Lucene search
K

27 matches found

The Hacker News
The Hacker News
added 2024/04/17 10:57 a.m.68 views

Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware

Threat actors are exploiting unpatched Atlassian servers to deploy a Linux variant of Cerber aka C3RB3R ransomware. The attacks leverage CVE-2023-22518 CVSS score: 9.1, a critical security vulnerability impacting the Atlassian Confluence Data Center and Server that allows an unauthenticated...

10CVSS9.6AI score0.99999EPSS
Exploits14
Wallarm Lab
Wallarm Lab
added 2023/11/10 10:27 p.m.71 views

Improper Authorization in Confluence Data Center and Server (CVE-2023-22518)

In early November, the cybersecurity community witnessed the exploitation of a zero-day vulnerability in Confluence Data Center and Server. This critical vulnerability was related to Improper Authorization and assigned CVE-2023-22518 identifier. In this blog, we delve into the details of these...

7.5CVSS10AI score0.99999EPSS
Exploits48
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/11/10 12:0 a.m.65 views

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

We encountered the Cerber ransomware exploiting the Atlassian Confluence vulnerability CVE-2023-22518 in its operations...

7.5CVSS9.7AI score0.99999EPSS
Exploits14
Talos Blog
Talos Blog
added 2023/03/24 5:42 p.m.45 views

Threat Roundup for March 17 to March 24

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between March 17 and March 24. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

6.9AI score
Exploits0
Talos Blog
Talos Blog
added 2022/09/23 10:6 p.m.30 views

Threat Roundup for September 16 to September 23

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Sept. 16 and Sept. 23. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

7.1AI score
Exploits0
hivepro
hivepro
added 2021/12/14 1:50 p.m.392 views

Cerber targeting organizations with publicly available exploits

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. Cerber, ransomware that mysteriously vanished in 2019, has reappeared with a new encryption. The new cerber includes fresh source code and makes use of the new library Crypto+++, whereas the previous form made use of Windows...

7.5CVSS2.1AI score0.99999EPSS
Exploits75
Talos Blog
Talos Blog
added 2019/12/13 10:3 a.m.197 views

Threat Roundup for December 6 to December 13

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 6 and Dec. 13. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics,...

10CVSS10AI score0.99999EPSS
Exploits123
Talos Blog
Talos Blog
added 2019/11/22 9:57 a.m.201 views

Threat Roundup for November 15 to November 22

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 15 and Nov. 22. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral characteristics...

10CVSS10AI score0.99999EPSS
Exploits123
Talos Blog
Talos Blog
added 2018/10/26 12:25 p.m.125 views

Threat Roundup for October 19 to October 26

Today, Talos is is publishing a glimpse into the most prevalent threats we've observed between Oct. 19 and Oct. 26. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavioral...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/12/22 2:0 p.m.12 views

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2017/12/20 7:1 a.m.17 views

Romanian Police Arrest 5 People for Spreading CTB Locker and Cerber Ransomware

Romanian police have arrested five individuals suspected of infecting tens of thousands of computers across Europe and the United States in recent years by spreading two infamous ransomware families—Cerber and CTB Locker. Under Operation Bakovia—a major global police operation conducted by Europo...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2017/09/14 4:0 p.m.245 views

Equifax Confirms March Struts Vulnerability Behind Breach

Equifax said the culprit behind this summer’s massive breach of 143 million Americans was indeed CVE-2017-5638, an Apache Struts vulnerability patched back in March. The bug was widely assumed by experts to be the “U.S. website application vulnerability” implicated by the company last Thursday,...

10CVSS1.2AI score0.99999EPSS
Exploits66References12
ThreatPost
ThreatPost
added 2017/09/01 9:0 a.m.16 views

US Government Site Was Hosting Ransomware

As recently as Wednesday afternoon, a U.S. government website was hosting a malicious JavaScript downloader that led victims to installations of Cerber ransomware. Researcher Ankit Anubhav of NewSky Security tweeted the discovery Wednesday, and within hours, the malware link was taken down. It’s...

0.1AI score
Exploits0References14
Malwarebytes
Malwarebytes
added 2017/08/09 3:54 p.m.40 views

Cerber ransomware delivered in format of a different order of Magnitude

As a follow up to our study into the Magnitude exploit kit and its gate which we profiled in a previous blog post, we take a look at an interesting technique used to distribute the Cerber ransomware. Exploit kits are a very effective means of serving malicious payloads and an important aspect is...

7.4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/08/04 1:0 p.m.55 views

This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/08/02 3:0 p.m.105 views

Enemy at the gates: Reviewing the Magnitude exploit kit redirection chain

Over the last few months, we have been keeping an eye on the Magnitude exploit kit which is mainly used to deliver the Cerber ransomware to specific countries in Asia. Our telemetry shows that South Korea is most impacted via ongoing malvertising campaigns. When a visitor goes to a website that...

6.8AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2017/05/02 8:14 p.m.31 views

How organizations can protect against new CERBER variations

TrendMicro Ransomware hit hard in 2016, with big attacks, large payouts and many new strains developed to thwart security measures. At the end of last year, Locky and CERBER ransomware families seemed to be neck and neck for market dominance. But that changed as CERBER evolved to offer new...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2017/04/07 12:46 p.m.11 views

Apache Struts 2 Exploits Installing Cerber Ransomware

Attackers are attempting to exploit the recent Apache Struts vulnerability on Windows servers and the payload is a variant of the Cerber ransomware. The SANS Internet Storm Center on Thursday said it has seen numerous attempts during the past month to exploit the vulnerability in this way. The fl...

0.5AI score
Exploits0References7
ThreatPost
ThreatPost
added 2017/03/22 1:45 p.m.13 views

Blank Slate Campaign Pushes Cerber Ransomware

Criminals are breathing new life into Cerber ransomware with a stubborn spam campaign called Blank Slate that is successfully abusing hosting providers to spread the malware. Researchers at the SANS Internet Storm Center said the campaign has shifted from spreading Sage 2.0 and Locky ransomware, ...

7.1AI score
Exploits0References5
Microsoft Malware Protection
Microsoft Malware Protection
added 2017/01/30 10:38 a.m.14 views

Averting ransomware epidemics in corporate networks with Windows Defender ATP

Note: Read our latest comprehensive report on ransomware: Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene. Microsoft security researchers continue to observe ransomware campaigns blanketing the market and indiscriminately hitting potential targets...

6.8AI score
Exploits0
Rows per page
Query Builder