Lucene search
K

66 matches found

Packet Storm News
Packet Storm News
added 2026/06/05 12:0 a.m.7 views

Synthetic APTs: The Collapse of TTP-Based Attribution

Cyber Threat Intelligence CTI attribution relies on identifying the Tactics, Techniques, and Procedures TTPs that distinguish one threat actor from another. This approach presupposes that each adversary leaves a recognizable operational fingerprint. This work investigates whether AI driven...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/16 12:0 a.m.9 views

A Red Teaming Framework for Evaluating Robustness of AI-Enabled Security Orchestration, Automation, and Response Systems

AI-enabled Security Orchestration, Automation, and Response SOAR systems increasingly employ autonomous agents for cyber defense, yet their resilience to adaptive adversaries is underexplored. We introduce an autonomous red teaming framework that integrates large language models LLMs with...

5.8AI score
Exploits0
Securelist
Securelist
added 2025/11/26 10:0 a.m.11 views

Old tech, new vulnerabilities: NTLM abuse, ongoing exploitation in 2025

Just like the 2000s Flip phones grew popular, Windows XP debuted on personal computers, Apple introduced the iPod, peer-to-peer file sharing via torrents was taking off, and MSN Messenger dominated online chat. That was the tech scene in 2001, the same year when Sir Dystic of Cult of the Dead Cow...

8.8CVSS8.5AI score0.97798EPSS
Exploits90
Akamai Blog
Akamai Blog
added 2025/09/30 3:0 p.m.6 views

How to Secure Enterprise Networks by Identifying Malicious IP Addresses

...

7AI score
Exploits0
CNNVD
CNNVD
added 2025/09/24 12:0 a.m.2 views

Cisco IOS XE 安全漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE that stems from mishandling of errors...

7.7CVSS6.4AI score0.00354EPSS
Exploits0References2
HackRead
HackRead
added 2025/09/10 10:35 a.m.3 views

New Buterat Backdoor Malware Found in Enterprise and Government Networks

Meet Buterat, a new backdoor malware spreading through phishing and trojanized downloads, giving attackers persistent access to enterprise and government networks...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/09/08 10:15 p.m.295 views

Exploit for CVE-2017-0144

🔥 AKUMA'S ADVANCED LOW-HANGING FRUIT SCANNER v2.0 "Your i...

10CVSS7.2AI score0.9981EPSS
Exploits292
The Hacker News
The Hacker News
added 2025/07/15 3:21 p.m.5 views

Newly Emerged GLOBAL GROUP RaaS Expands Operations with AI-Driven Negotiation Tools

Cybersecurity researchers have shed light on a new ransomware-as-a-service RaaS operation called GLOBAL GROUP that has targeted a wide range of sectors in Australia, Brazil, Europe, and the United States since its emergence in early June 2025. GLOBAL GROUP was "promoted on the Ramp4u forum by the...

7.5AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/01/27 12:2 p.m.15 views

New VPN Backdoor

A newly discovered VPN backdoor uses some interesting tactics to avoid detection: When threat actors use backdoor malware to gain access to a network, they want to make sure all their hard work can't be leveraged by competing groups or detected by defenders. One countermeasure is to equip the...

7.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/17 12:0 a.m.7 views

PT-2024-10776 · Vivo · Wifi

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue arises when using a special mode to connect to enterprise WiFi. Certain options are not properly configured, allowing attackers to pretend to ...

6.4CVSS6.8AI score0.00218EPSS
Exploits0References5
Schneier on Security
Schneier on Security
added 2024/11/18 3:49 p.m.7 views

Most of 2023’s Top Exploited Vulnerabilities Were Zero-Days

Zero-day vulnerabilities are more commonly used, according to the Five Eyes: Key Findings In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them to conduct cyber operations against higher-priority targets. In 2023,...

7.5AI score
Exploits0
CNVD
CNVD
added 2024/11/15 12:0 a.m.2 views

Ivanti Endpoint Manager Path Traversal Vulnerability (CNVD-2025-28686)

Ivanti Endpoint Manager is a comprehensive endpoint management solution developed by Ivanti to unify the management of all types of devices in an enterprise network, including Windows, macOS, Linux, ChromeOS, mobile devices and IoT devices. A path traversal vulnerability exists in Ivanti Endpoint...

7.8CVSS7.5AI score0.06027EPSS
Exploits0References1
CISA
CISA
added 2024/09/26 12:0 p.m.6 views

ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises

Today, the Australian Signals Directorate Australian Cyber Security Centre ASD ACSC, the Cybersecurity and Infrastructure Security Agency CISA, and other U.S. and international partners released the joint guide Detecting and Mitigating Active Directory Compromiseslink is external. This guide...

7.1AI score
Exploits0References2
CNVD
CNVD
added 2024/09/20 12:0 a.m.5 views

DrayTek Vigor 3910 Buffer Overflow Vulnerability (CNVD-2024-39949)

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which is caused by the sProfileName parameter on the fextobj.cgi page not properly validating the length of input data, and can be...

7.5CVSS7.2AI score0.00523EPSS
Exploits0References1
CNVD
CNVD
added 2024/09/20 12:0 a.m.7 views

DrayTek Vigor 3910 Buffer Overflow Vulnerability

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which originates from the AControlIp1 parameter on the acontrol.cgi page that fails to properly validate the length of the input dat...

7.5CVSS7.2AI score0.0045EPSS
Exploits0References1
CNVD
CNVD
added 2024/09/20 12:0 a.m.8 views

DrayTek Vigor 3910 Buffer Overflow Vulnerability (CNVD-2024-39944)

The DrayTek Vigor 3910 is a high performance router for enterprise networks from DrayTek. A buffer overflow vulnerability exists in the DrayTek Vigor 3910 v4.3.2.6, which stems from the extRadSrv2 parameter on the cgiapp.cgi page that fails to correctly validate the length of the input data, and...

7.5CVSS7.1AI score0.0045EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/05/29 3:16 p.m.40 views

Check Point Warns of Zero-Day Attacks on its VPN Gateway Products

Check Point is warning of a zero-day vulnerability in its Network Security gateway products that threat actors have exploited in the wild. Tracked as CVE-2024-24919 CVSS score: 8.6, the issue impacts CloudGuard Network, Quantum Maestro, Quantum Scalable Chassis, Quantum Security Gateways, and...

8.6CVSS9.1AI score0.99978EPSS
Exploits52
Pen Test Partners Blog
Pen Test Partners Blog
added 2023/10/12 5:8 a.m.95 views

Using Velociraptor for large-scale endpoint visibility and rapid threat hunting

TL;DR Network-wide collection, acquisition and monitoring tool for use in DFIR engagements Designed for enterprise networks 150k+ Deployments aren’t unheard of Boasts many features that your commercial EDR has, and a few more Flexible querying language that can adapt to new threats and encourages...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/26 1:13 p.m.37 views

Decoy Dog: New Breed of Malware Posing Serious Threats to Enterprise Networks

A deeper analysis of a recently discovered malware called Decoy Dog has revealed that it's a significant upgrade over the Pupy RAT, an open-source remote access trojan it's modeled on. "Decoy Dog has a full suite of powerful, previously unknown capabilities – including the ability to move victims...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/01 12:31 p.m.3 views

New Decoy Dog Malware Toolkit Uncovered: Targeting Enterprise Networks

An analysis of over 70 billion DNS records has led to the discovery of a new sophisticated malware toolkit dubbed Decoy Dog targeting enterprise networks. Decoy Dog , as the name implies, is evasive and employs techniques like strategic domain aging and DNS query dribbling, wherein a series of...

6.7AI score
Exploits0
Rows per page
Query Builder