23 matches found
CAPTCHA 4WP < 7.1.0 - Local File Inclusion via CSRF
The plugin lets user input reach a sensitive requireonce call in one of its admin-side templates. This can be abused by attackers, via a Cross-Site Request Forgery attack to run arbitrary code on the server. 1 Create a malicious PHP script $ echo ' shell.php 2 Add it to a fake .doc file, who will...
“Cyber Conflict” Decoy Document Used In Real Cyber Conflict
This post was authored by Warren Mercer, Paul Rascagneres and Vitor VenturaUpdate 10/23: CCDCOE released a statement today on their websiteIntroductionCisco Talos discovered a new malicious campaign from the well known actor Group 74 aka Tsar Team, Sofacy, APT28, Fancy Bear…. Ironically the decoy...
Threat Outbreak Alert: Fake Document Attachment Email Messages on May 27, 2014
Medium Alert ID: 34371 First Published: 2014 May 27 19:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient...
Threat Outbreak Alert: Fake Document Processing Request Email Messages on March 19, 2014
Medium Alert ID: 33435 First Published: 2014 March 20 13:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to Italian-language spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient ...
Threat Outbreak Alert: Fake Document Attachment Email Messages on March 18, 2014
Medium Alert ID: 33385 First Published: 2014 March 18 18:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to Italian-language spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient ...
Threat Outbreak Alert: Fake Document Attachment Email Messages on March 1, 2014
Medium Alert ID: 33327 First Published: 2014 March 12 22:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a document for the recipient. The email message attempts to convince the recipient to open the link to view the document...
Threat Outbreak Alert: Fake Document Submission Notice Email Messages on February 14, 2014
Medium Alert ID: 32875 First Published: 2014 February 14 17:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document submission notice for the recipient. The text in the email message attempts to convince the...
Threat Outbreak Alert: Fake Document Attachment Email Messages on February 1, 2014
Medium Alert ID: 32682 First Published: 2014 February 3 14:33 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Document Attachment Email Messages on January 27, 2014
Medium Alert ID: 32589 First Published: 2014 January 27 21:02 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Failed Online Document Submission Email Messages on January 23, 2014
Medium Alert ID: 32550 First Published: 2014 January 23 21:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an online document failure notification for the recipient. The text in the email message attempts to convince...
Threat Outbreak Alert: Fake Document Signature Request Email Messages on January 21, 2014
Medium Alert ID: 32507 First Published: 2014 January 21 21:58 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Document Attachment Email Messages on December 4, 2013
Medium Alert ID: 32046 First Published: 2013 December 5 19:41 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain document for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Document Submission Confirmation Email Messages on November 13, 2013
Medium Alert ID: 31747 First Published: 2013 November 13 16:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an annual return submission confirmation for the recipient. The text in the email message attempts to convinc...
Threat Outbreak Alert: Fake Document Attachment Email Messages on October 21, 2013
Medium Alert ID: 31390 First Published: 2013 October 21 16:28 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an Excel document for the recipient. The text in the email message attempts to convince the recipient to open...
Threat Outbreak Alert: Fake Document Attachment Email Messages on October 6, 2013
Medium Alert ID: 31144 First Published: 2013 October 7 14:41 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages containing an empty message body and use the Subject: line Documents. The Subject: line and the name of the attached file are used in...
Threat Outbreak Alert: Fake Document Filing Notification Email Messages on October 1, 2013
Medium Alert ID: 31071 First Published: 2013 October 1 14:52 GMT Last Updated: 2013 October 2 18:28 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document notification regarding annual returns for the recipient. The...
Threat Outbreak Alert: Fake Document Attachment Email Messages on September 30, 2013
Medium Alert ID: 31033 First Published: 2013 September 30 18:17 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an important document from Wells Fargo. The text in the email message attempts to convince the recipient to...
Threat Outbreak Alert: Fake Document Delivery Email Messages on September 18, 2013
Medium Alert ID: 30884 First Published: 2013 September 19 15:52 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain an update on materials for the recipient. The email message attempts to persuade the recipient to open the link for...
Threat Outbreak Alert: Fake Document Attachment Email Messages on September 9, 2013
Medium Alert ID: 30768 First Published: 2013 September 12 17:37 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a utility form for the recipient. The text in the email message attempts to convince the recipient to open t...
Threat Outbreak Alert: Fake Document Attachment Email Messages on September 5, 2013
Medium Alert ID: 30633 First Published: 2013 September 3 18:17 GMT Last Updated: 2013 September 5 16:29 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attached document for the recipient. The text in the email messag...