CVE-2024-13643 - Zox News - WordPress News & Magazine Theme Plugin Unauthenticated Option Manipulation Vulnerability February 11, 2025 at 08:15AM https://ift.tt/htf8z1L #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
![](https://files.mastodon.social/cache/preview_cards/images/132/157/429/original/88665770b9cce98e.webp)
CVE-2024-13643 - Zox News - WordPress News & Magazine Theme Plugin Unauthenticated Option Manipulation Vulnerability February 11, 2025 at 08:15AM https://ift.tt/htf8z1L #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-0181 - WordPress Foodbakery Plugin Privilege Escalation Vulnerability February 11, 2025 at 07:15AM https://ift.tt/CLru6fx #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-0180 - WordPress Foodbakery Plugin Privilege Escalation Vulnerability February 11, 2025 at 07:15AM https://ift.tt/RHLxeku #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-1144 - Quanxun School Affairs System Information Disclosure February 11, 2025 at 04:15AM https://ift.tt/1dhl5Ac #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-1143 - Billion Electric Routers Unauthenticated SSH Hard-Coded Credentials Vulnerability February 11, 2025 at 04:15AM https://ift.tt/C4I56lb #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
New ransom group blog posts!
Group name: monti
Post title: sole technology
Info: https://cti.fyi/groups/monti.html
Group name: killsecurity
Post title: TMC
Info: https://cti.fyi/groups/killsecurity.html
Group name: killsecurity
Post title: Logix Corporate Solutions
Info: https://cti.fyi/groups/killsecurity.html
CVE-2025-25243 - SAP Supplier Relationship Management (SRM) File Disclosure February 11, 2025 at 01:15AM https://ift.tt/YjSNLEn #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-24876 - "SAP Approuter Node.js Authentication Bypass" February 11, 2025 at 01:15AM https://ift.tt/aoUqd38 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2025-0064 - SAP BusinessObjects Business Intelligence Impersonation Token Generation February 11, 2025 at 01:15AM https://ift.tt/AtL9I6V #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
New ransom group blog posts!
Group name: incransom
Post title: The Children's Center Of Hamden
Info: https://cti.fyi/groups/incransom.html
Group name: ransomhub
Post title: primesourcestaffing.com
Info: https://cti.fyi/groups/ransomhub.html
We have detected a recent malware campaign originating from a Türkiye IP. The campaign involved SnakeKeyLogger and XWorm, sent via emails primarily from`mail.haselayakkabi[.]com[.]tr` (SMTP IP: 45[.]144[.]214[.]104). The subject line was "<Recipient> received a new documents" with attachments like "SCS AWB and Commercial Invoice.rar" and a png of the Dropbox logo. Be cautious and stay safe!
The combination of Xworm and SnakeKeyLogger represent a significant threat to privacy, and is capable of stealing passwords, recording keystrokes, and exfiltrating the data using SMTP and telegram.
Malware Analysis: https://tria.ge/250205-bqhf9stndn
Stay vigilant, everyone!
#malware #snakekeylogger #xworm #phishing #dns #mastodon #threatintel #cybercrime #threatintelligence #cybersecurity #infosec #infoblox #infobloxthreatintel
CVE-2024-46436 - Tenda W18E Authentication Bypass February 10, 2025 at 07:15PM https://ift.tt/kJdQPFb #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46435 - Tenda W18E Stack Overflow Vulnerability February 10, 2025 at 07:15PM https://ift.tt/C1cqX5F #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46434 - Tenda W18E Auth Bypass February 10, 2025 at 07:15PM https://ift.tt/MN3ygjc #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46433 - Tenda W18E Default Credentials Vulnerability February 10, 2025 at 07:15PM https://ift.tt/gf6qBz0 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46432 - Tenda W18E Authentication Bypass February 10, 2025 at 07:15PM https://ift.tt/jI1msD5 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46431 - Tenda W18E Buffer Overflow Vulnerability February 10, 2025 at 07:15PM https://ift.tt/XIC850h #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-46429 - Tenda W18E Hardcoded Credentials Authentication Bypass February 10, 2025 at 07:15PM https://ift.tt/d097nBf #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
CVE-2024-42512 - OPC UA .NET Standard Stack Authentication Bypass February 10, 2025 at 07:15PM https://ift.tt/1hTmXGI #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon
New ransom group blog posts!
Group name: ransomhub
Post title: www.jsp.com
Info: https://cti.fyi/groups/ransomhub.html
Group name: ransomhub
Post title: kaplanstahler.com
Info: https://cti.fyi/groups/ransomhub.html
Group name: ransomhub
Post title: sdfab.com
Info: https://cti.fyi/groups/ransomhub.html
Group name: ransomhub
Post title: bazcooil.com
Info: https://cti.fyi/groups/ransomhub.html
Group name: ransomhub
Post title: komline.com
Info: https://cti.fyi/groups/ransomhub.html
Group name: bashe
Post title: ome.tv | SOLD
Info: https://cti.fyi/groups/bashe.html