#threatintel
2
From paloaltonetworks.com
Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack
3 3
North Korean IT worker cluster CL-STA-0237 instigated phishing attacks via video apps in Laos, exploiting U.S. IT firms and major tech identities. North Korean IT worker cluster CL-STA-0237 instigated phishing attacks via video apps in Laos, exploiting U.S. IT firms and major tech identities.
#cti #ioc #unit42 #infosec #phishing #wagemole #clsta0237 #cybercrime #northkorea #cybersecurity
5h ago
2
From infoblox.com
Multiple DNS Actors linked to Domain Hijacking | Infoblox
2 2
Learn how DNS threat actors hijack domains and use them in their malicious campaigns.
#cti #dns #ioc #infoblox #phishing #cybercrime #attackVector #infobloxthreatintel #cyberthreatintelligence #infosec
11h ago
1
1
From fortiguard.com
1 2
None
#cti #cve #eitw #infosec #Fortinet #fortijump #threatintel #cybersecurity #vulnerability #cve_2024_47575
on Oct 23
1
From cvefeed.io
CVE-2024-3379 - "Lunary AI Private Key Unauthorized Regeneration Vulnerability"
1 1
In lunary-ai/lunary versions 1.2.2 through 1.2.6, an incorrect authorization vulnerability allows unprivileged users to re-generate the private key for projects they do not have access to. Specifically, a user with a 'Member' role can issue a request to regenerate the private key of a project...
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
10h ago
1
From cvefeed.io
CVE-2024-3501 - Lunary-AI Lunary Information Disclosure Vulnerability
1 1
In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability exists due to the inclusion of single-use tokens in the responses of `GET /v1/users/me` and `GET /v1/users/me/org` API endpoints. These tokens, intended for sensitive operations such as password...
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
10h ago
1
From cvefeed.io
CVE-2024-4343 - Amazon SageMaker PrivateGPT Python Command Injection Vulnerability
1 1
A Python command injection vulnerability exists in the `SagemakerLLM` class's `complete()` method within `./private_gpt/components/llm/custom/sagemaker.py` of the imartinez/privategpt application, versions up to and including 0.3.0. The vulnerability arises due to the use of the `eval()`...
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
10h ago
1
From cvefeed.io
CVE-2024-9693 - GitLab CE/EE Kubernetes Agent Authorization Bypass
1 1
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7, starting from 17.4 prior to 17.4.4, and starting from 17.5 prior to 17.5.2, which could have allowed unauthorized access to the Kubernetes agent in a cluster under specific configurations.
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
18h ago
1
From cvefeed.io
CVE-2024-9832 - Philips Ventilator Login Brute Force Vulnerability
1 1
There is no limit on the number of failed login attempts permitted with the Clinician Password or the Serial Number Clinician Password. An attacker could execute a brute-force attack to gain unauthorized access to the ventilator, and then make changes to device settings that could disrupt the...
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
6h ago
1
From cvefeed.io
CVE-2024-9834 - Medtronic Ventilator Information Exposure Vulnerability
1 1
Improper data protection on the ventilator's serial interface could allow an attacker to send and receive messages that result in unauthorized disclosure of information and/or have unintended impacts on device settings and performance.
#cti #cve #ioc #recon #threatintel #cybersecurity #threatintelligence
5h ago