Over 100,000 Juniper Firewalls Exposed: Beware of the RCE Vulnerability Bug Chain

Products from Juniper Networks, including Juniper firewalls, are already significantly exposed on the attack surface. Searching for the title of the web server utilized for Juniper Networks J-Web on Criminal IP's Asset Search can lead to the discovery of online-exposed servers. These servers are at a heightened risk of becoming prime targets for hackers.

By |2023-09-04T16:34:09+09:00September 1st, 2023|Tags: , |0 Comments

[Criminal IP v1.38.1] 2023-08-31 Release Note

An update to Criminal IP v1.38.1 has been released. [Criminal IP v1.38.1] Regular Maintenance and Update Release Note Maintenance Period: 2023.08.31 07:00~09:00 AM (UTC) [New Changes] Criminal IP has achieved PCI-DSS Level 1 Certification PCI-DSS is a global information security standard designed to protect card payment information and transaction data. Criminal IP has met the requirements [...]

By |2023-08-31T16:57:46+09:00August 31st, 2023|Tags: |0 Comments

CIP Weekly Denylist : Phishing and Malicious Domain Search Terms in the 5th Week of August

Phishing and Malicious URL Search Terms in the 5th Week of August CIP Weekly Denylist– Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Facebook Phishing Site hxxps://motogielda-rympek[.]pl/authorize[.]php?XJVEYQySF8WP87uSpamO42INRRcNRuclYH0UMAiE0duP1AdLrBMbxlCQf28DgQOA9KHchCKCYB4rViRQEfW7EsBWgnZ1J8kQVgBndKXxHU46tnanGaieBOvEdMAKMpNpIIu039AEla5ABXTC4fSXINWHSU8DfwvRALT8diWrfPDWfQohhgylDCvNPiA0hDciA8hsBPRN86YFwhMDb8pPi0XIAHePART8KVqZA6MbYKEf7eQyjRaOq7rB75Ejj8rW= hxxps://motogielda-rympek[.]pl/authorize[.]php?Wx7oznZHGFEm5vFtNl4AWvO8zqf0eHciXSVgtFjNT1sBA0eORKwnFRo7jZr5jjbYaNijCEqBZ7Ss77UF2b7LPy5lWdCeUbp2gu3WKI7J1oAs3TzRlmzF3MbylVKv54a4JiClPdGDMC0f0hj9cZfOVpq9k7D765XrNOnEZjhYuKFkzJMo7Kb4to6tt9tbFOD18vjfXl6hblI784UgJYvDvjuGsewu8IArqELQjpt0AdnsBrvumRj7c6VVkxqPmo5G= Amazon Phishing Site hxxps://claim-reward[.]e0pxjz8hh09v[.]top/sweeps/amazon/zero/custom-box/index[.]html WordPress Phishing Site hxxp://planos[.]prevernacional[.]com[.]br/wp-admin/owa/Outlook[.]htm IONOS Webmail Phishing Site hxxps://ipfs[.]eth[.]aragon[.]network/ipfs/bafybeibk4j5dafn6ut5e3qx24247rby5gjxh6nj2lpz3l2d6xi5kt6khsa Rakuten Phishing Site hxxps://dwqgrefsa[.]zzux[.]com/mobile/index[.]php Leboncoin Phishing [...]

By |2023-08-31T15:05:14+09:00August 31st, 2023|Tags: , |0 Comments

CVE-2023-38035 Zero-Day: Ivanti Sentry Authentication Exploit

Ivanti Sentry (previously known as MobileIron Sentry) is an in-line gateway that manages, encrypts, and secures traffic between mobile devices and back-end enterprise systems. It is primarily utilized in Microsoft Exchange, ActiveSync and SharePoint servers. Ivanti disclosed a CVE-2023-38035 zero-day vulnerability that may enable an attacker with no rights to bypass authentication controls on the administrative interface [...]

By |2023-08-30T16:11:12+09:00August 30th, 2023|Tags: , |0 Comments

[Criminal IP v1.37.1] 2023-08-24 Release Note

An update to Criminal IP v1.37.1 has been released. [Criminal IP v1.37.1] Regular Maintenance and Update Release Note Maintenance Period : 2023.08.24 06:00~08:00 AM (UTC) [Improvements] Explanations about the three types of Domain Search scans added to the Pricing Page Domain Search Scan type explanation content added to the Criminal IP Pricing Page OpenAPI Title Change Changes were made to [...]

By |2023-08-24T17:41:06+09:00August 24th, 2023|0 Comments

CIP Weekly Blacklist : Phishing and Malicious Domain Search Terms in the 4th Week of August

Phishing and Malicious URL Search Terms in the 4th Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Bank of America Phishing Site hxxps://613montreal[.]com/templates/protostar/language/css/f11ec9c79f796e126d395546dd87b97d6d2d24d3f3860a2d0a6b689f37e2a1c2789728d7d4b29c07ea8eaee099e2f3a3/ Facebook Phishing Site hxxp://auto-gielda48[.]net[.]pl/authorize.php?z4xo3LsTX5c2yYADzOLAEwrPeEHOJvnurO1gOgd8IDxvuDVG1GM82iAgnSGry3n= hxxps://www[.]mazowsze-ogloszenia[.]pl/authorize[.]php?ogB76tJS7ZO61WlgaMFAzvGUWqrptQq8H910a2qphnIsvTIIhVVasgnfSa37D1s6zhQmGTGmcPp28efbDZZU6XEFMnlhRWcZzm5hzDCQsBIAgUWXeHhNsQQOIbAyE9szoOBX166BId9jsgRqg4AIW6aFnv16Ko8FT9WiBoH1GEOkM3LCTEvRNTJcnh8dfTBYCKnVWtIy8YF8dqjjD33hycl5ChGghSor0MNeT7iVKChFpN0WTM3TQSNlh9E9rUxB= hxxps://bl0kir-fbgirpn[.]terbaru-2023[.]com/vhsfhqpdhdsih6/ Metamask Phishing Site hxxp://metmaxsklgin5[.]godaddysites[.]com Shopify Phishing Site hxxps://shoutout[.]wix[.]com/so/61Ockl6oK/c?w=vMzWr6xv9YCWPw5orlJM8KQ4e-UAa5R15CcoIWyl6aY.eyJ1IjoiaHR0cHM6Ly9vcHB0dGltYS5jb20vbC8iLCJyIjoiYjZhMDU1NzMtNDg1ZS00ZjhlLWE4NTYtZDlmMmU1Yzg1MWQzIiwibSI6Im1haWwiLCJjIjoiOWNmNGNiZTYtNDBlYS00ZWVmLTg5MzMtZDJlMzA3ZGYyZmVjIn0 Trust Wallet Phishing [...]

By |2023-08-22T19:46:32+09:00August 22nd, 2023|Tags: , |0 Comments

CIP Weekly Blacklist : Phishing and Malicious Domain Search Terms in the 3rd Week of August

Phishing and Malicious URL Search Terms in the 3rd Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Crédit Agricole (French bank) Phishing Site hxxps://banque-france[.]helpfrench[.]com/steps/banques/CreditAgricole/ hxxp://cz55451[.]tw1[.]ru/4490c997f25d2a9/region.php?particulier Scotiabank (Canadian bank) Phishing Site hxxp://www[.]sbi[.]mx/page/41/786/kuatkan[.]php Coinbase Phishing Site hxxps://grey-enormous-chard[.]glitch[.]me/oak[.]html Facebook Phishing Site hxxps://akurewards[.]com/5284088706905/a1b2c3/ec74eb5aa714fe0c3ff20d9c8dd34410/ hxxp://www[.]filesusr[.]com/html/b772d6_895b18d5e6c9d5a5d6e5784a3498a39d[.]html?6794991*{{emailb64}}*https:/= [...]

By |2023-08-16T17:49:26+09:00August 16th, 2023|Tags: , |0 Comments

Critical Patch Delay CVE-2023-27997: Over 4.6K Vulnerable FortiGate Firewalls

The delay in applying patches for the FortiGate firewall's remote code execution (RCE) vulnerability, CVE-2023-27997, which was announced on June 12, 2023, has reached a critical stage. CVE-2023-27997 is a heap-based buffer overflow vulnerability affecting SSL-VPN enabled devices. This RCE vulnerability enables the remote execution of code through an SSL-VPN interface exposed on the web. With [...]

By |2023-08-11T18:29:06+09:00August 10th, 2023|Tags: , |2 Comments

CIP Weekly Blacklist : Phishing and Malicious Domain Search Terms in the 2nd Week of August

Phishing and Malicious URL Search Terms in the 2nd Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Crédit Agricole (French bank) Phishing Site hxxp://cz15911[.]tw1[.]ru/5171ff2c7c235fa/region[.]php?particulier Société Générale (French bank) Phishing Site hxxp://www[.]aipstore[.]pt/wp-content/upgrade/sg/ Garanti BBVA (Turkish bank) Phishing Site hxxps://persekenemede[.]net/isube/login[.]php SwissPass (Swiss [...]

By |2023-08-09T17:15:53+09:00August 9th, 2023|Tags: , |0 Comments

[Criminal IP v1.36.1] 2023-08-03 Release Note

[Criminal IP v1.36.1] Regular Maintenance and Update Release Note Maintenance Period: 2023.08.03 06:00~08:00 AM (UTC) [New Changes] GitHub Reference Page Open - A page showcasing code references utilizing the Criminal IP API, shared on GitHub, has been opened.  Criminal IP Official GitHub: You can find various Open API utilization scripts on the Criminal IP's official GitHub repository list. [...]

By |2023-08-04T10:45:29+09:00August 4th, 2023|0 Comments
Go to Top