Today > vulnerabilities   -   You can now download lists of IOCs here!

Tag: erp

2 attack reports | 0 vulnerabilities

Attack reports

Increased Activity Against Apache OFBiz CVE-2024-32113

Recently, there has been a surge in malicious activity targeting a critical vulnerability (CVE-2024-32113) in the Apache OFBiz framework, a Java-based platform for developing Enterprise Resource Planning (ERP) applications. This vulnerability, a path traversal issue that can lead to remote code exe…

vulnerability
CVE-2024-32113
apache
erp
2024-08-01
remote code execution
ofbiz
Published: August 1, 2024

Downloadable IOCs 5

Analysis of Attack Case Installing VPN on Korean ERP Server

This analysis examines an attack where a threat actor compromised a Korean company's ERP server, initially accessing it through a poorly secured MS-SQL service. The actor installed a web shell, stole credentials, and ultimately set up SoftEther VPN on the server, likely to use it as part of a comma…

sql injection
credential theft
remote access
2024-06-17
vpn
erp
softether vpn
Published: June 17, 2024

Downloadable IOCs 11

» Click here to see all Attack Reports «