Lucene search
+L

883 matches found

Trend Micro Simply Security
Trend Micro Simply Security
added 2025/04/30 12:0 a.m.13 views

Earth Kasha Updates TTPs in Latest Campaign Targeting Taiwan and Japan

This blog discusses the latest modifications observed in Earth Kasha’s TTPs from their latest campaign detected in March 2025 targeting Taiwan and Japan...

7.3AI score
Exploits0
CNNVD
CNNVD
added 2025/04/02 12:0 a.m.5 views

Hammock AssetView 安全漏洞

Hammock AssetView is an IT asset management tool and information asset management software from Hammock Japan. A security vulnerability exists in Hammock AssetView that originates from data sent to developers that may contain sensitive information...

5.9CVSS5.9AI score0.00442EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/28 12:0 a.m.6 views

KDDI HGW BL1500HM 跨站脚本漏洞

The KDDI HGW BL1500HM is a home router from KDDI Japan. A cross-site scripting vulnerability exists in KDDI HGW BL1500HM 002.002.003 and earlier versions, which originates from cross-site scripting in the USB storage file sharing feature and could lead to the execution of arbitrary scripts...

3.6CVSS4.8AI score0.00189EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2025/03/07 4:42 a.m.47 views

PHP-CGI RCE Flaw Exploited in Attacks on Japan's Tech, Telecom, and E-Commerce Sectors

Threat actors of unknown provenance have been attributed to a malicious campaign predominantly targeting organizations in Japan since January 2025. "The attacker has exploited the vulnerability CVE-2024-4577, a remote code execution RCE flaw in the PHP-CGI implementation of PHP on Windows, to gai...

9.8CVSS7.2AI score0.99987EPSS
Exploits64
Talos Blog
Talos Blog
added 2025/03/06 11:0 a.m.20 views

Unmasking the new persistent attacks on Japan

Cisco Talos discovered malicious activities conducted by an unknown attacker since as early as January 2025, predominantly targeting organizations in Japan. The attacker has exploited the vulnerability CVE-2024-4577, a remote code execution RCE flaw in the PHP-CGI implementation of PHP on Windows...

9.8CVSS8.5AI score0.99987EPSS
Exploits64
RedhatCVE
RedhatCVE
added 2025/02/05 10:32 a.m.13 views

CVE-2024-12648

Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and...

9.8CVSS7.8AI score0.01157EPSS
Exploits0References1
OSV
OSV
added 2025/01/28 1:15 a.m.6 views

CVE-2024-12648

Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and...

9.8CVSS7.6AI score0.01157EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2025/01/09 10:44 a.m.9 views

MirrorFace Leverages ANEL and NOOPDOOR in Multi-Year Cyberattacks on Japan

Japan's National Police Agency NPA and National Center of Incident Readiness and Strategy for Cybersecurity NCSC accused a China-linked threat actor named MirrorFace of orchestrating a persistent attack campaign targeting organizations, businesses, and individuals in the country since 2019. The...

7.5AI score
Exploits0
Akamai Blog
Akamai Blog
added 2024/12/11 10:20 a.m.3 views

Supporting Cloud Growth in Japan: Tokyo Expansion

...

5.3AI score
Exploits0
Wiz blog
Wiz blog
added 2024/12/10 12:30 a.m.13 views

Wiz supports creation of new Japan tenants

Our ongoing commitment to the region continues with product support and leadership expansion...

5.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/12/05 7:30 a.m.4 views

ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan

The China-linked threat actor known as MirrorFace has been attributed to a new spear-phishing campaign mainly targeting individuals and organizations in Japan since June 2024. The aim of the campaign is to deliver backdoors known as NOOPDOOR aka HiddenFace and ANEL aka UPPERCUT, Trend Micro said ...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/27 11:14 a.m.15 views

APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign

The threat actor known as APT-C-60 has been linked to a cyber attack targeting an unnamed organization in Japan that used a job application-themed lure to deliver the SpyGlace backdoor. That's according to findings from JPCERT/CC, which said the intrusion leveraged legitimate services like Google...

9.3CVSS7.7AI score0.01773EPSS
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/11/26 12:0 a.m.19 views

Guess Who’s Back - The Return of ANEL in the Recent Earth Kasha Spear-phishing Campaign in 2024

Trend Micro has identified a spear-phishing campaign active in Japan since June 2024. Evidence about the malware used by this campaign suggests this was part of a new operation by Earth Kasha...

7.2AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/11/19 12:0 a.m.8 views

Spot the Difference: Earth Kasha's New LODEINFO Campaign And The Correlation Analysis With The APT10 Umbrella

LODEINFO is a malware used in attacks targeting mainly Japan since 2019. Trend Micro has been tracking the group as Earth Kasha. We have identified a new campaign connected to this group with significant updates to their strategy, tactics, and arsenals...

7.2AI score
Exploits0
HackRead
HackRead
added 2024/10/31 3:58 p.m.12 views

New Xiū gǒu Phishing Kit Hits UK, US, Japan, Australia Across Key Sectors

Cybersecurity researchers uncovered the "Xiū gǒu" phishing kit targeting users in the UK, US, Spain, Australia, and Japan.…...

7.3AI score
Exploits0
ICS
ICS
added 2024/10/22 6:0 a.m.36 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update C)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : ICONICS, Mitsubishi Electric Equipment : ICONICS Product Suite, Mitsubishi Electric MC Works64 Vulnerability : Incorrect Default Permissions 2. RISK EVALUATION Successful exploitation of this vulnerability could...

7.8CVSS8.5AI score0.00193EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/10/10 12:0 a.m.5 views

D-Zero BurgerEditor 安全漏洞

D-Zero BurgerEditor is a convenient plug-in for domestic baserCMS suitable for corporate websites from Japan's D-Zero, which allows you to add, edit and move content intuitively and create sites without any Web knowledge. A security vulnerability exists in D-Zero BurgerEditor versions prior to...

5.3CVSS5.5AI score0.00487EPSS
Exploits0References7
ICS
ICS
added 2024/10/01 6:0 a.m.43 views

Mitsubishi Electric MELSEC iQ-F FX5-OPC

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : MELSEC iQ-F FX5-OPC Vulnerability : NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to...

5.5CVSS6.5AI score0.03174EPSS
Exploits0References10
Schneier on Security
Schneier on Security
added 2024/09/27 9:6 p.m.8 views

Squid Fishing in Japan

Fishermen are catching more squid as other fish are depleted. Blog moderation policy...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/09/26 12:28 p.m.12 views

N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks

Threat actors with ties to North Korea have been observed leveraging two new malware strains dubbed KLogEXE and FPSpy. The activity has been attributed to an adversary tracked as Kimsuky, which is also known as APT43, ARCHIPELAGO, Black Banshee, Emerald Sleet formerly Thallium, Sparkling Pisces,...

7.5AI score
Exploits0
Rows per page
Query Builder