Title |
Published |
Tags |
Description |
Number of indicators |
DarkCracks, an advanced malicious payload & upgrade framework utilizing hacked GLPI and WordPress sites as intermediaries |
Sept. 4, 2024, 8:42 a.m. |
|
DarkCracks is a sophisticated malware framework that exploits compromised GLPI and WordPress sites as intermediaries for payload … |
55 |
Fake update puts visitors at risk |
July 24, 2024, 8:09 a.m. |
|
This intelligence report discusses SocGholish, a JavaScript downloader used by threat actors to deliver malware payloads disguise… |
10 |
Supposed Grasshopper: operators impersonate Israeli government and private companies to deploy open-source malware |
June 28, 2024, 2:58 p.m. |
|
A long-running campaign was identified involving malicious actors impersonating Israeli entities and private companies. The opera… |
18 |
Active exploitation of stored XSS vulnerabilities in WordPress Plugins |
May 31, 2024, 12:23 p.m. |
|
Recent months have witnessed active exploitation attempts targeting multiple cross-site scripting (XSS) vulnerabilities in popula… |
28 |
Surge of JavaScript Malware in sites with vulnerable versions of LiteSpeed Cache Plugin |
May 9, 2024, 3:08 p.m. |
|
A recent surge of malicious JavaScript code has been observed targeting websites using vulnerable versions of the LiteSpeed Cache… |
6 |