Lucene search
+L

638 matches found

The Hacker News
The Hacker News
added 2024/03/06 7:11 a.m.43 views

Alert: GhostSec and Stormous Launch Joint Ransomware Attacks in Over 15 Countries

The cybercrime group called GhostSec has been linked to a Golang variant of a ransomware family called GhostLocker. "TheGhostSec and Stormous ransomware groups are jointly conducting double extortion ransomware attacks on various business verticals in multiple countries," Cisco Talos researcher...

6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/12/22 12:0 a.m.6 views

PT-2023-31886 · Unknown · Eb System Management Console +1

Name of the Vulnerable Software and Affected Versions: eB System Management Console versions prior to 23.00.02.03 Assetwise ALIM For Transportation versions prior to 23.00.01.25 Description: The issue allows an unauthenticated user to view configuration options via a crafted request, leading to...

8.6CVSS8.3AI score0.00465EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.8 views

PT-2023-18914 · Undefined · Undefined

ParsedReport CompletenessMedium 07-12-2023 Fighting Ursa Aka APT28: Illuminating a Covert Campaign https://unit42.paloaltonetworks.com/russian-apt-fighting-ursa-exploits-cve-2023-233397 Report completeness: Medium Actors/Campaigns: Fancy bear Forest blizzard Threats: Wildfire Victims: Organizatio...

9.8CVSS8.3AI score0.97408EPSS
Exploits18References1
The Hacker News
The Hacker News
added 2023/11/10 7:11 a.m.53 views

Iran-Linked Imperial Kitten Cyber Group Targeting Middle East's Tech Sectors

A group with links to Iran targeted transportation, logistics, and technology sectors in the Middle East, including Israel, in October 2023 amid a surge in Iranian cyber activity since the onset of the Israel-Hamas war. The attacks have been attributed by CrowdStrike to a threat actor it tracks...

7.7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2023/08/29 8:15 p.m.4 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

9.8CVSS7.4AI score0.01013EPSS
Exploits1References4
CVE
CVE
added 2023/08/29 12:0 a.m.50 views

CVE-2021-3262

CVE-2021-3262 affects TripSpark VEO Transportation (version 2.2.x) and NovusEDU (2.2.x XP_BB-20201123-184084). Root cause: unsafe data inputs in POST body parameters not sanitized server-side, enabling SQL injection in the Student Busing Information search queries. Impact stated as SQL commands c...

9.8CVSS9.6AI score0.01013EPSS
Exploits1References1Affected Software2
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.7 views

PT-2023-12172 · Tripspark · Tripspark Veo Transportation

Name of the Vulnerable Software and Affected Versions: TripSpark VEO Transportation versions 2.2.x NovusEDU versions 2.2.x Description: The issue allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL...

9.8CVSS9.4AI score0.01013EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2023/08/29 12:0 a.m.14 views

CVE-2021-3262

TripSpark VEO Transportation-2.2.x-XPBB-20201123-184084 NovusEDU-2.2.x-XPBB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queri...

7.6AI score0.01013EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.4 views

PT-2023-23866 · Intel · Intel(R) Its

Name of the Vulnerable Software and Affected Versions: IntelR ITS software versions prior to 3.1 Description: The issue is related to incorrect default permissions in the IntelR ITS software, which may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.6AI score0.00131EPSS
Exploits0References4
CNVD
CNVD
added 2023/07/04 12:0 a.m.10 views

Zhejiang small walk information technology limited company small walk share wechat small program there are logic defects vulnerability

Small Walk Share WeChat app is a transportation platform. Zhejiang small walk information technology limited company small walk sharing wechat small program has a logic flaw vulnerability, attackers can use the vulnerability to log in any account...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/11 2:45 p.m.2 views

New APT Group Red Stinger Targets Military and Critical Infrastructure in Eastern Europe

A previously undetected advanced persistent threat APT actor dubbed Red Stinger has been linked to attacks targeting Eastern Europe since 2020. "Military, transportation, and critical infrastructure were some of the entities being targeted, as well as some involved in the September East Ukraine...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/11 2:45 p.m.66 views

New APT Group Red Stinger Targets Military and Critical Infrastructure in Eastern Europe

A previously undetected advanced persistent threat APT actor dubbed Red Stinger has been linked to attacks targeting Eastern Europe since 2020. "Military, transportation, and critical infrastructure were some of the entities being targeted, as well as some involved in the September East Ukraine...

6.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2023/05/10 7:9 p.m.18 views

New TSA Cybersecurity Emergency Action Rule Impacts Cybersecurity and Compliance

On March 7, 2023, in the wake of President Joe Biden’s National Cybersecurity Strategy announcement, the U.S. Transportation Security Administration TSA issued a cybersecurity emergency action amendment for certain regulated airport and aircraft operators. The new Action Rule can have significant...

7.3AI score
Exploits0
ICS
ICS
added 2023/04/20 3:30 p.m.32 views

INEA ME RTU

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: INEA Equipment: ME RTU Vulnerability: OS Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED...

10CVSS10AI score0.01726EPSS
Exploits0References5
Microsoft Secure
Microsoft Secure
added 2023/04/18 3:0 p.m.72 views

Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets

Over the past several months, Microsoft has observed a mature subgroup of Mint Sandstorm, an Iranian nation-state actor previously tracked as PHOSPHORUS, refining its tactics, techniques, and procedures TTPs. Specifically, this subset has rapidly weaponized N-day vulnerabilities in common...

9.3CVSS9.9AI score0.99999EPSS
Exploits377
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/04/18 3:0 p.m.69 views

Nation-state threat actor Mint Sandstorm refines tradecraft to attack high-value targets

Over the past several months, Microsoft has observed a mature subgroup of Mint Sandstorm, an Iranian nation-state actor previously tracked as PHOSPHORUS, refining its tactics, techniques, and procedures TTPs. Specifically, this subset has rapidly weaponized N-day vulnerabilities in common...

9.3CVSS9.9AI score0.99999EPSS
Exploits377
CVE
CVE
added 2023/03/27 12:0 a.m.63 views

CVE-2023-25018

The CVE-2023-25018 issue affects the RIFARTEK IOT Wall transportation function, where insufficient input filtering enables a reflected XSS vulnerability. An authenticated remote attacker with general user privileges can inject JavaScript via manipulated input to cause a reflected XSS. The availab...

5.4CVSS5.3AI score0.00429EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2023/03/25 6:13 a.m.102 views

Microsoft Warns of Stealthy Outlook Vulnerability Exploited by Russian Hackers

Microsoft on Friday shared guidance to help customers discover indicators of compromise IoCs associated with a recently patched Outlook vulnerability. Tracked as CVE-2023-23397 CVSS score: 9.8, the critical flaw relates to a case of privilege escalation that could be exploited to steal NT LAN...

9.8CVSS9AI score0.97408EPSS
Exploits18
hivepro
hivepro
added 2023/03/22 9:33 a.m.31 views

Bad Magic APT employs new CommonMagic Framework and PowerMagic Backdoor

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary New Bad magic APT was discovered using a new backdoor called PowerMagic and a malicious framework called CommonMagic to target organizations in the administrative, agriculture, and transportation sectors...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/03/03 11:45 a.m.19 views

LockBit ransomware demands $2 million for Pierce Transit data

The Pierce County Public Transportation Benefit Area Corporation Pierce Transit has fallen victim to a cyberattack using LockBit ransomware. Pierce Transit is a public transit operator in Washington state. The attack began on February 14, 2023, and required Pierce Transit to implement temporary...

7.5AI score
Exploits0
Rows per page
Query Builder