When Your Smart ID Card Reader Comes With Malware

Millions of U.S. government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholders appropriate security level. But many government employe...

business.nsw.gov.au Cross Site Scripting vulnerability OBB-2617968

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

nwtt.waves.nsw.gov.au Cross Site Scripting vulnerability OBB-2617953

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

industry.nsw.gov.au Cross Site Scripting vulnerability OBB-2616695

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

careers.kmc.nsw.gov.au Cross Site Scripting vulnerability OBB-2616693

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

DEA Investigating Breach of Law Enforcement Data Portal

The U.S. Drug Enforcement Administration DEA says it is investigating reports that hackers gained unauthorized access to an agency portal that taps into 16 different federal law enforcement databases. KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment...

CVE-2022-26937

creationtimestamp| type| source ---|---|--- 2022-05-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=801 2022-06-10 06:03:17+00:00| published-proof-of-concept| https://t.me/cKure/9720 2022-06-10 11:04:52+00:00| published-proof-of-concept|...

CVE-2022-22713

creationtimestamp| type| source ---|---|--- 2022-05-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=801...

CVE-2022-22017

creationtimestamp| type| source ---|---|--- 2022-05-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=801...

CVE-2022-23270

creationtimestamp| type| source ---|---|--- 2022-05-11 00:33:10+00:00| seen| https://t.me/cibsecurity/42281 2022-05-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=801...

CVE-2022-21972

creationtimestamp| type| source ---|---|--- 2022-05-11 00:33:10+00:00| seen| https://t.me/cibsecurity/42281 2022-05-11 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=801 2022-05-12 00:17:38+00:00| published-proof-of-concept| https://t.me/cKure/9504 2022-05-12...

APT34 targets Jordan Government using new Saitama backdoor

On April 26th, we identified a suspicious email that targeted a government official from Jordans foreign ministry. The email contained a malicious Excel document that drops a new backdoor named Saitama. Following our investigation, we were able to attribute this attack to the known Iranian Actor...

AutoResponder - Carbon Black Response IR Tool

What is it? AutoResponder is a tool aimed to help people to carry out their Incident Response tasks WITH the help of Carbon Black Response's awesome capabilities and WITHOUT much bothering IT/System/Network Teams What can it do? Module | ✔️ / ❌ ---|--- Delete Files | ✔️ Delete Registry Values | ✔️...

Costa Rica continues defence against sustained Conti ransomware attacks

Its not been plain sailing recently for Conti ransomware, the Ransomware as a Service RaaS group with several major attacks under its belt. In August last year, a pen tester leaked valuable manuals and documents related to the operation. These leaks continued as the Conti gang expressed support f...

Ursnif Malware Banks on News Events for Phishing Attacks

Ursnif aka Gozi, Dreambot, ISFB is one of the most widespread banking trojans. It has been observed evolving over the past few years. Ursnif has shown incredible theft capabilities. In 2020 Ursnif rose to prominence becoming one of the top ten most prolific pieces of malware. Among its core...

Five Eyes Alliance Advisory & Using Threat Intelligence

Trellix Global Defenders: Five Eyes Alliance Advisory and Using Threat Intelligence to Protect Against Future Attacks By Taylor Mullins · May 6, 2022 Evolving intelligence continues to indicate that the Russian government is exploring options to launch cyberattacks in retaliation against...

Ukraine War Themed Files Become the Lure of Choice for a Wide Range of Hackers

A growing number of threat actors are using the ongoing Russo-Ukrainian war as a lure in various phishing and malware campaigns, even as critical infrastructure entities continue to be heavily targeted. "Government-backed actors from China, Iran, North Korea and Russia, as well as various...

guaman.maiamp.gov.my Cross Site Scripting vulnerability OBB-2598431

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

AvosLocker Ransomware Variant Using New Trick to Disable Antivirus Protection

Cybersecurity researchers have disclosed a new variant of the AvosLocker ransomware that disables antivirus solutions to evade detection after breaching target networks by taking advantage of unpatched security flaws. "This is the first sample we observed from the U.S. with the capability to...

A survey of FedRAMP’s new supply chain requirements

Over the past few years, supply chain management has shifted from a background requirement that everyone unknowingly relies upon, to being a commonly talked about aspect of our everyday lives. The Federal government has ramped up its effort to gain a handle on supply chain threats as a result of...