Status as of July 03, 2024
Status as of July 03, 2024 Hash 1564741e996a631a5aacf64ecb0d5fbae 2c129e1c4bc49982b8a1eb0d0153af860 3632922574326bd61da475552b9ac01b7 URL 1http[:]fmktrk[.]live/ 2http[:]ak[.]zougreek[.]com/ 3http[:]qltuh[.]bellatrixmeissa[.]com/ IP...
Distribution of AsyncRAT Disguised as Ebook
1. Overview AhnLab SEcurity intelligence Center (ASEC) covered cases of AsyncRAT being distributed via various file extensions (.chm, .wsf, and .lnk). [1] [2] In the aforementioned blog posts, it can be seen that the threat actor used normal document files disguised as questionnaires to conceal the malware. In a similar vein, there
Spotfire Family Security Update Advisory (CVE-2024-3330)
Overview An update has been released to fix vulnerabilities in the Spotfire family of...
Spring Product Security Update Advisory (CVE-2024-22263)
Overview An update has been made available to address a vulnerability in the Spring suite....
Weekly Detection Rule (YARA and Snort) Information – Week 1, July 2024
The following is the information on Yara and Snort rules (week 1, July 2024) collected and shared by the AhnLab TIP service. 10 YARA Rules Detection name Description Source PK_BRI_sadapan Detects a phishing kit impersonating Bank Rakyat Indonesia (bank) https://github.com/t4d/PhishingKit-Yara-Rules PK_GlobalSources_sogo Detects a phishing kit impersonating GlobalSources (B2B media company)
Threat Trend Report on Ransomware – Statistics and Major Issues in June 2024
Objectives and Scope This report provides statistics on the number of new ransomware samples, targeted systems, and targeted businesses in June 2024, as well as notable ransomware issues in Korea and other countries. Other major issues and statistics for ransomware that are not mentioned in the report can be
Security Issues in Korean & Global Financial Sector – Malware, Phishing, Deep Web & Dark Web in June 2024
This report covers security issues related to the domestic and international financial sector. It consists of content confirmed in phishing, malware, and deep web & dark web. – Statistics on Malware Distributed to Financial Sectors – Statistics on Korean Accounts Exfiltrated Via Telegram by Industry MD5 2586ef80415ac670c1b81367efae7b3d 28127336f11129fd4a3af24e421efdb4 2d67fe77b8b1e53d43ddad90aedd08f0
