Home | CIP Blog

HomeCriminal IP2025-10-14T12:08:14+09:00

Main Featured

Urgent: 3,894 SonicWall SSL VPNs Vulnerable to OVERSTEP and MFA Bypass

Multiple hacking groups have been repeatedly using SonicWall SSL VPN devices as an intrusion vector, and the security community continues to report cases where accounts protected by OTP-based multi-factor authentication (MFA) were nonetheless logged into successfully — raising growing concern about potential authentication bypasses.

All the latest news

Analyzing a FIFA-Themed Phishing Campaign: Tracking Suspicious 2026 World Cup-Related Domains and Infrastructure

Criminal IP2026-04-10T10:59:09+09:00April 13th, 2026|

CVE-2026-3502: Supply Chain Attack via TrueConf Update Mechanism

Criminal IP2026-04-08T12:49:53+09:00April 8th, 2026|

CVE-2026-32746: Analysis of Pre-Authentication RCE Vulnerability in GNU InetUtils telnetd

Criminal IP2026-04-06T09:49:18+09:00April 3rd, 2026|

Unstructured Data-Based Asset Exposure Analysis: Structuring Identifiers with Privacy Exposure Scanner

Criminal IP2026-04-01T12:44:40+09:00April 1st, 2026|

Wing FTP Server Vulnerability Analysis: Exposed Service Leading to an RCE Attack Chain

Criminal IP2026-03-24T11:27:26+09:00March 25th, 2026|

Event-Driven Threat Validation and Automated Blocking: An IP Risk Verification Pipeline Using Criminal IP Data

Criminal IP2026-03-17T17:17:03+09:00March 19th, 2026|

Analysis of Iran-Linked APT MuddyWater Activity: Tracking Recent Campaigns and Attack Patterns

Criminal IP2026-03-17T09:52:04+09:00March 17th, 2026|

Exposed Google Cloud API Keys and the Expanding Attack Surface in AI API Environments

Criminal IP2026-03-12T12:12:28+09:00March 12th, 2026|

OpenClaw Part II: 1-Click RCE and the Emerging Security Risks of AI Agents

Criminal IP2026-03-09T15:23:43+09:00March 9th, 2026|

Cybersecuri-Tea Time: Brewing February 2026’s Issues

Criminal IP2026-03-06T16:54:12+09:00March 6th, 2026|

The Digital Web of “Tropa do Arranca”: Unveiling a Brazilian Phishing Kit

Criminal IP2026-02-26T10:27:56+09:00February 26th, 2026|

2026 Milano–Cortina Winter Olympics-Themed Phishing Campaign Analysis Report

Criminal IP2026-03-06T18:00:17+09:00February 23rd, 2026|