Cisco Family February 2025 First Round Security Update Advisory
Overview Cisco(https://www.cisco.com) has released a security update that fixes vulnerabilities in products it has...
February 05, 2025
February 05, 2025 Hash 137b15105a4151e47774130693809a453 2ac93538d59ab12efb704285f763db529 325da8dc84fbddaefefd359bf70346f53 URL 1http[:]//currently56752[.]weebly[.]com/ 2http[:]//cumnilingus[.]blogspot[.]com/2010/06/57[.]html 3https[:]//mevoydecasa[.]es/wp-content/uploads/2022/10/Bill3d_Kaylasister_Mpg[.]pdf IP 114[.]103[.]123[.]206 2103[.]183[.]74[.]105 3101[.]126[.]35[.]211...
Weekly Detection Rule (YARA and Snort) Information – Week 1, February 2025
The following is the information on Yara and Snort rules (week 1, February 2025) collected and shared by the AhnLab TIP service. 14 YARA Rules Detection name Description Source PK_Ameli_sunrise22 Phishing Kit impersonating Ameli.fr/Carte vitale https://github.com/t4d/PhishingKit-Yara-Rules PK_Aramex_panel Phishing Kit impersonating Aramex https://github.com/t4d/PhishingKit-Yara-Rules PK_Doctolib_js Phishing Kit impersonating Doctolib https://github.com/t4d/PhishingKit-Yara-Rules PK_Email_CN Phishing
SonicWall Product Security Update Advisory (CVE-2025-23007)
Overview SonicWall has released security updates to fix vulnerabilities in SonicWall products. Users of affected...
Mozilla Products February 2025 1st Security Update Advisory
Overview An update has been made available to fix vulnerabilities in the Mozilla family...
February 04, 2025
February 04, 2025 Hash 1c1c0dd970edc9ea383cf8b69fb92b858 288279c621c1432edc5b45c2ab47fd342 38c0245111da7fd766ec23ee7647462b1 URL 1http[:]//125[.]44[.]195[.]193[:]41148/bin[.]sh 2https[:]//evri-op[.]sbs/ 3http[:]//27[.]37[.]101[.]139[:]43218/bin[.]sh IP 1101[.]126[.]69[.]223 2159[.]223[.]28[.]67 3185[.]68[.]184[.]78...
Persistent Threats from the Kimsuky Group Using RDP Wrapper
AhnLab SEcurity intelligence Center (ASEC) has previously analyzed cases of attacks by the Kimsuky group, which utilized the PebbleDash backdoor and their custom-made RDP Wrapper. The Kimsuky group has been continuously launching attacks of the same type, and this post will cover additional malware that have been identified. 1.
ISC Product Security Update Advisory (CVE-2024-11187)
Overview We have released security updates to fix vulnerabilities in ISC products. Users of affected...
February 03, 2025
February 03, 2025 Hash 179bda11c2a4ccbe8aabba2e2c3bfeec7 263c78d726360be7fa902a055ce762532 398e7379816a6e447f6090533f11b0315 URL 1https[:]//www[.]uspssmartpackagelockers[.]com/%25252525252CN/A%25252525252Chttps%25252525253A/openphish[.]com/feed[.]txt 2https[:]//hegmann-nolan[.]com/ 3http[:]//hegmann-nolan[.]com/ IP 1121[.]204[.]136[.]105 2177[.]87[.]230[.]170 314[.]29[.]231[.]29...
Dell Product Security Update Advisory (CVE-2025-23374)
Overview We have released security updates to fix vulnerabilities in Dell products. Users of affected...
