Lucene search
K

11 matches found

The Hacker News
The Hacker News
added 2025/03/12 11:56 a.m.34 views

Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack

Threat intelligence firm GreyNoise is warning of a "coordinated surge" in the exploitation of Server-Side Request Forgery SSRF vulnerabilities spanning multiple platforms. "At least 400 IPs have been seen actively exploiting multiple SSRF CVEs simultaneously, with notable overlap between attack...

9.8CVSS7.7AI score0.99999EPSS
Exploits17
The Hacker News
The Hacker News
added 2023/03/08 7:57 a.m.42 views

Sharp Panda Using New Soul Framework Version to Target Southeast Asian Governments

High-profile government entities in Southeast Asia are the target of a cyber espionage campaign undertaken by a Chinese threat actor known as Sharp Panda since late last year. The intrusions are characterized by the use of a new version of the Soul modular framework, marking a departure from the...

0.2AI score
Exploits0
Talos Blog
Talos Blog
added 2022/12/08 7:38 p.m.42 views

Breaking the silence - Recent Truebot activity

Since August 2022, we have seen an increase in infections of Truebot aka Silence.Downloader malware. Truebot was first identified in 2017 and researchers have linked it to a threat actor called Silence Group that is responsible for several high-impact attacks on financial institutions in several...

9.8AI score0.36009EPSS
Exploits1
hivepro
hivepro
added 2022/07/26 5:2 a.m.19 views

Vulnerabilities & Threats that Matter 18 – 24th July

Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 497 11 2 Worldwide 6 33 For a detailed threat digest, download the pdf file here Summary The third week of July 2022 witnessed the discovery of 497 vulnerabilities out of...

1.2AI score
Exploits0
hivepro
hivepro
added 2022/04/27 12:44 p.m.421 views

Weekly Threat Digest: 18 – 24 April 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 430 5 2 Worldwide 17 46 The fourth week of April 2022 witnessed the discovery of 430 vulnerabilities out of which ...

10CVSS0.3AI score0.99999EPSS
Exploits28
hivepro
hivepro
added 2022/04/05 10:11 a.m.132 views

Weekly Threat Digest: 28 March – 3 April 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 500 7 3 27 16 46 The fourth week of March 2022 witnessed the discovery of 500 vulnerabilities out of which 7 gaine...

7.5CVSS1.4AI score0.99796EPSS
Exploits115
hivepro
hivepro
added 2022/03/14 4:24 p.m.232 views

Weekly Threat Digest: 7 – 13 March 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 538 16 3 42 19 89 The second week of March 2022 witnessed the discovery of 538 vulnerabilities out of which 16...

9.3CVSS0.4AI score0.99999EPSS
Exploits459
Trellix
Trellix
added 2020/04/30 12:0 a.m.20 views

Tales From the Trenches; a Lockbit Ransomware Story

ARCHIVED STORY Tales From the Trenches; a Lockbit Ransomware Story By ATR Operational Intelligence Team · APR 30, 2020 Co-authored by Marc RiveroLopez. In collaboration with Northwave As we highlighted previously across two blogs, targeted ransomware attacks have increased massively over the past...

8AI score
Exploits0
The Hacker News
The Hacker News
added 2015/04/13 5:56 a.m.13 views

Chinese Hackers Target Air-Gapped Networks in Southeast Asia

A State-sponsored Cyber Espionage Group -- most likely linked to the Chinese government becomes the first group to target the so-called "Air-Gapped Networks" that aren't directly connected to the Internet. What are Air-Gapped systems? Air-gapped systems are known to be the most safest and secure...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2015/02/16 11:8 p.m.17 views

NSA Planted Stuxnet-Type Malware Deep Within Hard Drive Firmware

The U.S. National Security Agency NSA may be hiding highly-sophisticated hacking payloads in the firmware of consumer hard drives over the last 15 to 20 years in a campaign, giving the agency the means to eavesdrop on thousands of targets’ computers, according to an analysis by Kaspersky labs and...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2014/10/16 11:47 p.m.8 views

Reflection DDoS Attacks Using Millions of UPnP Devices on the Rise

After successful in launching reflection and amplification Distributed Denial-of-Service DDoS attacks by abusing various protocols such as DNS, NTP and SMTP, hackers are now abusing Simple Service Discovery Protocol SSDP – part of the UPnP protocol standard – to target home and office devices,...

6.5AI score
Exploits0
Rows per page
Query Builder