ioc[.]one - OSINT Cyber Threat Intelligence Database

安全热点周报：Google Chrome 和 Apache OFBiz 漏洞被黑客利用，紧急修复措施发布

Tags

country:	Malaysia
attack-pattern:	Javascript - T1059.007 Rootkit - T1014 Rootkit

Show in Graph

Common Information

Type	Value
UUID	568a32ed-f346-42b3-91ae-5d1e12c76a60
Fingerprint	48121093739675f0
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 26, 2024, midnight
Added to db	Sept. 2, 2024, 1:15 p.m.
Last updated	Nov. 17, 2024, 5:57 p.m.
Headline	安全热点周报：Google Chrome 和 Apache OFBiz 漏洞被黑客利用，紧急修复措施发布
Title	安全热点周报：Google Chrome 和 Apache OFBiz 漏洞被黑客利用，紧急修复措施发布
Detected Hints/Tags/Attributes	26/2/30

Source URLs

	Redirection	Url
Details	Source	https://mp.weixin.qq.com/s?__biz=MzU5NDgxODU1MQ==&mid=2247501978&idx=1&sn=61c623acad92737f00bcef0c5d233829&chksm=fe79ec02c90e6514f2a3f9dfa4c965e4bd2f7564b0fbb65741aed98ae042d7200a125f983d3c&scene=58&subscene=0#rd

URL Provider

Details	Provider	Source level domain
Details	qq.com	mp.weixin.qq.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	266	✔	奇安信 CERT	https://wechat2rss.xlab.app/feed/981c000a01bbdc1f128d260cc91c15d3a6afb530.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	39	cve-2024-38063
Details	CVE	35	cve-2024-7965
Details	CVE	40	cve-2024-38856
Details	CVE	57	cve-2024-7971
Details	CVE	39	cve-2024-38106
Details	Domain	280	thehackernews.com
Details	Domain	12	voyagorclub.space
Details	Domain	99	therecord.media
Details	Domain	208	mp.weixin.qq.com
Details	Domain	20	www.secrss.com
Details	Domain	14	www.tc260.org.cn
Details	Domain	1	sd11.senate.ca.gov
Details	File	1	google-warns-of-cve-2024-7965-chrome.html
Details	File	35	securityonline.inf
Details	File	1	1dff8699-4351-44e3-b6e5-04901439b11c.docx
Details	File	3	viewer.html
Details	File	1	e016570c006f47c69fadc242743e27cc.pdf
Details	md5	1	e016570c006f47c69fadc242743e27cc
Details	Mandiant Uncategorized Groups	59	UNC4736
Details	Url	1	https://thehackernews.com/2024/08/google-warns-of-cve-2024-7965-chrome.html
Details	Url	1	https://securityonline.info/cisa-warns-of-actively-exploited-apache-ofbiz-cve-2024-38856-vulnerability-poc-available
Details	Url	2	https://www.bleepingcomputer.com/news/security/north-korean-hackers-exploit-chrome-zero-day-to-deploy-rootkit
Details	Url	1	https://www.bleepingcomputer.com/news/security/seattle-tacoma-airport-it-systems-down-due-to-a-cyberattack
Details	Url	1	https://www.freemalaysiatoday.com/category/nation/2024/08/26/prasarana-confirms-cybersecurity-incident
Details	Url	1	https://therecord.media/halliburton-systems-offline-cyberattack-sec
Details	Url	1	https://mp.weixin.qq.com/s/bouiuxzsccdyuxdswplf9a
Details	Url	1	https://www.secrss.com/articles/69682
Details	Url	1	https://www.tc260.org.cn/file/2024-08-28/1dff8699-4351-44e3-b6e5-04901439b11c.docx
Details	Url	1	https://sd11.senate.ca.gov/news/senator-wieners-landmark-ai-bill-heads-governor
Details	Url	1	https://www.miit.gov.cn/cms_files/demo/pdfjs/web/viewer.html?file=/cms_files/filemanager/1226211233/attach/20248/e016570c006f47c69fadc242743e27cc.pdf