Category: Advisory

  • admin
  • December 5, 2023
  • No Comments

Threat Intel Roundup: WebKit, Akira, Kimsuky

Week in Overview(28 Nov-5 Dec) Technical Summary WebKit Vulnerabilities CVE-2023-42916 and CVE-2023-42917 2. APT Patchwork Cyber Attack Campaign 3. D-Link D-View Coreservice_Action_Script RCE Vulnerability (CVE-2023-44414) 4. OwnCloud CVE-2023-49103 5. KQL Queries for Tracking CISA Known Exploited Vulnerabilities 6. Report on “State of Cloud Security” by Datadog 7. “Your #Booking Admin Account #violates our partnership terms”

More
  • admin
  • November 28, 2023
  • No Comments

Threat Intel Roundup: ownCloud, APT-Q-36, AlfaC2, ActionRunner

Technical Summary 1. Vulnerability Report: CVE-2023-49103 in ownCloud 2. Advanced Persistent Threat (APT) Report: The Mahagrass Organization (APT-Q-36) and Spyder Downloader 3. Report on Abusing .NET Core CLR Diagnostic Features and CVE-2023-33127 4. Report on Malicious One File Evading Antivirus Solutions 5. Report on WebDAV Server and XWorm V5.2 Malware Campaign 6. Analysis of “AlfaC2”

More
Threat Intel Roundup: Splunk, D0nut, DarkGate, SentinelAgent
  • admin
  • November 21, 2023
  • No Comments

Threat Intel Roundup: Splunk, D0nut, DarkGate, SentinelAgent

Technical Summary 1. “Unveiling LummaC2 Stealer’s Novel Anti-Sandbox Technique: Leveraging Trigonometry for Human Behavior Detection” 2. “Hacking the Canon imageCLASS MF742Cdw/MF743Cdw” 3. “Report on Open Directory and Malicious Activities at 179.60.147[.176” 4. “D0nut Ransomware Analysis” by NCC Group 5. “Report on TA544’s Recent Campaign Utilizing Remcos Malware” 6. “Report on SentinelOne’s Process Dumping Capability and

More
  • admin
  • November 14, 2023
  • No Comments

Threat Intel Roundup: OpenVPN, eBPF, AsyncRAT, OpenSea

Week in Overview(7 Nov-14 Nov) Technical Summary 1. Kernel Exploit and Rootkit Detection Using eBPF 2. Email Phishing Campaigns Targeting OpenSea Users and Developers 3. Chrome Use-After-Free Vulnerability in WebAudio (CVE-2023-5996) Resolution: Ignoring channel count updates after the audio context is closed to prevent exploitation. 4. Malware Distribution via GitHub: Threat Actors Spreading AsyncRAT 5.

More

All right reserved for HADESS.IO