Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners

A financially motivated operation codenamed REF1695 has been observed leveraging fake installers to deploy remote access trojans RATs and cryptocurrency miners since November 2023. "Beyond cryptomining, the threat actor monetizes infections through CPA Cost Per Action fraud, directing victims to...

cnb-villanova.com Cross Site Scripting vulnerability OBB-3842355

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Rockwell Automation FLOWSERVE IPS - 208/240V CNB DPI to EtherNet/IP

Binary data 754517.prm...

Rockwell Automation FLOWSERVE IPS - 600V CNB DPI to EtherNet/IP

Binary data 754518.prm...

Rockwell Automation FLOWSERVE IPS - 400/480V CNB DPI to EtherNet/IP

Binary data 754516.prm...

CCN-lite 'cnb_parse_lev' Function Denial of Service Vulnerability

CCN-lite is a lightweight CCNx Content Centric Networking Protocol implementation of the CCN-lite project. A security vulnerability exists in the 'cnbparselev' function in CCN-lite versions prior to 2.00. An attacker could exploit this vulnerability to cause an invalid read...

CVE-2017-12471

The cnbparselev function in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact by leveraging failure to check for out-of-bounds conditions, which triggers an invalid read in the hexdump function...