ioc[.]one - OSINT Cyber Threat Intelligence Database

Norwegian Cyberattack, Virustotal Data Leak and AI powered BEC

Tags

country:	Germany Norway
attack-pattern:	Data Model Models Cloud Services - T1021.007 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	2d57f008-f2e0-401f-a09d-b8b6d6f6fd0e
Fingerprint	9c149cd79db7f68e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 9, 2023, midnight
Added to db	Aug. 13, 2023, 4:01 p.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	Norwegian Cyber Attack, Virustotal Data Leak and AI powered BEC
Title	Norwegian Cyberattack, Virustotal Data Leak and AI powered BEC
Detected Hints/Tags/Attributes	66/2/17

Source URLs

	Redirection	Url
Details	Source	https://blog.eclecticiq.com/norwegian-cyber-attack-virustotal-data-leak-and-ai-powered-bec

URL Provider

Details	Provider	Source level domain
Details	eclecticiq.com	blog.eclecticiq.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	32	✔	EclecticIQ Blog	https://blog.eclecticiq.com/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	35		cve-2023-3466
Details	CVE	43		cve-2023-3467
Details	CVE	152		cve-2023-3519
Details	CVE	22		cve-2023-38205
Details	CVE	14		cve-2023-38204
Details	CVE	10		cve-2023-38206
Details	Domain	49		eclecticiq.com
Details	Domain	1		www.dss.dep.no
Details	Domain	260		helpx.adobe.com
Details	Email	47		research@eclecticiq.com
Details	File	3		apsb23-47.html
Details	Threat Actor Identifier - FIN	68		FIN8
Details	Url	1		https://www.dss.dep.no/aktuelle-saker/departementer-utsatt-for-dataangrep
Details	Url	8		https://support.citrix.com/article/ctx561482/citrix-adc-and-citrix-gateway-security-bulletin-for-cve20233519-cve20233466-cve20233467
Details	Url	1		https://www.derstandard.de/story/3000000178997/datenleck-bei-kritischer-google-plattform-die-bei-hackern-beliebt-ist
Details	Url	1		https://helpx.adobe.com/content/help/en/security/products/coldfusion/apsb23-47.html
Details	Url	1		https://slashnext.com/blog/wormgpt-the-generative-ai-tool-cybercriminals-are-using-to-launch-business-email-compromise-attacks