Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHiveForce LabsHIVEPRO:477DFA4907FF46B777F450870B77043D
HistoryJan 29, 2024 - 2:47 p.m.

Attacks, Vulnerabilities and Actors 22 January to 28 January 2024

2024-01-2914:47:47
HiveForce Labs
www.hivepro.com
10
cyberattacks
financial gain group
phishing campaign
malwares
zero-day vulnerability
atlassian confluence
remote code execution
exploitation attempts

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON

For a detailed threat digest, download the pdf file here Summary HiveForce Labs has recently made several significant discoveries related to cybersecurity threats. Over the past week, we identified a total of eight executed attacks, three instances of adversary activity, and three exploited vulnerabilities, highlighting the ever-present danger of cyberattacks. Furthermore, HiveForce Labs uncovered Financial gain group TA866, returned after a hiatus of nine months, launching a new extensive phishing campaign aimed at distributing malwares WasabiSeed and Screenshotter. Meanwhile, a critical zero-day vulnerability (CVE-2023-22527), in Atlassian Confluence that is a critical Remote Code Execution vulnerability which is actively exploited by malicious actors. Nearly 40,000 exploitation attempts have been recorded. Subscribe to receive our weekly threat digests and newsletters directly in your inbox.

Related

nessus 1
cisa_kev 1
githubexploit 17
zdt 2
prion 1
metasploit 1
thn 4
hivepro 1
packetstorm 2
exploitdb 1
trendmicroblog 1
attackerkb 1
rapid7blog 3
nuclei 1
cve 1
atlassian 1
impervablog 2
wallarmlab 1
openvas 1
avleonov 1
nessus
nessus
Atlassian Confluence < 8.5.4 RCE (CONFSERVER-93833)
2024-01-16 00:00:00
cisa_kev
cisa_kev
Atlassian Confluence Data Center and Server Template Injection Vulnerability
2024-01-24 00:00:00
githubexploit
githubexploit
Exploit for Injection in Atlassian Confluence Data Center
2024-01-25 10:52:39
Exploit for Injection in Atlassian Confluence Data Center
2024-03-04 19:09:57
Exploit for Injection in Atlassian Confluence Data Center
2024-02-11 16:46:55
zdt
zdt
Atlassian Confluence < 8.5.3 - Remote Code Execution Exploit
2024-03-18 00:00:00
Atlassian Confluence SSTI Injection Exploit
2024-01-29 00:00:00
prion
prion
Template injection
2024-01-16 05:15:00
metasploit
metasploit
Atlassian Confluence SSTI Injection
2024-01-22 22:06:29
thn
thn
~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation
2024-01-23 09:34:00
CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability
2024-02-16 15:42:00
BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks
2024-03-11 09:53:00
hivepro
hivepro
Critical RCE Flaw in Atlassian Confluence Sparks Active Exploitation
2024-01-24 13:24:06
packetstorm
packetstorm
Atlassian Confluence 8.5.3 Remote Code Execution
2024-03-19 00:00:00
Atlassian Confluence SSTI Injection
2024-01-26 00:00:00
exploitdb
exploitdb
Atlassian Confluence &lt; 8.5.3 - Remote Code Execution
2024-03-18 00:00:00
trendmicroblog
trendmicroblog
Unveiling Atlassian Confluence Vulnerability CVE-2023-22527: Understanding and Mitigating Remote Code Execution Risks
2024-02-07 00:00:00
attackerkb
attackerkb
CVE-2023-22527
2024-01-16 00:00:00
rapid7blog
rapid7blog
RCE to Sliver: IR Tales from the Field
2024-02-15 19:38:59
Critical CVEs in Outdated Versions of Atlassian Confluence and VMware vCenter Server
2024-01-19 15:40:43
Metasploit Weekly Wrap-Up 01/26/24
2024-01-26 21:12:17
nuclei
nuclei
Atlassian Confluence - Remote Code Execution
2024-01-22 08:43:25
cve
cve
CVE-2023-22527
2024-01-16 05:15:08
atlassian
atlassian
RCE (Remote Code Execution) in Confluence Data Center and Server
2024-01-15 07:48:36
impervablog
impervablog
New Sysrv Botnet Variant Makes Use of Google Subdomain to Spread XMRig Miner
2024-03-20 16:56:29
Attackers Quick to Weaponize CVE-2023-22527 for Malware Delivery
2024-02-21 09:28:01
wallarmlab
wallarmlab
Server-Side Template Injection Vulnerability in Confluence Data Center and Server (CVE-2023-22527)
2024-01-30 18:40:35
openvas
openvas
Directory Scanner
2005-11-03 00:00:00
avleonov
avleonov
November 2023 – January 2024: New Vulristics Features, 3 Months of Microsoft Patch Tuesdays and Linux Patch Wednesdays, Year 2023 in Review
2024-02-01 17:07:20

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.9%

JSON
Related for HIVEPRO:477DFA4907FF46B777F450870B77043D
nessus1cisa_kev1githubexploit17zdt2prion1metasploit1thn4hivepro1packetstorm2exploitdb1trendmicroblog1attackerkb1rapid7blog3nuclei1cve1atlassian1impervablog2wallarmlab1openvas1avleonov1