Today > | 4 High | 11 Medium vulnerabilities - You can now download lists of IOCs here!

Tag: 2024-12-16

9 attack reports | 205 vulnerabilities

Attack reports

Technical Analysis of RiseLoader

RiseLoader, a new malware loader family observed in October 2024, implements a custom TCP-based binary network protocol similar to RisePro. It uses VMProtect for obfuscation and has been observed dropping malware families like Vidar, Lumma Stealer, XMRig, and Socks5Systemz. The malware collects inf…

Published: December 16, 2024

Downloadable IOCs 0

Widespread Exploitation of Cleo File Transfer Software

Critical vulnerabilities in Cleo file transfer products, including VLTrader, Harmony, and LexiCom, are being actively exploited. Initially stemming from an insufficient patch for CVE-2024-50623, a new critical vulnerability (CVE-2024-55956) allows unauthenticated users to execute arbitrary commands…

Published: December 16, 2024

Downloadable IOCs 6

New Yokai Side-loaded Backdoor Targets Thai Officials

A new backdoor named Yokai has been discovered targeting Thai officials. The malware is distributed via RAR files containing shortcut files that create decoy documents and execute a dropper. The dropper deploys a legitimate iTop Data Recovery application used to side-load the Yokai backdoor DLL. Yo…

Published: December 16, 2024

Downloadable IOCs 20

A PAINFUL QUICKHEAL

This report analyzes a QUICKHEAL malware sample associated with the Chinese PLA-linked Needleminer group. The 32-bit DLL, protected by VMProtect, targets the telecom sector and was compiled in April 2022. It can steal credentials from Firefox and Internet Explorer browsers. The malware communicates…

Published: December 16, 2024

Downloadable IOCs 0

VIPKeyLogger Infostealer in the Wild

A new infostealer called VIPKeyLogger has been observed with increased activity. It shares similarities with Snake Keylogger and is distributed through phishing campaigns. The malware is delivered as an archive or Microsoft 365 file attachment, which downloads and executes a .NET compiled file. VIP…

snake keylogger

Published: December 16, 2024

Downloadable IOCs 0

Mauri Ransomware Threat Actors Exploiting Apache ActiveMQ Vulnerability (CVE-2023-46604)

Threat actors are exploiting the CVE-2023-46604 vulnerability in Apache ActiveMQ to attack Korean systems, particularly using Mauri ransomware. The vulnerability allows remote code execution on unpatched servers. Attackers use XML configuration files to add backdoor accounts, install remote access …

apache activemq

mauri ransomware

Published: December 16, 2024

Downloadable IOCs 0

Under the SADBRIDGE with GOSAR: QUASAR Gets a Golang Rewrite

Elastic Security Labs has uncovered a new intrusion set targeting Chinese-speaking regions, dubbed REF3864. The threat group employs a custom loader called SADBRIDGE to deploy GOSAR, a Golang-based reimplementation of the QUASAR backdoor. The infection chain involves trojanized MSI installers masqu…

Published: December 16, 2024

Downloadable IOCs 13

Declawing PUMAKIT

PUMAKIT is a sophisticated multi-stage Linux malware consisting of a dropper, memory-resident executables, an LKM rootkit, and a userland rootkit. It employs advanced stealth techniques to hide its presence and maintain C2 communication. The rootkit hooks 18 syscalls and kernel functions using ftra…

privilege escalation

syscall hooking

Published: December 16, 2024

Downloadable IOCs 12

New I2PRAT communicates via anonymous peer-to-peer network

A novel malware strain, I2PRAT, has been discovered utilizing the I2P network for command and control communication. The infection begins with a phishing email leading to a fake CAPTCHA page, which tricks users into executing a malicious PowerShell script. The malware employs UAC bypass, Microsoft …

Published: December 16, 2024

Downloadable IOCs 0

» Click here to see all Attack Reports «

Vulnerabilities

CVE-2024-54370

Video & Photo Gallery for Ultimate Member

Published: December 16, 2024

CVE-2024-49775

Totally Integrated Automation Portal (TIA Portal) V16

Published: December 16, 2024

CVE-2024-54363

Wp NssUser Register

Published: December 16, 2024

CVE-2024-54367

Published: December 16, 2024

CVE-2024-56012

Flash News / Post (Responsive)

Published: December 16, 2024

CVE-2024-43234

Published: December 16, 2024

CVE-2024-54229

Straightvisions GmbH SV100 Companion

Published: December 16, 2024

CVE-2024-55557

Published: December 16, 2024

CVE-2024-29671

NEXTU FLATA AX1500 Router

Published: December 16, 2024

CVE-2024-52949

Published: December 16, 2024

CVE-2024-55085

GetSimple CMS CE

Published: December 16, 2024

CVE-2024-12641

TenderDocTransfer from Chunghwa Telecom

Published: December 16, 2024

CVE-2024-54368

Published: December 16, 2024

CVE-2024-54372

Published: December 16, 2024

CVE-2024-54361

Instant Appointment

Published: December 16, 2024

CVE-2024-55972

Chris Carvache eTemplates

Published: December 16, 2024

CVE-2024-55976

Critical Site Intel

Published: December 16, 2024

CVE-2024-55977

LaunchPage.app Importer

Published: December 16, 2024

CVE-2024-55978

Code Generator Pro

Published: December 16, 2024

CVE-2024-55980

Webriderz Wr Age Verification

Published: December 16, 2024

CVE-2024-55981

Nabz Image Gallery

Published: December 16, 2024

CVE-2024-55982

richteam Share Buttons – Social Media

Published: December 16, 2024

CVE-2024-55988

Navayan CSV Export

Published: December 16, 2024

CVE-2024-54280

Published: December 16, 2024

CVE-2024-54369

Zita Site Builder

Published: December 16, 2024

CVE-2024-54285

SeedProd LLC SeedProd Pro

Published: December 16, 2024

CVE-2024-53376

Published: December 16, 2024

CVE-2024-54352

Published: December 16, 2024

CVE-2024-54365

KH Easy User Settings

Published: December 16, 2024

CVE-2024-54378

Quietly Insights

Published: December 16, 2024

CVE-2024-54379

Minterpress

Published: December 16, 2024

CVE-2024-56013

Published: December 16, 2024

CVE-2024-12089

ENOVIA Collaborative Industry Innovator

Published: December 16, 2024

CVE-2024-12090

ENOVIA Collaborative Industry Innovator

Published: December 16, 2024

CVE-2024-12091

ENOVIA Collaborative Industry Innovator

Published: December 16, 2024

CVE-2024-12092

ENOVIA Collaborative Industry Innovator

Published: December 16, 2024

CVE-2024-55973

TSB Occasion Editor

Published: December 16, 2024

CVE-2024-55974

AMS Nexe Iberica Mimoos

Published: December 16, 2024

CVE-2024-55979

Webriderz Wr Age Verification

Published: December 16, 2024

CVE-2024-55986

serviceonline Service

Published: December 16, 2024

CVE-2024-55987

Advanced What should we write next about

Published: December 16, 2024

CVE-2024-10095

Telerik UI for WPF

Published: December 16, 2024

CVE-2024-12668

Velocidex WinPmem

Published: December 16, 2024

CVE-2024-54359

Banner System by Saul Morales Pacheco

Published: December 16, 2024

CVE-2024-56083

Cognition Devin

Published: December 16, 2024

CVE-2024-12642

TenderDocTransfer from Chunghwa Telecom

Published: December 16, 2024

CVE-2024-12643

tbm-client from Chunghwa Telecom

Published: December 16, 2024

CVE-2024-12646

topm-client from Chunghwa Telecom

Published: December 16, 2024

CVE-2024-6001

Published: December 16, 2024

CVE-2024-37774

Sunbird DCIM dcTrack

Published: December 16, 2024

CVE-2024-4762

Published: December 16, 2024

CVE-2024-55989

WP Simple Pay Lite Manager

Published: December 16, 2024

CVE-2024-55990

Mollie for Contact Form 7

Published: December 16, 2024

CVE-2024-54283

SeedProd LLC SeedProd Pro

Published: December 16, 2024

CVE-2024-54284

SeedProd Pro

Published: December 16, 2024

CVE-2024-8058

FileZ Client

Published: December 16, 2024

CVE-2024-8798

Published: December 16, 2024

CVE-2024-54373

EduAdmin Booking

Published: December 16, 2024

CVE-2024-54374

Published: December 16, 2024

CVE-2024-54375

Published: December 16, 2024

CVE-2024-54380

WP Cookies Enabler

Published: December 16, 2024

CVE-2024-54279

WP-NERD Toolkit

Published: December 16, 2024

CVE-2024-54376

Published: December 16, 2024

CVE-2024-11144

Published: December 16, 2024

CVE-2024-37775

Sunbird DCIM dcTrack

Published: December 16, 2024

CVE-2024-10972

Velocidex WinPmem

Published: December 16, 2024

CVE-2024-54385

SoftLab Radio Player

Published: December 16, 2024

CVE-2024-55103

Online Nurse Hiring System

Published: December 16, 2024

CVE-2024-55104

Online Nurse Hiring System

Published: December 16, 2024

CVE-2024-56084

Logpoint UniversalNormalizer

Published: December 16, 2024

CVE-2024-56086

Published: December 16, 2024

CVE-2024-12644

tbm-client from Chunghwa Telecom

Published: December 16, 2024

CVE-2024-54331

I Plant A Tree

Published: December 16, 2024

CVE-2024-54332

WP Currency Exchange Rates

Published: December 16, 2024

CVE-2024-54353

WPGear Hack-Info

Published: December 16, 2024

CVE-2024-54358

Avatar 3D Creator

Published: December 16, 2024

CVE-2024-54364

Feedpress Generator

Published: December 16, 2024

CVE-2024-54386

Push Monkey Pro - Web Push Notifications

Published: December 16, 2024

CVE-2024-54387

Jaytesh Barange Posts Date Ranges

Published: December 16, 2024

CVE-2024-54388

Multiple Admin Emails

Published: December 16, 2024

CVE-2024-54389

Published: December 16, 2024

CVE-2024-54390

Published: December 16, 2024

CVE-2024-54391

WordPress Filter

Published: December 16, 2024

CVE-2024-54392

WP微信机器人

Published: December 16, 2024

CVE-2024-54393

Published: December 16, 2024

CVE-2024-54394

Mandrill WP

Published: December 16, 2024

CVE-2024-54395

Increase Sociability

Published: December 16, 2024

CVE-2024-54397

Published: December 16, 2024

CVE-2024-54398

Project Caruso Flaming Forms

Published: December 16, 2024

CVE-2024-54399

CRUDLab Google Plus Button

Published: December 16, 2024

CVE-2024-54400

Published: December 16, 2024

CVE-2024-54401

Turcu Ciprian Advanced Fancybox

Published: December 16, 2024

CVE-2024-54403

Visual Recent Posts

Published: December 16, 2024

CVE-2024-54404

MDC Comment Toolbar

Published: December 16, 2024

CVE-2024-54405

ECT Social Share

Published: December 16, 2024

CVE-2024-54406

Comments On Feed

Published: December 16, 2024

CVE-2024-54407

Published: December 16, 2024

CVE-2024-54409

XPD Reduce Image Filesize

Published: December 16, 2024

CVE-2024-54410

SOPA Blackout

Published: December 16, 2024

CVE-2024-54411

WP Controller

Published: December 16, 2024

CVE-2024-54412

Ecommerce Templates ECT Product Carousel

Published: December 16, 2024

CVE-2024-54413

Display Future Posts

Published: December 16, 2024

CVE-2024-54414

Geoportail Shortcode

Published: December 16, 2024

CVE-2024-54415

WP-HideThat

Published: December 16, 2024

CVE-2024-54416

Wp Login with Ajax

Published: December 16, 2024

CVE-2024-54420

Published: December 16, 2024

CVE-2024-54421

Floating Video Player

Published: December 16, 2024

CVE-2024-54422

Evernote Sync

Published: December 16, 2024

CVE-2024-54423

Jesse Overright Social Media Sharing

Published: December 16, 2024

CVE-2024-54424

Like in Vk.com

Published: December 16, 2024

CVE-2024-54425

LionScripts: Site Maintenance & Noindex Nofollow Plugin

Published: December 16, 2024

CVE-2024-54426

LeaderBoard Plugin

Published: December 16, 2024

CVE-2024-54427

Linda MacPhee-Cobb Category of Posts

Published: December 16, 2024

CVE-2024-54428

Add image to Post

Published: December 16, 2024

CVE-2024-54429

Published: December 16, 2024

CVE-2024-54431

Admin Customization

Published: December 16, 2024

CVE-2024-54432

WP Flipkart Importer

Published: December 16, 2024

CVE-2024-54433

Simple Booking Widget

Published: December 16, 2024

CVE-2024-54434

Published: December 16, 2024

CVE-2024-54435

Onlywire Multi Autosubmitter

Published: December 16, 2024

CVE-2024-54436

Jet Footer Code

Published: December 16, 2024

CVE-2024-54437

Published: December 16, 2024

CVE-2024-54438

GAxx Gaxx Keywords

Published: December 16, 2024

CVE-2024-54439

Amazon Product Price

Published: December 16, 2024

CVE-2024-54440

WP-Ban-User

Published: December 16, 2024

CVE-2024-56015

Published: December 16, 2024

CVE-2024-54249

Jules Colle Advanced Options Editor

Published: December 16, 2024

CVE-2024-54257

Published: December 16, 2024

CVE-2024-56017

Tom Royal Stop Registration Spam

Published: December 16, 2024

CVE-2024-12645

topm-client

Published: December 16, 2024

CVE-2024-54083

Published: December 16, 2024

CVE-2024-54682

Published: December 16, 2024

CVE-2024-54354

Termin-Kalender

Published: December 16, 2024

CVE-2024-54360

Published: December 16, 2024

CVE-2024-54408

Youtube Video Grid

Published: December 16, 2024

CVE-2024-54441

Meini Utech World Time

Published: December 16, 2024

CVE-2024-54443

Advanced Data Table For Elementor

Published: December 16, 2024

CVE-2024-56001

Published: December 16, 2024

CVE-2024-56005

Posti Shipping

Published: December 16, 2024

CVE-2024-56011

Responsive Google Maps by imbaa

Published: December 16, 2024

CVE-2024-54348

YayCommerce Brand

Published: December 16, 2024

CVE-2024-12443

CRM Perks WordPress HelpDesk Integration plugin

Published: December 16, 2024

CVE-2024-12478

InvoicePlane

Published: December 16, 2024

CVE-2024-56112

Published: December 16, 2024

CVE-2024-55996

Dreamfox Media Payment gateway per Product for Woocommerce

Published: December 16, 2024

CVE-2024-56085

Published: December 16, 2024

CVE-2024-56087

Published: December 16, 2024

CVE-2024-54442

Better WP Login Page

Published: December 16, 2024

CVE-2024-11358

Mattermost Android Mobile Apps

Published: December 16, 2024

CVE-2024-12653

FabulaTech USB over Network

Published: December 16, 2024

CVE-2024-12654

FabulaTech USB over Network

Published: December 16, 2024

CVE-2024-12655

FabulaTech USB over Network

Published: December 16, 2024

CVE-2024-12656

FabulaTech USB over Network

Published: December 16, 2024

CVE-2024-12657

IObit Advanced SystemCare Utimate

Published: December 16, 2024

CVE-2024-12658

IObit Advanced SystemCare Ultimate

Published: December 16, 2024

CVE-2024-12659

IObit Advanced SystemCare Ultimate

Published: December 16, 2024

CVE-2024-12660

IObit Advanced SystemCare Ultimate

Published: December 16, 2024

CVE-2024-12661

IObit Advanced SystemCare Ultimate

Published: December 16, 2024

CVE-2024-12662

IObit Advanced SystemCare Ultimate

Published: December 16, 2024

CVE-2024-11841

Tithe.ly Giving Button WordPress plugin

Published: December 16, 2024

CVE-2024-54356

Online Booking & Scheduling Calendar for WordPress by vcita

Published: December 16, 2024

CVE-2024-54418

Diversified Technology Corp. DTC Documents

Published: December 16, 2024

CVE-2024-54419

Ui Slider Filter By Price

Published: December 16, 2024

CVE-2024-54430

EELV Newsletter

Published: December 16, 2024

CVE-2024-55992

WooCommerce Basic Ordernumbers

Published: December 16, 2024

CVE-2024-55998

Popup Surveys & Polls for WordPress (Mare.io)

Published: December 16, 2024

CVE-2024-56004

Easy Site Importer

Published: December 16, 2024

CVE-2024-55554

Intrexx Portal Server

Published: December 16, 2024

CVE-2024-55452

Published: December 16, 2024

CVE-2024-8116

GitLab CE/EE

Published: December 16, 2024

CVE-2024-8650

GitLab CE/EE

Published: December 16, 2024

CVE-2024-5333

WordPress Events Calendar

Published: December 16, 2024

CVE-2024-9679

DLP Extension

Published: December 16, 2024

CVE-2024-54366

Vimeography

Published: December 16, 2024

CVE-2024-54417

Published: December 16, 2024

CVE-2024-55993

Job Board Manager

Published: December 16, 2024

CVE-2024-56009

Spreadr Woocommerce

Published: December 16, 2024

CVE-2024-55999

XML Multilanguage Sitemap Generator

Published: December 16, 2024

CVE-2024-35230

Published: December 16, 2024

CVE-2024-9678

DLP Extension

Published: December 16, 2024

CVE-2024-54382

BoldThemes Bold Page Builder

Published: December 16, 2024

CVE-2024-48872

Published: December 16, 2024

CVE-2024-55100

Online Nurse Hiring System

Published: December 16, 2024

CVE-2024-37773

Sunbird DCIM dcTrack

Published: December 16, 2024

CVE-2024-37776

Sunbird DCIM dcTrack

Published: December 16, 2024

CVE-2024-55451

Published: December 16, 2024

CVE-2024-12666

Published: December 16, 2024

CVE-2024-12362

InvoicePlane

Published: December 16, 2024

CVE-2024-37251

Advanced Custom Fields PRO

Published: December 16, 2024

CVE-2024-54355

WP Mailster

Published: December 16, 2024

CVE-2024-54384

Falcon – WordPress Optimizations & Tweaks

Published: December 16, 2024

CVE-2024-54396

Bet sport Free

Published: December 16, 2024

CVE-2024-54402

Arabic Webfonts

Published: December 16, 2024

CVE-2024-55994

畅言评论系统

Published: December 16, 2024

CVE-2024-56007

Ram Segev Leader

Published: December 16, 2024

CVE-2024-54357

ThemeFusion Avada

Published: December 16, 2024

CVE-2024-56003

Caldera SMTP Mailer

Published: December 16, 2024

CVE-2024-12663

Published: December 16, 2024

CVE-2024-12667

InvoicePlane

Published: December 16, 2024

CVE-2024-12664

ruifang-tech Rebuild

Published: December 16, 2024

CVE-2024-12665

ruifang-tech Rebuild

Published: December 16, 2024

CVE-2024-6002

Published: December 16, 2024

CVE-2024-12687

Published: December 16, 2024

CVE-2024-55949

Published: December 16, 2024

CVE-2024-55951

Published: December 16, 2024

» Click here to see all Vulnerabilities «