Lucene search
+L

4 matches found

hivepro
hivepro
added 2022/03/14 4:24 p.m.232 views

Weekly Threat Digest: 7 – 13 March 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 538 16 3 42 19 89 The second week of March 2022 witnessed the discovery of 538 vulnerabilities out of which 16...

9.3CVSS0.4AI score0.99999EPSS
Exploits459
hivepro
hivepro
added 2022/03/10 4:20 p.m.358 views

Prophet Spider exploits Log4j and Citrix vulnerabilities to deploy webshells

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Prophet Spider is a well-known Initial Access Broker IAB group. Prophet Spiders tradecraft continues to grow while exploiting known web-server vulnerabilities such as Citrix and Log4j. A remote code execution RCE...

10CVSS0.2AI score0.99999EPSS
Exploits359
The Hacker News
The Hacker News
added 2022/01/26 1:30 p.m.33 views

Initial Access Broker Involved in Log4Shell Attacks Against VMware Horizon Servers

An initial access broker group tracked as Prophet Spider has been linked to a set of malicious activities that exploits the Log4Shell vulnerability in unpatched VMware Horizon Servers. According to new research published by BlackBerry Research & Intelligence and Incident Response IR teams today,...

Exploits0
Positive Technologies
Positive Technologies
added 2021/09/14 12:0 a.m.3 views

PT-2021-7657 · Citrix · Citrix Sharefile

Name of the Vulnerable Software and Affected Versions: Citrix ShareFile versions prior to 5.11.20 Description: The issue is related to improper access control in Citrix ShareFile storage zones controller, which may allow an unauthenticated attacker to remotely compromise the storage zones...

10CVSS9.2AI score0.53585EPSS
Exploits1References18
Rows per page
Query Builder