Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Hackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan Attacks
Description: A new phishing campaign has been observed employing tax-themed lures to deliver a stealthy backdoor payload as part of attacks targeting Pakistan. Cybersecurity company Securonix, which is tracking the activity under the name FLUX#CONSOLE, said it likely starts with a phishing email link or attachment, although it said it couldn't obtain the original email used to launch the attack. "One of the
Source: TheHackerNews
December 18th, 2024 (6 months ago)
Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware
Description: A new social engineering campaign has leveraged Microsoft Teams as a way to facilitate the deployment of a known malware called DarkGate. "An attacker used social engineering via a Microsoft Teams call to impersonate a user's client and gain remote access to their system," Trend Micro researchers Catherine Loveria, Jovit Samaniego, and Gabriel Nicoleta said. "The attacker failed to install a
Source: TheHackerNews
December 18th, 2024 (6 months ago)
CISA orders federal agencies to secure Microsoft 365 tenants
Description: ​CISA has issued this year's first binding operational directive (BOD 25-01), ordering federal civilian agencies to secure their Microsoft 365 cloud environments by implementing a list of required configuration baselines. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration
Description: Vulnerabilities in Microsoft Azure Data Factory's integration with Apache Airflow can lead to unauthorized access and control over cloud resources. The post Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration appeared first on Unit 42.
Source: Palo Alto Unit42
December 18th, 2024 (6 months ago)

CVE-2024-35250
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Description: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.12%

Source: CVE
December 17th, 2024 (6 months ago)

CVE-2024-49090
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
December 14th, 2024 (6 months ago)

CVE-2024-49088
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
December 14th, 2024 (6 months ago)

CVE-2024-49074
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Description: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
December 14th, 2024 (6 months ago)

CVE-2024-49073
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
Description: Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

CVSS: MEDIUM (6.8)

EPSS Score: 0.05%

Source: CVE
December 14th, 2024 (6 months ago)

CVE-2024-49138
Windows Common Log File System Driver Elevation of Privilege Vulnerability
🚨 Marked as known exploited on December 10th, 2024 (6 months ago).
Description: Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
December 12th, 2024 (6 months ago)