24 matches found
APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign
A Pakistan-nexus threat actor has been observed targeting Indian government entities as part of spear-phishing attacks designed to deliver a Golang-based malware known as DeskRAT. The activity, observed in August and September 2025 by Sekoia, has been attributed to Transparent Tribe aka APT36, a...
EUVD-2011-1226
Malware in sbrugna...
EUVD-2003-1144
Malware in sbrugna...
CVE-2020-3134
A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper validation of zip files. An...
Threat Outbreak Alert: Fake Fax Message Notification Email Messages on May 27, 2014
Medium Alert ID: 34353 First Published: 2014 May 28 17:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a fax message for the recipient. The text in the email message attempts to convince the recipient ...
Threat Outbreak Alert: Fake Personal Note Email Messages on May 28, 2014
Medium Alert ID: 34389 First Published: 2014 May 28 17:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a personal note for the recipient. The text in the email message attempts to convince the recipien...
Threat Outbreak Alert: Email Messages with Malicious Attachment on April 15, 2014.
Medium Alert ID: 33819 First Published: 2014 April 16 11:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages with a blank message body and a document attached for the recipient. However, the .zip attachment contains a malicious .exe file that,...
Threat Outbreak Alert: Fake Scanned Document Email Messages on April 8, 2014
Medium Alert ID: 33709 First Published: 2014 April 9 15:02 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a scanned document for the recipient. The text in the email message instructs the recipient to open a .zip...
Threat Outbreak Alert: Fake Product Shipping Documents Email Messages on March 19, 2014
Medium Alert ID: 33437 First Published: 2014 March 20 20:38 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain product shipping documents for the recipient. The text in the email message attempts to convince the recipient t...
Threat Outbreak Alert: Fake Personal Photo Email Messages on January 27, 2014
Medium Alert ID: 32602 First Published: 2014 January 28 15:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a picture for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Email Messages with Malicious Attachment on June 11, 2014
Medium Alert ID: 32316 First Published: 2014 January 3 21:10 GMT Last Updated: 2014 June 12 13:56 GMT Version: 12 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an image for the recipient. The email message attempts to convince the...
Threat Outbreak Alert: Fake Explicit Content Email Messages on December 16, 2013
Medium Alert ID: 32189 First Published: 2013 December 17 15:07 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that contain an explicit message for the recipient. The text in the email message attempts to convince the...
Threat Outbreak Alert: Fake Scanned Image Email Messages on October 31, 2013
Medium Alert ID: 31573 First Published: 2013 October 31 14:30 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a scanned image attachment for the recipient. The text in the email message attempts to convince the recipient...
Threat Outbreak Alert: Email Messages with Malicious Attachments on October 18, 2013
Medium Alert ID: 31363 First Published: 2013 October 18 13:42 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages with a blank message body and document attached for the recipient. However, the .zip attachment contains a malicious .exe file that,...
Threat Outbreak Alert: Fake Document Sharing Email Messages on July 3, 2013
Medium Alert ID: 29948 First Published: 2013 July 5 13:18 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain documents for the recipient. The text in the email message attempts to convince the recipient ...
Threat Outbreak Alert: Malicious Attachment Email Messages on June 26, 2013
Medium Alert ID: 29804 First Published: 2013 June 26 17:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attachment for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Product Sample Order Quotation Email Messages on June 22, 2013
Medium Alert ID: 29753 First Published: 2013 June 24 12:53 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product order quotation for the recipient. The text in the email message attempts to convince the recipient to...
Threat Outbreak Alert: Fake Photo Sharing Email Messages on June 18, 2013
Medium Alert ID: 29700 First Published: 2013 June 18 20:06 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain a photo for the recipient. The text in the email message attempts to convince the recipient t...
CVE-2011-1218
Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information...
Buffer overflow
Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information...