On November 29, SkidSec hacker group announced its intentions on Telegram to attack exposed printers in South Korea to spread North Korean propaganda. North Korean propaganda refers to leaflets and other materials designed to promote North Korean ideas and criticize the South. According to the sudden announcement of the attack, it appears that the scheme [...]
Phishing and Malicious URL Search Terms in the 5th Week of November 2023 CIP Weekly Denylist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. LinkedIn Phishing Site hxxps://scarra[.]kavabehub[.]com/linkedin/newcodingLinkedin/index[.]html PayPal Phishing Site hxxps://exagera[.]ru[.]com/index[.]php Rakuten Phishing Site hxxps://www[.]longnancc[.]com/rms/client/LO0101001[.]php Instagram Phishing Site hxxp://nakrutka-instagram-2022[.]blogspot[.]com/?m=1 Netflix Phishing Site hxxps://lecharmedecor[.]com/wp-content/upgrade/restaringid7836847384083/n467f933x0893i22/page_settings/login[.]php?home-US-userID987647864812334345484351818468-Email-33626626641848798409874987049909840684980546840078965484/-second hxxps://zelenilodoo[.]me/[.]well-known/pki-validation/hada/hajdedost/UKRYukry/12sa33/login/login[.]php Coinbase [...]
Attack Surface Management (ASM) refers to the continuous monitoring, analysis, and remediation of a company or organization’s attack surface. This helps companies prevent the potential exposure of cyber assets that hackers can infiltrate. Previously, Vulnerability Detection Using Attack Surface Management: Criminal IP ASM Use Case (1) introduced users to what problems can be solved through Attack [...]
Phishing and Malicious URL Search Terms in the 4th Week of November 2023 CIP Weekly Denylist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Lloyds Bank Phishing Site hxxp://online[.]11oydsbank[.]xyz/desktop[.]html Correos Phishing Site hxxps://track-correos[.]tempurl[.]host/es/Recibir_paquete[.]php Coinbase Phishing Site hxxps://lean-pineapple-parrot[.]glitch[.]me/coijks[.]html Bancolombia Phishing Site hxxps://whitemastergluta[.]agimexpharm[.]com/SicursaBanolombia/mua/VALIDATECARD/scis/j6UnVHZsitlYrxStPNFUN4TsSjgEJkN7dlDp6FXSjFxO/3D/no-back-button Microsoft Phishing Site hxxp://davidrifkind[.]org/style/css/fo6ahv/3mail@b[.]c Facebook [...]
We are excited to share the Criminal IP subscription benefits for December. At Criminal IP, our team has been diligently working on developing our search engine and Open API while providing diverse formats for delivering threat intelligence data. To thank you for your continued loyalty, we have decided to provide free DB for global C2 servers, [...]
Phishing and Malicious URL Search Terms in the 3rd Week of November 2023 CIP Weekly Denylist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. VISA Phishing Site hxxps://evocademy[.]tempurl[.]host/wp-content/themes/te/te/8d131b57e5d52e92ef2521214238b2dd/smserror[.]php eBay Phishing Site hxxp://ssl[.]sign[.]in[.]e.bay[.]co[.]uk[.]ws[.]e.bay[.]isapi[.]dlligninusingssl1puseridco[.]partnerid[.]gsdretreat[.]com Facebook Phishing Site hxxp://36828036709376937356[.]duckdns[.]org/49a7b6e3gar/index[.]htm Google Phishing Site hxxp://www[.]masviajesmagicos[.]com/wp-content/uploads/2018/K3GkAKHZYwNTZR1jpWDO/pvIAd5NFU0RsGergYF2k Naver Phishing Site hxxp://hgdhd-dd-duiy-duid-diud-diu-suisahs[.]vercel[.]app SharePoint Phishing [...]
Cisco IOS XE zero-day vulnerability has recently become a hot topic in the cybersecurity industry. This particular vulnerability was identified within the Web UI functionality of the IOS XE software developed by Cisco. The zero-day vulnerabilities that are being actively exploited in the actual attacks are CVE-2023-20198 and CVE-2023-20273. Notably, CVE-2023-20198 has been assigned the highest [...]
An update to Criminal IP v1.44.1 has been released. [Criminal IP v1.44.1] Regular Maintenance and Update Release Note Maintenance Period: 2023.11.09 05:00 ~ 10:00 AM (UTC) [New Changes] Added GitHub PoC Link to the Vulnerability section under IP Report The GitHub PoC Link feature for IP Report under Asset Search has been added. You can [...]
Phishing and Malicious URL Search Terms in the 2nd Week of November 2023 CIP Weekly Denylist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Spotify Phishing Site hxxp://www[.]alwaferrac[.]com/wp-content/themes/ha/Spotify/Issued/settings Telegram Phishing Site hxxps://winbox88-slotking[.]claimbonusmalay[.]my[.]id Facebook Phishing Site hxxp://www[.]airalissflix[.]com/authorize[.]php?Ej3YaCEOQQCEPFHIWUbPcR3RkRYHvU7rnzHqL2cWHpffyoWTvNHl5hib5zp8bnR1PZTbJOkaqBaNFHEMViV0zxSQ4IQCxM2MM13z0417xT8oVUY9dN2yN5xAOezTHDYba834DgPqSM9QsnFJtEPnb4rEcsdAvA2w3VA9XBAn79VTczlYcZQlS2M5HkmXJUyHj6sBZYfb4fFyr0CZdEN7PbwXPqufVFTBoZWcbmdM0yttsiAwiLvebhoMTfiBSWkl= Orange Login Phishing Site hxxp://mail-orange2[.]godaddysites[.]com Microsoft OneDrive Phishing Site hxxps://cloudflare-ipfs[.]com/ipfs/bafybeihyfl3kvqdbjtwhefthtin3rkau222jjeyoramwfsujuqjzz44qz4/one[.]html [...]
As crypto mining has gained more popularity, cyberattackers are developing a method to attack their victims called cryptojacking. This method gained popularity in 2017, when several prominent corporations, such as Starbucks and Tesla, were reported as victims. Despite declining relevance at the end of 2019 due to the fluctuation of cryptocurrencies, it has been reported that the cryptojacking [...]
