Weekly Detection Rule (YARA and Snort) Information – Week 4, November 2024
The following is the information on Yara and Snort rules (week 4, November 2024) collected and shared by the AhnLab TIP service. 5 YARA Rules Detection name Description Source PK_Amazon_hitman Phishing Kit impersonating Amazon https://github.com/t4d/PhishingKit-Yara-Rules PK_Nedbank_sql Phishing Kit impersonating Nedbank https://github.com/t4d/PhishingKit-Yara-Rules PK_Barclays_offshore Phishing Kit impersonating Barclays https://github.com/t4d/PhishingKit-Yara-Rules PK_OneDrive_awake Phishing Kit
Status of Korean Servers Exposed to Ivanti Connect Secure Vulnerabilities (Multiple CVEs)
Multiple vulnerabilities have been disclosed for the Ivanti Connect Secure product, including several with a CVSS score of 9 or higher (CRITICAL). The majority of Ivanti Connect Secure servers operating in Korea have been identified as vulnerable versions. Figure 1. Default connection screen of Ivanti Connect Secure Ivanti
IBM Product Security Update Advisory
Overview An update has been released to address vulnerabilities in IBM Products. Users of the...
November 27, 2024
November 27, 2024 Hash 136c32c1c7e818f74c9f3d21465372a82 23ff8c294c7bc1d403db1f81757dd4128 3f27718897f843b2f2324f436aee17e23 URL 1http[:]//netflix-gpt-ochre[.]vercel[.]app/ 2http[:]//www[.]vizzano[.]com[.]br/2018/upload/contato/alibaba[.]com/passport[.]alibaba[.]com/icbu_login[.]htm/Login[.]php 3http[:]//lnstagram[.]cat/ IP 1119[.]179[.]248[.]227 2185[.]217[.]131[.]157 3103[.]187[.]146[.]207...
Dell Product Security Update Advisory
Overview An update has been released to address vulnerabilities in Dell Products. Users of the...
Siemens Product Security Update Advisory
Overview An update has been released to address vulnerabilities in Siemens Products. Users of the...
QNAP Product Security Update Advisory
Overview An update has been released to address vulnerabilities in QNAP. Users of the affected...
Apache OFBiz Product Security Update Advisory
Overview An update has been released to address vulnerabilities in Apache OFBiz Products. Users of...
WordPress Spam protection, Anti-Spam, FireWall Plugin security update advisory
Overview An update has been released to address vulnerabilities in WordPress Spam protection, Anti-Spam, FireWall...
November 26, 2024
November 26, 2024 Hash 1d4ebb7bae323404d40306595881d4860 2680bd793f4ac84b0fd57444f9892e1a2 394e952368709ea0f851c04d75c9f3f15 URL 1https[:]//landupth[.]com/ 2http[:]//222[.]142[.]251[.]63[:]57807/bin[.]sh 3https[:]//s1-filecr[.]xyz/eabd9e368ffe7f8f?download_token=7599db02706fd6bb28a884b82971c0a5036b0e00ace893f03a3e7518d463cb4d IP 1125[.]63[.]105[.]149 2101[.]226[.]179[.]122 3157[.]10[.]161[.]234...
