Lucene search
+L

21 matches found

The Hacker News
The Hacker News
added 2023/10/19 1:47 p.m.61 views

Sophisticated MATA Framework Strikes Eastern European Oil and Gas Companies

An updated version of a sophisticated backdoor framework called MATA has been used in attacks aimed at over a dozen Eastern European companies in the oil and gas sector and defense industry as part of a cyber espionage operation that took place between August 2022 and May 2023. "The actors behind...

8.8CVSS7.9AI score0.80667EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/12/08 7:59 a.m.90 views

Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers

An Internet Explorer zero-day vulnerability was actively exploited by a North Korean threat actor to target South Korean users by capitalizing on the recent Itaewon Halloween crowd crush to trick users into downloading malware. The discovery, reported by Google Threat Analysis Group researchers...

8.8CVSS8.3AI score0.80667EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/06/22 5:41 a.m.139 views

RIG Exploit Kit Now Infects Victims' PCs With Dridex Instead of Raccoon Stealer

The operators behind the Rig Exploit Kit have swapped the Raccoon Stealer malware for the Dridex financial trojan as part of an ongoing campaign that commenced in January 2022. The switch in modus operandi, spotted by Romanian company Bitdefender, comes in the wake of Raccoon Stealer temporarily...

8.8CVSS1AI score0.87639EPSS
Exploits15
The Hacker News
The Hacker News
added 2022/04/28 8:20 a.m.154 views

New RIG Exploit Kit Campaign Infecting Victims' PCs with RedLine Stealer

A new campaign leveraging an exploit kit has been observed abusing an Internet Explorer flaw patched by Microsoft last year to deliver the RedLine Stealer trojan. "When executed, RedLine Stealer performs recon against the target system including username, hardware, browsers installed, anti-virus...

8.8CVSS0.6AI score0.80667EPSS
Exploits0
ThreatPost
ThreatPost
added 2021/08/19 8:19 p.m.113 views

InkySquid State Actor Exploiting Known IE Bugs

The InkySquid advanced persistent threat APT group, which researchers have linked to the North Korean government, was caught launching watering hole attacks against a South Korean newspaper using known Internet Explorer vulnerabilities. New analysis from Volexity reported its team of researchers...

8.8CVSS8.9AI score0.80667EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2021/08/18 8:33 a.m.171 views

NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware

A North Korean threat actor has been discovered taking advantage of two exploits in Internet Explorer to infect victims with a custom implant as part of a strategic web compromise SWC targeting a South Korean online newspaper. Cybersecurity firm Volexity attributed the watering hole attacks to a...

8.8CVSS1.1AI score0.80667EPSS
Exploits0
NVD
NVD
added 2021/03/11 4:15 p.m.24 views

CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability...

8.8CVSS0.80667EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/03/11 3:7 p.m.60 views

CVE-2021-26411 Internet Explorer Memory Corruption Vulnerability

...

8.8CVSS9.4AI score0.80667EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/03/11 3:7 p.m.15 views

CVE-2021-26411 Internet Explorer Memory Corruption Vulnerability

...

8.8CVSS8.9AI score0.80667EPSS
Exploits0References1
CVE
CVE
added 2021/03/11 3:7 p.m.1225 views

CVE-2021-26411

CVE-2021-26411 (Internet Explorer Memory Corruption) is a memory-corruption vulnerability in IE that was exploited in the wild as a zero‑day. Project Zero’s analysis attributes two primary bug patterns to IE exploitation: a use-after-free caused by a user-controlled callback between object operat...

8.8CVSS8.2AI score0.80667EPSS
In wildExploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/03/11 12:0 a.m.248 views

CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability Recent assessments: ccondon-r7 at April 05, 2021 1:20pm UTC reported: There is now public threat intelligence that the Purple Fox exploit kit has incorporated this vulnerability and is exploiting it. gwillcox-r7 at March 11, 2021 5:57pm UTC...

8.8CVSS8.8AI score0.80667EPSS
In wildExploits0References6
Circl
Circl
added 2021/03/10 4:0 a.m.20 views

CVE-2021-26411

creationtimestamp| type| source ---|---|--- 2021-03-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=560 2021-03-10 15:20:45+00:00| exploited| https://t.me/truesecator/1504 2021-03-11 19:00:31+00:00| seen| https://t.me/cibsecurity/24780 2021-03-15 04:50:46+00:00|...

8.8CVSS7.1AI score0.80667EPSS
Exploits0References22
Qualys Blog
Qualys Blog
added 2021/03/09 9:33 p.m.189 views

March 2021 Patch Tuesday – 82 Vulnerabilities, 10 Critical, Adobe

This month’s Microsoft Patch Tuesday addresses 82 vulnerabilities, of which 10 are rated with Critical severity. This follows an out-of-band security update on March 2 to address critical vulnerabilities in Microsoft Exchange. Adobe released patches today for its FrameMaker, Creative Cloud Deskto...

10CVSS1.2AI score0.80667EPSS
Exploits0
Kaspersky
Kaspersky
added 2021/03/09 12:0 a.m.65 views

KLA12108 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Internet Explorer can be exploited remotely to execute arbitrary code. 2....

8.8CVSS8.9AI score0.80667EPSS
Exploits0References16
VulnCheck KEV
VulnCheck KEV
added 2021/03/09 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-26411

Microsoft Internet Explorer contains an unspecified vulnerability that allows for memory corruption...

8.8CVSS7.3AI score0.80667EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2021/03/09 12:0 a.m.27 views

Microsoft Internet Explorer Memory Corruption (CVE-2021-26411)

A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5.1CVSS5.4AI score0.80667EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/03/09 12:0 a.m.63 views

KB5000807: Windows 10 March 2021 Security Update

The remote Windows host is missing security update 5000807. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-26862, CVE-2021-26866, CVE-2021-26868, CVE-2021-26871,...

8.8CVSS8.1AI score0.80667EPSS
Exploits2References24
Tenable Nessus
Tenable Nessus
added 2021/03/09 12:0 a.m.60 views

KB5000808: Windows 10 Version 1909 March 2021 Security Update

The remote Windows host is missing security update 5000808. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-1640, CVE-2021-1729, CVE-2021-24090, CVE-2021-24095, CVE-2021-26860,...

9.9CVSS8.1AI score0.80667EPSS
Exploits6References42
Tenable Nessus
Tenable Nessus
added 2021/03/09 12:0 a.m.290 views

KB5000803: Windows Security Update (March 2021)

The remote Windows host is missing security update 5000803. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-24107, CVE-2021-26869, CVE-2021-26884 - An memory...

10CVSS8.1AI score0.80667EPSS
Exploits3References34
Tenable Nessus
Tenable Nessus
added 2021/03/09 12:0 a.m.61 views

KB5000809: Windows 10 Version 1803 March 2021 Security Update

The remote Windows host is missing security update 5000809. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2021-24107, CVE-2021-26869, CVE-2021-26884 - An memory...

8.8CVSS8.1AI score0.80667EPSS
Exploits3References33
Rows per page
Query Builder