67 matches found
Exploit for CVE-2022-30190
LetsDefend-SOC173-Follina-0-Day-Detected We are presented with...
Exploit for CVE-2022-30190
ICT287CVE-2022-30190Exploit Project on CVE-2022-30190 exploi...
Exploit for CVE-2022-30190
Follina-CVE-2022-...
Exploit for CVE-2022-30190
AmzWord an automated attack chain based on CVE-2022-30190, 16...
Cybercriminals Exploit Microsoft Word Vulnerabilities to Deploy LokiBot Malware
Microsoft Word documents exploiting known remote code execution flaws are being used as phishing lures to drop malware called LokiBot on compromised systems. "LokiBot, also known as Loki PWS, has been a well-known information-stealing Trojan active since 2015," Fortinet FortiGuard Labs researcher...
Actors, Threats and Vulnerabilities 5 June to 11 June 2023
For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries related to cybersecurity threats. Over the past week, the fact that there were a total of seven attacks executed, taking advantage of five different vulnerabilities in...
XWorm Malware Exploits Follina Vulnerability in New Wave of Attacks
Cybersecurity researchers have discovered an ongoing phishing campaign that makes use of a unique attack chain to deliver the XWorm malware on targeted systems. Securonix, which is tracking the activity cluster under the name MEME4CHAN, said some of the attacks have primarily targeted manufacturi...
Exploit for CVE-2022-30190
FOLLINA-CVE-2022-30190 Implementation of FOLLINA-CVE-2022-3019...
Exploit for CVE-2022-30190
...
Exploit for CVE-2022-30190
...
Exploitation of Follina leads to takeover of domain controller
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The recent incident is related to TA570, wherein the attackers exploited the Follina vulnerability CVE-2022-30190 to compromise the Domain Controller and eventually gain access to confidential files...
Chinese Espionage Hackers Target Tibetans Using New LOWZERO Backdoor
A China-aligned advanced persistent threat actor known as TA413 weaponized recently disclosed flaws in Sophos Firewall and Microsoft Office to deploy a never-before-seen backdoor called LOWZERO as part of an espionage campaign aimed at Tibetan entities. Targets primarily consisted of organization...
Woody RAT leverages Follina to target Russia
Threat Level Attack Report For a detailed advisory, download the pdf file here Summary The unknown threat actor employs the Woody RAT to spear-phish Russian organizations. The malware was distributed via archive files and later switched to Microsoft Office documents leveraging the now-patched...
Countering Follina Attack (CVE- 2022-30190) with Trellix Network Security Platform’s Advanced Detection Features
Countering Follina Attack CVE- 2022-30190 with Trellix Network Security Platform’s Advanced Detection Features By Trellix · July 19, 2022 This blog was also written by Chintan Shah Executive summary During the end of May 2022, independent security researcher reported a vulnerability assigned...
Countering Follina Attack (CVE- 2022-30190) with Trellix Network Security Platform’s Advanced Detection Features
Countering Follina Attack CVE- 2022-30190 with Trellix Network Security Platform’s Advanced Detection Features By Vinay Kumar and Chintan Shah · July 19, 2022 Executive summary During the end of May 2022, independent security researcher reported a vulnerability assigned CVE-2022-30190 in Microsof...
Countering Follina Attack (CVE- 2022-30190) with Trellix Intrusion Prevention System’s Advanced Detection Features
Countering Follina Attack CVE- 2022-30190 with Trellix Intrusion Prevention System's Advanced Detection Features By Trellix · July 19, 2022 This blog was also written by Chintan Shah Executive summary During the end of May 2022, independent security researchers reported a vulnerability assigned...
Exploit for CVE-2022-30190
CVE-2022-30190EXPPowerPoint This is exploit of CVE-2022-301...
Exploit for CVE-2022-30190
CVE-2022-30190EXPPowerPoint This is exploit of CVE-2022-301...
Exploit for CVE-2022-30190
CVE-2022-30190EXPPowerPoint This is exploit of CVE-2022-301...
Exploit for CVE-2022-30190
CVE-2022-30190EXPPowerPoint This is exploit of CVE-2022-301...