Week in Overview(5 Dec-12 Dec) Technical Summary 1. Trigona Ransomware 2. CrushFTP Vulnerability (CVE-2023-43177) 3. Lazarus Group’s Use of Log4j Vulnerability 4. X Malvertising Campaign Involving Fake Wallet App 5. Critical Security Exploit in CS2 Linked to Steam Names 6. Thirdweb’s Contracts Update and Subsequent Exploits 7. Sandman APT: China-Based Adversaries Embrace Lua 8. Gh0st
MoreWeek in Overview(28 Nov-5 Dec) Technical Summary WebKit Vulnerabilities CVE-2023-42916 and CVE-2023-42917 2. APT Patchwork Cyber Attack Campaign 3. D-Link D-View Coreservice_Action_Script RCE Vulnerability (CVE-2023-44414) 4. OwnCloud CVE-2023-49103 5. KQL Queries for Tracking CISA Known Exploited Vulnerabilities 6. Report on “State of Cloud Security” by Datadog 7. “Your #Booking Admin Account #violates our partnership terms”
MoreTechnical Summary 1. Vulnerability Report: CVE-2023-49103 in ownCloud 2. Advanced Persistent Threat (APT) Report: The Mahagrass Organization (APT-Q-36) and Spyder Downloader 3. Report on Abusing .NET Core CLR Diagnostic Features and CVE-2023-33127 4. Report on Malicious One File Evading Antivirus Solutions 5. Report on WebDAV Server and XWorm V5.2 Malware Campaign 6. Analysis of “AlfaC2”
More
Technical Summary 1. “Unveiling LummaC2 Stealer’s Novel Anti-Sandbox Technique: Leveraging Trigonometry for Human Behavior Detection” 2. “Hacking the Canon imageCLASS MF742Cdw/MF743Cdw” 3. “Report on Open Directory and Malicious Activities at 179.60.147[.176” 4. “D0nut Ransomware Analysis” by NCC Group 5. “Report on TA544’s Recent Campaign Utilizing Remcos Malware” 6. “Report on SentinelOne’s Process Dumping Capability and
More