Security Affairs

MAY 30, 2022

The first version of the bot exploits tens of known vulnerabilities including: CVE-2020-17456 vulnerability affecting SEOWON INTECH SLC-130 and SLR-120S routers; CVE-2018-10823 flaw an older D-Link routers (DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, DWR-111 through 1.01).

CMS 141

CMS IoT Passwords Security 141

Security Affairs

APRIL 18, 2022

Threat actors are targeting Ukrainian government organizations with exploits for XSS vulnerabilities in Zimbra Collaboration Suite (CVE-2018-6882). Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict. April 15 – Threat actors use Zimbra exploits to target Ukrainian organizations.

Ransomware 89

Ransomware Phishing Cybersecurity Government 89

Security Affairs

APRIL 10, 2019

The latter leverages the WinRar/Ace vulnerability ( CVE-2018-20250 ) dropping the malware itself into the Windows startup folder. The second malware phase ( denuncias.rar ) ; which used WinRar/Ace vulnerability ( CVE-2018-20250 ) to drop the malware itself was uploaded by criminals to the opendir C2 server on March 18th, 2019.

Security 59

Security IT Access Cybersecurity 59

Security Affairs

AUGUST 6, 2019

Few weeks ago, Unit42 discovered another active campaign , compatible with the Roma225 one we tracked on December 2018, pointing to some interesting changes into the attackers TTPs. Since December 2018, we are following the tracks of this ambiguous cyber criminal group, internally referenced as TH-173. Conclusion. Pierluigi Paganini.

Libraries 63

Libraries IT Education Security 63