Lucene search
K

40 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2018-0120)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.3AI score0.89618EPSS
Exploits19References6
Malwarebytes
Malwarebytes
added 2020/12/15 1:58 p.m.20575 views

Threat profile: Egregor ransomware is making a name for itself

What is Egregor? Egregor ransomware is a relatively new ransomware first spotted in September 2020 that seems intent on making its way to the top right now. Egregor is considered a variant of Ransom.Sekhmet based on similarities in obfuscation, API-calls, and the ransom note. As weve reported in...

10CVSS8.9AI score0.99965EPSS
Exploits70
Malwarebytes
Malwarebytes
added 2019/05/14 3:57 p.m.628 views

Exploit kits: spring 2019 review

Exploit kit activity remains fairly unchanged since our last winter review in terms of active distribution campaigns. But this spring edition will feature a new exploit kit and another atypical EK, in that it specifically goes after routers. The main driver behind these drive-by download attacks...

10CVSS9.3AI score0.89618EPSS
Exploits40
Malwarebytes
Malwarebytes
added 2019/02/12 4:0 p.m.752 views

Exploit kits: winter 2019 review

Active malvertising campaigns in December and the new year have kept exploit kit activity from hibernating in winter 2019. We mostly observed Fallout and RIG with the occasional, limited GrandSoft appearance for wider geo-targeting. In addition, narrowly-focused exploit kits such as Magnitude,...

10CVSS9.6AI score0.89618EPSS
Exploits40
Malwarebytes
Malwarebytes
added 2018/12/21 9:34 p.m.557 views

Underminer exploit kit improves in its latest iteration

One of the most interesting exploit kits we track is also a bit of an elusive one, and as such does not receive the same scrutiny as its RIG and Fallout counterparts. Underminer was mentioned in our Fall 2018 round up, and at the time was using CVE-2018-8174 Internet Explorer and CVE-2018-4878...

7.6CVSS0.1AI score0.89618EPSS
Exploits40
Malwarebytes
Malwarebytes
added 2018/10/24 4:10 p.m.918 views

Exploit kits: fall 2018 review

Exploit kit EK activity continues to surprise us as the weather cools, the leaves change, and we move into the fall of 2018. Indeed, shortly after our summer review, a new exploit kit was discovered, and while no new vulnerabilities were added to the current EKs, several malvertising chains are...

7.6CVSS9.1AI score0.89618EPSS
Exploits28
myhack58
myhack58
added 2018/08/07 12:0 a.m.839 views

To see the Hidden Bee how to use a new vulnerability propagation-vulnerability warning-the black bar safety net

! Write in front of words Recently we found a to attempt to exploit CVE-2018-4878 Flash Player vulnerability, vulnerability to attack, its sequence and we currently find any loopholes to use the tool are not the same. After investigation, we found that this is a Chinese security company qihoo 360...

7.6CVSS8.7AI score0.89618EPSS
Exploits28
Securelist
Securelist
added 2018/07/10 10:0 a.m.530 views

APT Trends Report Q2 2018

In the second quarter of 2017, Kaspersky Lab's Global Research and Analysis Team GReAT began publishing summaries of the quarter's private threat intelligence reports, in an effort to make the public aware of the research we have been conducting. This report serves as the latest installment,...

10CVSS9.3AI score0.94354EPSS
Exploits34
FireEye
FireEye
added 2018/06/28 4:0 p.m.424 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS9.1AI score0.93165EPSS
Exploits39References5
FireEye
FireEye
added 2018/06/28 12:0 p.m.1659 views

RIG Exploit Kit Delivering Monero Miner Via PROPagate Injection Technique

Introduction Through FireEye Dynamic Threat Intelligence DTI, we observed RIG Exploit Kit EK delivering a dropper that leverages the PROPagate injection technique to inject code that downloads and executes a Monero miner similar activity has been reported by Trend Micro. Apart from leveraging a...

9.3CVSS8.8AI score0.93165EPSS
Exploits39
Malwarebytes
Malwarebytes
added 2018/06/12 7:4 p.m.621 views

Exploit kits: Spring 2018 review

Since our last report on exploit kits, there have been some new developments with the wider adoption of the February Flash zero-day, as well as the inclusion of a new exploit for Internet Explorer. We have not seen that many changes in the drive-by landscape for a long time, although these are th...

7.6CVSS9.4AI score0.93165EPSS
Exploits38
0day.today
0day.today
added 2018/05/24 12:0 a.m.260 views

Flash ActiveX 28.0.0.137 - Code Execution Exploit (2)

Exploit for windows platform in category local exploits CVE-2018-4878 Pop up a calculator - Requires Flash ActiveX 28.0.0.137 Download: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44745.swf 0day.today 2018-05-24...

7.5CVSS0.3AI score0.89618EPSS
Exploits19
0day.today
0day.today
added 2018/05/24 12:0 a.m.92 views

Flash ActiveX 28.0.0.137 - Code Execution Exploit (1)

Exploit for windows platform in category local exploits CVE-2018-4878 flash exploit Pop up a calculator - tested with installation of flash activeX plugin 28.0.0.137 Download: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44744.xlsx 0day.today 2018-05-2...

7.5CVSS0.1AI score0.89618EPSS
Exploits19
myhack58
myhack58
added 2018/04/10 12:0 a.m.157 views

CVE-2018-4878 case: for a Hong Kong Telecommunications Company website is intrusion investigations-vulnerability and early warning-the black bar safety net

! Earlier, a researchers found that a Hong Kong Telecommunications Company website hacking attack, 3 May 21, Morphisec laboratory on the site of attack to carry out the investigation, investigators eventually found that the telecommunications company of the Group's official website was hacked, th...

7.5CVSS0.1AI score0.89618EPSS
Exploits19
Exploit DB
Exploit DB
added 2018/04/06 12:0 a.m.64 views

Adobe Flash < 28.0.0.161 - Use-After-Free

!/usr/bin/env python coding: UTF-8 import BaseHTTPServer import sys from SimpleHTTPServer import SimpleHTTPRequestHandler print "@Syfi2k" print "+ CVE-2018-4878 poc " print "--------------------------------" print "Calc.exe Shellcode via Msfvenom" print "Based on fixed version...

7.8CVSS8.9AI score0.89618EPSS
Exploits19
Packet Storm
Packet Storm
added 2018/04/04 12:0 a.m.73 views

Adobe Flash 28.0.0.137 Remote Code Execution

!/usr/bin/env python coding: UTF-8 import BaseHTTPServer import sys from SimpleHTTPServer import SimpleHTTPRequestHandler print "@Syfi2k" print "+ CVE-2018-4878 poc " print "--------------------------------" print "Calc.exe Shellcode via Msfvenom" print "Based on fixed version...

7.5CVSS8.8AI score0.89618EPSS
Exploits19
0day.today
0day.today
added 2018/04/04 12:0 a.m.108 views

Adobe Flash 28.0.0.137 Remote Code Execution Exploit

Adobe Flash versions 28.0.0.137 and below remote code execution proof of concept exploit. !/usr/bin/env python coding: UTF-8 import BaseHTTPServer import sys from SimpleHTTPServer import SimpleHTTPRequestHandler print "@Syfi2k" print "+ CVE-2018-4878 poc " print "--------------------------------"...

7.5CVSS0.8AI score0.89618EPSS
Exploits19
Malwarebytes
Malwarebytes
added 2018/03/05 5:0 p.m.550 views

Week in security (February 26 – March 4)

Last week on Malwarebytes Labs, we explained how to protect your computer from malicious cryptomining, we gave an encryption 101 lesson using ShiOne ransomware as a case study, and we offered an explanation about SQL injection. We also released a report on the state of malicious cryptomining from...

7.5CVSS0.2AI score0.89618EPSS
Exploits19
ThreatPost
ThreatPost
added 2018/02/27 5:55 p.m.47 views

Massive Spam Campaign Targets Unpatched Systems

Cybercriminals are leveraging a recently patched critical Adobe Flash Player vulnerability in a massive spam campaign targeting unpatched computers. According to cybersecurity firm Morphisec, cybercriminals are blasting spam messages that urge recipients to click a link to download a Word documen...

7.5CVSS1AI score0.89618EPSS
Exploits19References6
seebug.org
seebug.org
added 2018/02/23 12:0 a.m.274 views

Adobe Flash Player Use After Free Remote Code Execution Vulnerability(CVE-2018-4878)

EXECUTIVE SUMMARY The 1st of February, Adobe published an advisory concerning a Flash vulnerability CVE-2018-4878. This vulnerability is a use after free that allows Remote Code Execute through a malformed Flash object. Additionally KISA Korean CERT published an advisory about a Flash 0-day used ...

9.4AI score0.89618EPSS
Exploits19
Rows per page
Query Builder