform Blue Yonder. This new strain employs advanced tactics, including double extortion, to maximize its impact. Upon execution, it terminates services, deletes shadow copies, empties the recycle bin,…
ransomware
babuk
double extortion
2024-12-07
file encryption
network shares
termite
blue yonder
Published: December 7, 2024
Downloadable IOCs: 0

Network Abuses Leveraging High-Profile Events: Suspicious Domain Registrations and Other Scams

Threat actors exploit high-profile events like global sporting championships to launch attacks through phishing and scams. The analysis focuses on trends in domain registrations, DNS traffic, URL traffic, active domains, verdict change requests, and domain textual patterns. Case studies include obs…
phishing
dns traffic
olympics
scams
domain abuse
2024-12-07
url filtering
threat monitoring
cybersquatting
Published: December 7, 2024
Downloadable IOCs: 0
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-11501

8.8
    WordPress Gallery plugin
Published: December 7, 2024

CVE-2024-53143

7.8
    Linux kernel
Published: December 7, 2024

CVE-2024-47115

7.8
    IBM AIX
    VIOS
Published: December 7, 2024

CVE-2024-12270

7.5
    Beautiful taxonomy filters plugin for WordPress
Published: December 7, 2024

CVE-2024-53473

7.5
    WeGIA
Published: December 7, 2024

CVE-2024-11010

7.2
    FileOrganizer - Manage WordPress and Website Files plugin for WordPress
Published: December 7, 2024

CVE-2024-8679

6.8
    Library Management System – Manage e-Digital Books Library plugin for WordPress
Published: December 7, 2024

CVE-2024-11451

6.4
    Zooom plugin for WordPress
Published: December 7, 2024

CVE-2024-11904

6.4
    WordPress 코드엠샵 소셜톡 plugin
Published: December 7, 2024

CVE-2024-11380

6.4
    Mini Program API plugin for WordPress
Published: December 7, 2024

CVE-2024-47107

6.4
    IBM QRadar SIEM
Published: December 7, 2024

CVE-2024-10046

6.1
    WordPress Persian WooCommerce SMS plugin
Published: December 7, 2024

CVE-2024-11329

6.1
    Comfino Payment Gateway plugin for WordPress
Published: December 7, 2024

CVE-2024-11436

6.1
    Drag & Drop Builder plugin for WordPress
Published: December 7, 2024

CVE-2024-11943

6.1
    워드프레스 결제 심플페이 – 우커머스 결제 플러그인
Published: December 7, 2024

CVE-2024-12165

6.1
    WordPress plugin Mollie for Contact Form 7
Published: December 7, 2024

CVE-2024-12166

6.1
    Shortcodes Blocks Creator Ultimate plugin for WordPress
Published: December 7, 2024

CVE-2024-12167

6.1
    Shortcodes Blocks Creator Ultimate plugin for WordPress
Published: December 7, 2024

CVE-2024-12257

6.1
    CardGate Payments for WooCommerce plugin
Published: December 7, 2024

CVE-2024-11367

6.1
    Elementor forms plugin for WordPress
Published: December 7, 2024

CVE-2024-11374

6.1
    TWChat - Send or receive messages from users plugin for WordPress
Published: December 7, 2024

CVE-2024-12128

6.1
    Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress
Published: December 7, 2024

CVE-2024-11457

6.1
    Feedpress Generator – External RSS Frontend Customizer plugin for WordPress
Published: December 7, 2024

CVE-2024-11464

6.1
    Easy Code Snippets plugin for WordPress
Published: December 7, 2024

CVE-2024-12253

5.4
    Simple Ecommerce Shopping Cart Plugin for WordPress
Published: December 7, 2024

CVE-2024-7894

5.3
    If Menu plugin for WordPress
Published: December 7, 2024

CVE-2024-37071

5.3
    IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)
Published: December 7, 2024

CVE-2024-41762

5.3
    IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)
Published: December 7, 2024

CVE-2024-11183

4.8
    Simple Side Tab WordPress plugin
Published: December 7, 2024

CVE-2024-11353

4.3
    SMS for Lead Capture Forms plugin for WordPress
Published: December 7, 2024

CVE-2024-12026

4.3
    Contact Form 7 plugin for WordPress
Published: December 7, 2024

CVE-2024-12115

4.3
    Poll Maker - Versus Polls - Anonymous Polls - Image Polls plugin for WordPress
Published: December 7, 2024
Click here to see more Vulnerabilities