Lucene search
K

119 matches found

GithubExploit
GithubExploit
added 2025/11/20 2:1 p.m.147 views

stacksmash

StackSmash !Chttps://img.shields.io/badge/Language-C-blue?...

7.3AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-25029

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00852EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 10:56 p.m.7 views

CVE-2022-1748

Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability...

7.5CVSS6.7AI score0.00852EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/11/15 5:57 p.m.5 views

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations

Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian state-sponsored actors to conduct reconnaissance of compromised endpoints and execute malicious commands. Cybersecurity company Check Point has codenamed the malware WezRat , stating it...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.186 views

DarkComet Server Remote File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'DarkComet Server Remote File Download Exploit', 'Description' = %q This module exploits an arbitrary file download vulnerability in the DarkComet...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/03 12:35 p.m.13 views

Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications

Threat actors have been increasingly weaponizing Microsoft Graph API for malicious purposes with the aim of evading detection. This is done to "facilitate communications with command-and-control C&C infrastructure hosted on Microsoft cloud services," the Symantec Threat Hunter Team, part of...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/29 5:32 a.m.48 views

Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

Cybersecurity researchers have identified malicious packages on the open-source Python Package Index PyPI repository that deliver an information stealing malware called WhiteSnake Stealer on Windows systems. The malware-laced packages are named nigpal, figflix, telerer, seGMM, fbdebug, sGMM,...

7.1AI score
Exploits0
Securelist
Securelist
added 2023/12/06 10:0 a.m.38 views

New macOS Trojan-Proxy piggybacking on cracked software

Illegally distributed software historically has served as a way to sneak malware onto victims devices. Oftentimes, users are not willing to pay for software tools they need, so they go searching the Web for a "free lunch". They are an excellent target for cybercriminals who realize that an...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/11/14 11:54 a.m.51 views

Alert: OracleIV DDoS Botnet Targets Public Docker Engine APIs to Hijack Containers

Publicly-accessible Docker Engine API instances are being targeted by threat actors as part of a campaign designed to co-opt the machines into a distributed denial-of-service DDoS botnet dubbed OracleIV. "Attackers are exploiting this misconfiguration to deliver a malicious Docker container, buil...

7.9AI score
Exploits0
Securelist
Securelist
added 2023/10/18 10:0 a.m.68 views

Updated MATA attacks industrial companies in Eastern Europe

In early September 2022, we discovered several new malware samples belonging to the MATA cluster. As we were collecting and analyzing the relevant telemetry data, we realized the campaign had been launched in mid-August 2022 and targeted over a dozen corporations in Eastern Europe from the oil an...

5.1CVSS7.4AI score0.81103EPSS
Exploits11
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/09/05 12:0 a.m.25 views

Analyzing a Facebook Profile Stealer Written in Node.js

We analyze an information stealer written in Node.js, packaged into an executable, exfiltrated stolen data via both Telegram bot API and a C&C server, and employed GraphQL as a channel for C&C communication...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/10 2:8 p.m.35 views

New Statc Stealer Malware Emerges: Your Sensitive Data at Risk

A new information malware strain called Statc Stealer has been found infecting devices running Microsoft Windows to siphon sensitive personal and payment information. "Statc Stealer exhibits a broad range of stealing capabilities, making it a significant threat," Zscaler ThreatLabz researchers...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/08/05 7:52 a.m.52 views

Reptile Rootkit: Advanced Linux Malware Targeting South Korean Systems

Threat actors are using an open-source rootkit called Reptile to target Linux systems in South Korea. "Unlike other rootkit malware that typically only provide concealment capabilities, Reptile goes a step further by offering a reverse shell, allowing threat actors to easily take control of...

6.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/06/09 11:12 a.m.31 views

Operation Triangulation: Zero-Click iPhone Malware

Kaspersky is reporting a zero-click iOS exploit in the wild: Mobile device backups contain a partial copy of the filesystem, including some of the user data and service databases. The timestamps of the files, folders and the database records allow to roughly reconstruct the events happening to th...

7.3AI score
Exploits0
Securelist
Securelist
added 2023/05/04 10:0 a.m.18 views

Not quite an Easter egg: a new family of Trojan subscribers on Google Play

Every once in a while, someone will come across malicious apps on Google Play that seem harmless at first. Some of the trickiest of these are subscription Trojans, which often go unnoticed until the user finds they have been charged for services they never intended to buy. This kind of malware...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/23 12:7 p.m.47 views

New Hacking Cluster 'Clasiopa' Targeting Materials Research Organizations in Asia

Materials research organizations in Asia have been targeted by a previously unknown threat actor using a distinct set of tools. Symantec, by Broadcom Software, is tracking the cluster under the moniker Clasiopa. The origins of the hacking group and its affiliations are currently unknown, but ther...

1.6AI score
Exploits0
Prion
Prion
added 2022/08/17 9:15 p.m.17 views

Null pointer dereference

Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability...

5CVSS7.6AI score0.00852EPSS
Exploits0References2Affected Software6
Vulnrichment
Vulnrichment
added 2022/08/17 8:8 p.m.7 views

CVE-2022-1748 Softing Secure Integration Server NULL Pointer Dereference

Softing OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, and uaGate are affected by a NULL pointer dereference vulnerability...

7.5CVSS6.7AI score0.00852EPSS
Exploits0References2
CVE
CVE
added 2022/08/17 8:8 p.m.61 views

CVE-2022-1748

CVE-2022-1748 affects Softing Softing Secure Integration Server and several OPC UA components (OPC UA C++ Server SDK, Secure Integration Server, edgeConnector, edgeAggregator, OPC Suite, uaGate). The issue is a NULL pointer dereference vulnerability, described across multiple sources, with confir...

7.5CVSS7.6AI score0.00852EPSS
Exploits0References2Affected Software6
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/07/06 12:0 a.m.18 views

Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server

We recently found a new ransomware family, which we have dubbed as HavanaCrypt, that disguises itself as a legitimate Google Software Update application and uses a Microsoft web hosting service IP address as its command-and-control C&C server to circumvent detection...

0.8AI score
Exploits0
Rows per page
Query Builder