Week in Overview(23 Jan-30 Jan) – 2024 Technical Summary 1. ScarCruft Campaign Targeting Cybersecurity Professionals: 2. Proxying Windows Tools Through SOCKS for Offensive Use: 3. AllaKore RAT Targeting Mexican Banks and Crypto Platforms: 4. CVE-2023-41474: Ivanti Avalanche Directory Traversal Flaw: 5. Microsoft’s Response to the Midnight Blizzard (Nobelium) Nation-State Attack: 6. CVE-2024-0204 RCE Exploit in
More
Week in Overview(16 Jan-23 Jan) – 2024 Technical Summary 1. Agniane Stealer Overview: Agniane Stealer is an advanced information stealer discovered by cybersecurity researchers. It operates as part of the Malware-as-a-Service (MaaS) platform, specifically linked to the Cinoshi Project. The stealer is adept at extracting sensitive data, including credentials, system information, and crypto-related details. Key
More
Week in Overview(31 Oct-7 Nov) Technical Summary AsyncRAT Malware Campaign Analysis:Threat: Sophisticated AsyncRAT malware.Method: Distributed via a malicious HTML file that employs a range of file types to bypass AV detection.Capabilities: Includes keylogging, data theft, and process injection into legitimate system processes for stealth. VMware vCenter Server Vulnerabilities (CVE-2023-34048 and CVE-2023-34056):Threat: Critical vulnerabilities, including an
MoreWeek in Overview(24 Oct-31 Oct) Technical Summary it is crucial for organizations and individuals to prioritize remediation and patching efforts to safeguard their systems and data. The following key findings highlight the importance of proactive measures to mitigate risks associated with various vulnerabilities and threats: 🚨 Vulnerability of the Week A recent scan has detected
More