| ID | Votes | Profile Description |
|---|---|---|
| Water Hydra | 4 | The Advanced Persistent Threat (APT) group known as Water Hydra, also referred to as DarkCasino, has been identified as a significant threat actor in the cybersecurity landscape. The group is notorious for its exploitation of CVE-2024-21412, a vulnerability that allows them to bypass Microsoft Defen |
| Darkcasino | 3 | DarkCasino, a threat actor known for its malicious activities, has recently been identified as one of the Advanced Persistent Threat (APT) groups exploiting a zero-day vulnerability in WinRAR. APT groups are typically state-sponsored or criminal organizations that conduct long-term cyber-espionage o |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| GuLoader | Unspecified | 3 | GuLoader is a type of malware that infiltrates systems through suspicious downloads, emails, or websites, often unbeknownst to the user. Once inside a system, it can steal personal information, disrupt operations, or even hold data hostage for ransom. GuLoader is encrypted with NSIS Crypter and has |
| EVILNUM | Unspecified | 1 | Evilnum is a form of malware, first observed and reported in 2018, that is designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge, and can steal personal information, disrupt operations, or even ho |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
No associations to display |
| ID | Type | Votes | Profile Description |
|---|---|---|---|
| CVE-2024-21412 | Unspecified | 3 | CVE-2024-21412 is a security feature bypass vulnerability in the Microsoft Windows Internet Shortcut SmartScreen. The flaw, which was exploited as a zero-day, allows attackers to bypass the SmartScreen feature that typically warns users about running unrecognized apps and files from the internet. Th |
| CVE-2023-38831 | Unspecified | 1 | CVE-2023-38831 is a critical vulnerability identified in the WinRAR software, with a CVSS score of 7.8, indicating high severity. This flaw in software design or implementation has been exploited to disseminate the LONEPAGE malware through ZIP files using an exploit known as UAC-0099. The vulnerabil |
| Source | CreatedAt | Title |
|---|---|---|
| CERT-EU | 4 months ago | CVE-2024-21412 Used in DarkGate Malware Campaigns |
| CERT-EU | a year ago | Cyber Security Week in Review: August 25, 2023 |
| CERT-EU | a year ago | The Week in Security: WinRAR exploit targets traders, malicious npm packages go after game devs |
| CERT-EU | 8 months ago | Previously unknown APT DarkCasino hits jackpot in WinRAR attack |
| CERT-EU | 9 months ago | The New APT Group DarkCasino and the Global Surge in WinRAR 0-Day Exploits |
| CERT-EU | a year ago | WinRAR zero-day exploited since April to hack trading accounts |
| BankInfoSecurity | 9 months ago | Nation-State Hackers Exploiting WinRAR, Google Warns |
| CERT-EU | a year ago | Threat Actor Exploits Zero-Day in WinRAR to Target Crypto Accounts |
| InfoSecurity-magazine | a year ago | WinRAR Vulnerability Affects Traders Worldwide |
| InfoSecurity-magazine | 5 months ago | Water Hydra’s Zero-Day Attack Chain Targets Financial Traders |
| Securityaffairs | 8 months ago | DarkCasino joins the list of APT groups exploiting WinRAR 0day |
| CERT-EU | a year ago | WinRAR flaw lets hackers steal funds from broker accounts |
| CERT-EU | 9 months ago | Google links WinRAR exploitation to Russian, Chinese state hackers |
| CERT-EU | a year ago | Traders Targeted by Cybercriminals in Attack Exploiting WinRAR Zero-Day |
| DARKReading | 5 months ago | Attackers Exploit Microsoft Security-Bypass Zero-Day Bugs |
| Trend Micro | 5 months ago | CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day |
| CERT-EU | 10 months ago | Analysis of CVE-2023-38831 Zero-Day vulnerability in WinRAR |