ioc[.]one - OSINT Cyber Threat Intelligence Database

German CERT Warns Zyxel Firewalls Exploited For Helldown Ransomware Deployment

Tags

country:	Germany
attack-pattern:	Credentials - T1589.001 Firmware - T1592.003 Ip Addresses - T1590.005 Network Devices - T1584.008 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	a8ef7846-bbe5-410c-9a73-20f8b95051d1
Fingerprint	af205c529d06c7ef
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 28, 2024, 8:54 a.m.
Added to db	Nov. 28, 2024, 3:20 p.m.
Last updated	Dec. 18, 2024, 3:28 a.m.
Headline	German CERT Warns Zyxel Firewalls Exploited for Helldown Ransomware Deployment
Title	German CERT Warns Zyxel Firewalls Exploited For Helldown Ransomware Deployment
Detected Hints/Tags/Attributes	31/2/3

Source URLs

	Redirection	Url
Details	Source	https://cyble.com/blog/german-cert-warns-zyxel-firewalls-exploited/

URL Provider

Details	Provider	Source level domain
Details	cyble.com	cyble.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	98	✔	Cyble	https://cyble.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	21		cve-2024-11667
Details	Domain	3		community.zyxel.com
Details	Url	2		https://community.zyxel.com/en/discussion/26764/ransomware-helldown