安全热点周报:黑客利用 ProjectSend 漏洞攻击暴露后门的服务器
Common Information
| Type | Value |
|---|---|
| UUID | be4f6a2d-6227-4bfb-9b9d-fad3f250d923 |
| Fingerprint | 1fb0c53663363e7 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 22, 2024, midnight |
| Added to db | Dec. 2, 2024, 12:46 p.m. |
| Last updated | Dec. 18, 2024, 2:16 p.m. |
| Headline | 安全热点周报:黑客利用 ProjectSend 漏洞攻击暴露后门的服务器 |
| Title | 安全热点周报:黑客利用 ProjectSend 漏洞攻击暴露后门的服务器 |
| Detected Hints/Tags/Attributes | 17/2/38 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 266 | ✔ | 奇安信 CERT | https://wechat2rss.xlab.app/feed/981c000a01bbdc1f128d260cc91c15d3a6afb530.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 13 | cve-2024-11477 |
|
| Details | CVE | 34 | cve-2024-11680 |
|
| Details | CVE | 8 | cve-2024-8114 |
|
| Details | CVE | 21 | cve-2024-11667 |
|
| Details | CVE | 4 | cve-2024-42330 |
|
| Details | CVE | 20 | cve-2023-28461 |
|
| Details | CVE | 63 | cve-2024-0012 |
|
| Details | CVE | 55 | cve-2024-9474 |
|
| Details | CVE | 88 | cve-2024-9680 |
|
| Details | Domain | 227 | mp.weixin.qq.com |
|
| Details | Domain | 1 | mp.oeeee.com |
|
| Details | Domain | 47 | www.bankinfosecurity.com |
|
| Details | Domain | 15 | www.gov.cn |
|
| Details | Domain | 2 | www.pbc.gov.cn |
|
| Details | Domain | 1 | zfxxgk.nea.gov.cn |
|
| Details | File | 2 | 远程未经身份验证的攻击者可以通过向options.php |
|
| Details | File | 38 | securityonline.inf |
|
| Details | File | 20 | options.php |
|
| Details | File | 1 | baafrd0000202411271028980.html |
|
| Details | File | 264 | www.cs |
|
| Details | File | 1 | palo-alto-networks-zero-day-firewall-flaws-caused-by-basic-dev-mistakes.html |
|
| Details | File | 1 | content_6989831.htm |
|
| Details | File | 856 | index.html |
|
| Details | File | 1 | c_1310787372.htm |
|
| Details | Url | 1 | https://securityonline.info/cve-2024-42330-cvss-9-1-zabbix-patches-critical-remote-code-execution-vulnerability |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-exploit-projectsend-flaw-to-backdoor-exposed-servers |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-bug-in-array-networks-ssl-vpn-products |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/gsubfwkfwamglbb-bu8cvg |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/gyrdsuxvobc6wjy07rkzqq |
|
| Details | Url | 1 | http://m.mp.oeeee.com/oe/baafrd0000202411271028980.html |
|
| Details | Url | 1 | https://www.bankinfosecurity.com/new-york-fines-geico-travelers-113m-for-data-breaches-a-26899 |
|
| Details | Url | 2 | https://www.volexity.com/blog/2024/11/22/the-nearest-neighbor-attack-how-a-russian-apt-weaponized-nearby-wi-fi-networks-for-covert-access |
|
| Details | Url | 1 | https://www.csoonline.com/article/3609132/palo-alto-networks-zero-day-firewall-flaws-caused-by-basic-dev-mistakes.html |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/4suhtpczepenrpwl3i3paw |
|
| Details | Url | 1 | https://www.gov.cn/zhengce/202411/content_6989831.htm |
|
| Details | Url | 1 | http://www.pbc.gov.cn/goutongjiaoliu/113456/113469/5519902/index.html |
|
| Details | Url | 1 | http://zfxxgk.nea.gov.cn/2024-11/20/c_1310787372.htm |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/dpjjrzcyt7acpf7yjkb_dg |