ID | Votes | Profile Description |
---|
ID | Type | Votes | Profile Description |
---|---|---|---|
No associations to display |
ID | Type | Votes | Profile Description |
---|---|---|---|
Earth Lusca | Unspecified | 1 | Earth Lusca, a threat actor known for its malicious activities in the cyber world, has recently expanded its arsenal with the addition of a new tool, SprySOCKS Linux malware. This development was reported by Security Affairs in October 2020. Earth Lusca can be an individual, a private company, or pa |
ID | Type | Votes | Profile Description |
---|---|---|---|
CVE-2023-25717 | Unspecified | 1 | CVE-2023-25717 is a software vulnerability, specifically a flaw in the design or implementation of the Ruckus AP remote code execution. In April 2023, FortiGuard Labs observed a unique botnet leveraging this vulnerability, utilizing the SOCKS protocol for distribution. This incident represents a sig |
Proxyshell Cve-2021-34473 | Unspecified | 1 | ProxyShell (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207) is a set of three chained vulnerabilities that perform unauthenticated remote code execution (RCE) in Microsoft Exchange. Identified as a significant flaw in software design or implementation, it allows unauthorized users to execute arbitra |
CVE-2022-40684 | Unspecified | 1 | CVE-2022-40684 is a significant software vulnerability identified in Fortinet devices, specifically relating to an authentication bypass flaw. This flaw in the software design or implementation allows threat actors to exploit the vulnerability, compromising network security and providing unauthorize |
CVE-2022-39952 | Unspecified | 1 | CVE-2022-39952 is a critical vulnerability in Fortinet's network access control suite, FortiNAC. This flaw, which resides in the software design or implementation, could lead to arbitrary code execution, posing a severe threat to network security. The vulnerability was identified and addressed by Fo |
Earth Lusca Earth Lusca | Unspecified | 1 | None |
CVE-2021-22941 | Unspecified | 1 | CVE-2021-22941 is a significant software vulnerability identified in Citrix ShareFile, which allows for remote code execution (RCE). This flaw was exploited by the threat actor group known as GOLD MELODY, also referred to as PROPHET SPIDER. The group has been linked to various attacks exploiting sec |
CVE-2021-35464 | Unspecified | 1 | None |
CVE-2019-19781 | Unspecified | 1 | CVE-2019-19781, also known as the Citrix Directory Traversal Bug, is a software vulnerability that lies in the design or implementation of the software. This flaw allows an attacker to potentially gain unauthorized access to sensitive data or even execute arbitrary code on the compromised system. De |
CVE-2017-7504 | Unspecified | 1 | CVE-2017-7504 is a significant software vulnerability identified in the JBoss MQ Java Message Service (JMS). This flaw, rooted in software design and implementation, allows for deserialization attacks when exploited on an internet-exposed server. The vulnerability has been abused by malicious actors |
CVE-2020-14750 | Unspecified | 1 | None |
CVE-2020-14882 | Unspecified | 1 | None |
CVE-2021-26084 | Unspecified | 1 | CVE-2021-26084 is a critical vulnerability related to Atlassian's Confluence software. The flaw in the software design or implementation was first exploited as a zero-day, before its public disclosure in June 2022. It allowed remote attackers to execute code on a Confluence Server via injection atta |
CVE-2021-44228 | Unspecified | 1 | CVE-2021-44228, also known as the Log4j vulnerability, is a software flaw found in Apache Log4j, a widely used logging utility. Despite multiple attempts by Advanced Persistent Threat (APT) actors to exploit this vulnerability in the ServiceDesk system, these efforts were unsuccessful. However, it b |
Source | CreatedAt | Title |
---|---|---|
CERT-EU | 10 months ago | GitLab Releases Urgent Security Patches for Critical Vulnerability | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting |
CERT-EU | 10 months ago | Cyber Group 'Gold Melody' Selling Compromised Access to Ransomware Attackers |
CERT-EU | 10 months ago | Hackers Deployed never-before-seen Linux Malware Attacking Government Entities |
Securityaffairs | 10 months ago | Earth Lusca expands its arsenal with SprySOCKS Linux malware |
Trend Micro | 10 months ago | Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement |
CERT-EU | a year ago | GitLab vulnerability leveraged in LABRAT cryptojacking, proxyjacking operation |
CERT-EU | a year ago | Stealthy ‘LabRat’ Campaign Abuses TryCloudflare to Hide Infrastructure |
InfoSecurity-magazine | a year ago | Proxyjacking and Cryptomining Campaign Targets GitLab |
CISA | a year ago | Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors | CISA |
CISA | a year ago | Top CVEs Actively Exploited By People’s Republic of China State-Sponsored Cyber Actors | CISA |
CERT-EU | a year ago | Andoryu Botnet Exploits Critical Ruckus Wireless Flaw for Widespread Attack |