Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2025/05/29 5:59 a.m.7 views

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

Google on Wednesday disclosed that the Chinese state-sponsored threat actor known as APT41 leveraged a malware called TOUGHPROGRESS that uses Google Calendar for command-and-control C2. The tech giant, which discovered the activity in late October 2024, said the malware was hosted on a compromise...

7.5AI score
Exploits0
CVE
CVE
added 2024/12/05 5:32 p.m.104 views

CVE-2024-11155

Rockwell Automation Arena contains a use-after-free vulnerability in parsing DOE files that could allow an attacker to execute arbitrary code. The issue affects Arena versions prior to 16.20.06 (per Nessus and related advisories). Exploitation requires a legitimate user to run the malicious DOE c...

8.5CVSS7.3AI score0.0023EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2020/10/24 12:0 p.m.61 views

Continued Threat Actor Exploitation Post Pulse Secure VPN Patching

Summary Note: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge ATT&CK® framework. See the ATT &CK for Enterprise framework for all referenced threat actor techniques and mitigations. This Alert provides an update to Cybersecurity and Infrastructure Security...

10CVSS9.7AI score0.99999EPSS
Exploits22References53
ICS
ICS
added 2020/07/24 12:0 p.m.84 views

Threat Actor Exploitation of F5 BIG-IP CVE-2020-5902

Summary The Cybersecurity and Infrastructure Security Agency CISA is issuing this alert in response to recently disclosed exploits that target F5 BIG-IP devices that are vulnerable to CVE-2020-5902. F5 Networks, Inc. F5 released a patch for CVE-2020-5902 on June 30, 2020.1 Unpatched F5 BIG-IP...

10CVSS10AI score0.99999EPSS
Exploits60References22
Rows per page
Query Builder