Home | CIP Blog

HomeCriminal IP2022-09-29T14:40:40+09:00

Main Featured

LockBit 3.0 Ransomware Case Study: A Huge Cybersecurity Risk

On September 14, 2022, we received an e-mail titled “Regarding Job”, and the contents of the email indicated that this was intended as a job application. The example below shows this resume forgery, which is in reality a malicious email and ransomware attack designed to spread LockBit 3.0. The CIP team analyzed the details of this fradulent email and the ransomware attached.

All the latest news

Detect OpenVPN Vulnerability That Makes Paid VPNs Free

Criminal IP2022-09-30T17:33:42+09:00September 30th, 2022|

CIP Weekly Blacklist : Phishing and Malicious URLs in 4th Week of September

Criminal IP2022-09-28T11:59:58+09:00September 28th, 2022|

[Criminal IP v1.2.11] 2022-09-27 Release Note

Criminal IP2022-09-27T18:25:29+09:00September 27th, 2022|

LockBit 3.0 Ransomware Case Study: A Huge Cybersecurity Risk

Criminal IP2022-09-26T10:25:28+09:00September 23rd, 2022|

Google Hacking vs Criminal IP: Comparative Analysis of 2 filters

Criminal IP2022-09-23T12:17:34+09:00September 22nd, 2022|

CIP Weekly Blacklist : Phishing and Malicious URLs in 3rd Week of September

Criminal IP2022-09-21T09:59:30+09:00September 21st, 2022|

[Criminal IP v1.2.8] 2022-09-20 Release Note

Criminal IP2022-09-27T18:26:18+09:00September 20th, 2022|

CIP Weekly Blacklist : Phishing and Malicious URLs in 2nd Week of September

Criminal IP2022-09-14T11:35:02+09:00September 14th, 2022|

WordPress Vulnerability: Discover the Outdated and Patchless

Criminal IP2022-09-26T14:47:46+09:00September 13th, 2022|

CIP Weekly Blacklist: Phishing and Malicious URLs in 1st Week of September

Criminal IP2022-09-07T15:11:15+09:00September 7th, 2022|

Exposed Redis Commander: The Biggest Contributor to Database Leakage

Criminal IP2022-09-13T11:07:47+09:00September 6th, 2022|

CIP Weekly Blacklist: Phishing and Malicious URL in 5th Week of August

Criminal IP2022-09-07T15:11:11+09:00August 31st, 2022|

Cloud Attack Surfaces: Detecting Active AWS Assets Left Unattended

Criminal IP2022-09-27T10:59:54+09:00August 30th, 2022|

[Criminal IP v1.2.5] 2022-08-25 Release Notes

Criminal IP2022-08-25T18:16:07+09:00August 25th, 2022|

Criminal IP ASM Integration Services now available on Logpresso

Criminal IP2022-08-25T19:17:02+09:00August 25th, 2022|

Default welcome page exposure: A Significant Security Risk

Criminal IP2022-08-25T17:49:09+09:00August 24th, 2022|

Instagram Phishing Scam: a How to Guide on Identifying Malicious Links

Criminal IP2022-09-16T11:40:26+09:00August 18th, 2022|

Attack Surface Management: Monitoring Unknown Assets and Vulnerabilities

Criminal IP2022-08-16T17:13:28+09:00August 16th, 2022|

[Criminal IP Release Note] v1.2.3 2022-08-11

Criminal IP2022-08-12T11:27:09+09:00August 11th, 2022|

Searching for Security Vulnerabilities Revealed in HTTP Status Code

Criminal IP2022-09-16T11:34:02+09:00August 9th, 2022|

K-Pop Deepfake Porn Sites: Sneaky Criminals Hiding Real IP Address with Cloudflare

Criminal IP2022-08-12T14:48:21+09:00August 4th, 2022|

Open Port Vulnerability Detection: the More Open Ports You Have, the More Cyber Threats Exist

Criminal IP2022-09-27T18:01:57+09:00August 4th, 2022|

DDoS Attack Case Study: 20 Hours of Unprovoked Aggression

Criminal IP2022-08-02T18:15:08+09:00July 27th, 2022|

Exposed SCADA Server, a Shortcut to Unleashing Chaos on Entire Infrastructure

Criminal IP2022-08-04T18:14:10+09:00July 25th, 2022|

[Criminal IP Release Note] v1.2.1 2022-07-20

Criminal IP2022-07-21T18:48:14+09:00July 21st, 2022|

VPN Detection: Finding Unwelcomed Guests to Your Network

Criminal IP2022-09-27T18:31:51+09:00July 20th, 2022|

API Key, a Key to Credential Leakage & Manipulation

Criminal IP2022-08-04T18:14:01+09:00July 20th, 2022|

One Vulnerable Jenkins Server, That’s All They Need

Criminal IP2022-08-04T18:13:51+09:00July 12th, 2022|

Did You Forget to Renew Your SSL Certificate?

Criminal IP2022-08-04T18:13:47+09:00July 6th, 2022|

Collaboration Tool Vulnerability: Your Data, Their Data

Criminal IP2022-08-04T18:13:42+09:00July 1st, 2022|

Favicon-Hash, a Tool to Find Spoofed Domains

Criminal IP2022-08-04T18:13:37+09:00June 27th, 2022|

Cryptojacking : Your Device is Mining Crypto Behind Your Back

Criminal IP2022-08-04T18:13:32+09:00June 24th, 2022|

Neglected Default Password, a Security Flaw

Criminal IP2022-08-12T14:46:21+09:00June 23rd, 2022|

Search for Corporate IP Addresses Using AS_Name Filter on Asset Search

Criminal IP2022-08-04T18:13:20+09:00June 17th, 2022|

Criminal IP Analysis Report on Overlooked Multi-Function Printer Vulnerability

Criminal IP2022-09-16T11:37:32+09:00June 14th, 2022|

Search for Applications Exposed to Attack Surface Using Product Filter on Asset Search

Criminal IP2022-08-04T18:12:56+09:00June 10th, 2022|

Criminal IP Analysis Report on Zero-Day Vulnerability in Atlassian Confluence

Criminal IP2022-08-04T18:13:06+09:00June 5th, 2022|

Search for Website Defacement Using Title Filter in Asset Search(title:”hacked by”)

Criminal IP2022-08-04T18:14:19+09:00May 31st, 2022|

 [Criminal IP Release Note] v1.1.2 2022-05-26

Criminal IP2022-08-25T16:22:43+09:00May 26th, 2022|

Search for Remote Management Systems Exposed to Attack Surface Using SSL Certificate Search Feature (ssl_issuer_organization)

Criminal IP2022-08-04T18:14:33+09:00May 25th, 2022|

Criminal IP Analysis Report on Recent Hidden Malicious Code Sites on a Chinese HFS HTTP File Servers

Criminal IP2022-08-04T16:33:49+09:00May 18th, 2022|

[Criminal IP Release Note] 2022-05-12

Criminal IP2022-08-04T16:33:07+09:00May 12th, 2022|

[Notice] Upcoming Patches for Fixing Bugs and Releasing Domain Search Feature.

Criminal IP2022-08-04T16:31:46+09:00May 11th, 2022|

[Announcement] Criminal IP Global Beta Goes Live!

Criminal IP2022-08-04T16:30:39+09:00April 27th, 2022|

Only 1 More Day Left for Criminal IP Open Beta Pre-Registration!

Criminal IP2022-08-04T16:29:58+09:00April 27th, 2022|

Introduction to Criminal IP

Criminal IP2022-08-04T16:29:26+09:00April 19th, 2022|

AI Spera’s Cyber Threat Intelligence Criminal IP is Recruiting Global Beta Testers!

Criminal IP2022-06-05T12:11:06+09:00April 6th, 2022|

Criminal IP Analysis Report on Certification Expiration Status of Russian Sites

Criminal IP2022-08-04T16:28:31+09:00March 23rd, 2022|

Find Your Company IP

Criminal IP2022-08-04T16:27:46+09:00March 10th, 2022|

Detection of Vulnerability Through Asset Search

Criminal IP2022-06-20T14:23:23+09:00March 8th, 2022|

Search for IP Addresses Within the Range of 211.50.51.1 ~ 255

Criminal IP2022-08-04T16:26:40+09:00March 7th, 2022|

Search for IP Addresses That Succeeded in FTP Authentication

Criminal IP2022-08-04T16:25:36+09:00March 7th, 2022|

Search for RDP Services That Use an Account Named ‘Jacki’

Criminal IP2022-08-04T16:24:27+09:00March 7th, 2022|

Search for the Openssh Service Used in The Pfizer Inc. Organization

Criminal IP2022-08-04T16:23:44+09:00March 7th, 2022|

Search for Privilege Escalation Vulnerabilities(CVE-2019-5736) Related to Docker RunC Bugs

Criminal IP2022-08-04T16:23:08+09:00March 7th, 2022|

Domain Search: Checking Suspicious Domains Using CIP Domain Search

Criminal IP2022-08-04T16:22:18+09:00March 4th, 2022|

Searching for VPN IP Exposure Through Criminal IP and Recommendations for Protective Measures

Criminal IP2022-08-04T16:21:42+09:00February 25th, 2022|

Criminal IP Analysis Report on Log4j Attack Patterns

Criminal IP2022-06-20T14:24:22+09:00February 11th, 2022|

Criminal IP Analysis Report on vSphere Critical Remote Code Execution Vulnerability

Criminal IP2022-06-05T12:21:38+09:00January 28th, 2022|

Criminal IP Compilation: The Analysis Report of Over 8,900 Log4j Attack IP Addresses

Criminal IP2022-08-04T16:20:00+09:00January 14th, 2022|