Inteligência de ameaças

XVigil identified a post on a Telegram channel where the hacktivist group, DragonForce Malaysia has shared an exploit to CVE-2022-26134 to actively target and exploit Indian entities.

Grafana recently released an advisory and patch for a critical path traversal vulnerability which leads to an unauthenticated Local File inclusion. This vulnerability affects Grafana versions v8.0.0-beta1 through v8.3.0, however, the Grafana Cloud remains unaffected.

Amidst the Coronavirus scare, this dark web site exploits people’s fears, to make a quick buck sells COVID-19 masks at 10 times actual cost.

A confidential source has shared previously unknown details about the newly emerging threat actor group Desorden which is actively targeting Asian Conglomerates.

CloudSEK threat intelligence advisory on IcedID Banking Trojan Malware that steals financial information. It also acts as a dropper for other malware.

CloudSEK’s contextual AI digital risk platform XVigil discovered a post by the Mysterious Team announcing the use of the Raven Storm tool DDoS attacks. The tool uses multi-threading for sending multiple packets at a single moment of time and getting the target down.

Several critical and high-severity vulnerabilities affecting Veeam Backup & Replication exploited by advertising fully weaponized tools for remote code execution.

CISA recently released an advisory about the active exploitation of a newly identified vulnerability, CVE-2021-40539, in ManageEngine ADSelfService Plus