ID | Votes | Profile Description |
---|
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
Log4Shell | Unspecified | 2 | Log4Shell is a software vulnerability, specifically a flaw in the design or implementation of the popular Java logging library, Log4j. Identified as CVE-2021-44228, this vulnerability allows an attacker to remotely execute arbitrary code, often leading to full system compromise. Advanced Persistent |
CVE-2021-42237 | Unspecified | 1 | CVE-2021-42237 is a software vulnerability discovered in Sitecore XP, a popular content management system. This flaw was one of several exploited by the cybercriminal group known as Gold Melody between July 2020 and July 2022. The group targeted internet-exposed servers, using these vulnerabilities |
CVE-2016-0545 | Unspecified | 1 | CVE-2016-0545 is a software vulnerability that affects the Oracle E-Business Suite. It is a flaw in the software's design or implementation that potentially allows unauthorized access or manipulation of data. This vulnerability was one of several exploited by the group known as Gold Melody between J |
CVE-2020-14750 | Unspecified | 1 | None |
CVE-2020-14882 | Unspecified | 1 | None |
CVE-2021-4104 | Unspecified | 1 | CVE-2021-4104 is a software vulnerability identified in Flexera's FlexNet. This flaw in the software design or implementation can be exploited by attackers to gain unauthorized access to systems running the affected software. The vulnerability was one of several security flaws used by Gold Melody, a |
CVE-2017-7504 | Unspecified | 1 | CVE-2017-7504 is a significant software vulnerability identified in the JBoss MQ Java Message Service (JMS). This flaw, rooted in software design and implementation, allows for deserialization attacks when exploited on an internet-exposed server. The vulnerability has been abused by malicious actors |
CVE-2021-22941 | Unspecified | 1 | CVE-2021-22941 is a significant software vulnerability identified in Citrix ShareFile, which allows for remote code execution (RCE). This flaw was exploited by the threat actor group known as GOLD MELODY, also referred to as PROPHET SPIDER. The group has been linked to various attacks exploiting sec |
Source | CreatedAt | Title |
---|---|---|
Securelist | 7 months ago | Unveiling NKAbuse: a new multiplatform threat abusing the NKN protocol |
DARKReading | 7 months ago | Complex 'NKAbuse' Malware Uses Blockchain to Hide on Linux, IoT Machines |
DARKReading | 7 months ago | Patch Now: Exploit Activity Mounts for Dangerous Apache Struts 2 Bug |
CERT-EU | 7 months ago | Understanding the Impact of the new Apache Struts File Upload Vulnerability |
CERT-EU | 7 months ago | Critical Struts 2 flaw could result in remote code execution, says Apache |
InfoSecurity-magazine | 7 months ago | Apache Warns of Critical Vulnerability in Struts 2 |
CERT-EU | 9 months ago | Equifax fined £11.1M for 'entirely preventable' mega breach |
CERT-EU | 10 months ago | Celebrity Vulnerabilities: Effective Response to Critical Production Threats |
CERT-EU | 10 months ago | Gold Melody Attacking Organizations With Burp Extension, Mimikatz, and Other Tools |
DARKReading | 10 months ago | 'Gold Melody' Access Broker Plays on Unpatched Servers' Strings |
CERT-EU | 10 months ago | GOLD MELODY: Profile of an Initial Access Broker |
CERT-EU | 10 months ago | Cyber Group 'Gold Melody' Selling Compromised Access to Ransomware Attackers |
CERT-EU | 10 months ago | Gold Melody IAB exploits flaws in Oracle, Apache, Sitecore software to hack into corporate networks |
DARKReading | a year ago | AppSec Playbook 2023: Study of 829M Attacks on 1,400 Websites |
CSO Online | a year ago | Top 10 open source software risks for 2023 |