Products from Juniper Networks, including Juniper firewalls, are already significantly exposed on the attack surface. Searching for the title of the web server utilized for Juniper Networks J-Web on Criminal IP's Asset Search can lead to the discovery of online-exposed servers. These servers are at a heightened risk of becoming prime targets for hackers.
An update to Criminal IP v1.38.1 has been released. [Criminal IP v1.38.1] Regular Maintenance and Update Release Note Maintenance Period: 2023.08.31 07:00~09:00 AM (UTC) [New Changes] Criminal IP has achieved PCI-DSS Level 1 Certification PCI-DSS is a global information security standard designed to protect card payment information and transaction data. Criminal IP has met the requirements [...]
Phishing and Malicious URL Search Terms in the 5th Week of August CIP Weekly Denylist– Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Facebook Phishing Site hxxps://motogielda-rympek[.]pl/authorize[.]php?XJVEYQySF8WP87uSpamO42INRRcNRuclYH0UMAiE0duP1AdLrBMbxlCQf28DgQOA9KHchCKCYB4rViRQEfW7EsBWgnZ1J8kQVgBndKXxHU46tnanGaieBOvEdMAKMpNpIIu039AEla5ABXTC4fSXINWHSU8DfwvRALT8diWrfPDWfQohhgylDCvNPiA0hDciA8hsBPRN86YFwhMDb8pPi0XIAHePART8KVqZA6MbYKEf7eQyjRaOq7rB75Ejj8rW= hxxps://motogielda-rympek[.]pl/authorize[.]php?Wx7oznZHGFEm5vFtNl4AWvO8zqf0eHciXSVgtFjNT1sBA0eORKwnFRo7jZr5jjbYaNijCEqBZ7Ss77UF2b7LPy5lWdCeUbp2gu3WKI7J1oAs3TzRlmzF3MbylVKv54a4JiClPdGDMC0f0hj9cZfOVpq9k7D765XrNOnEZjhYuKFkzJMo7Kb4to6tt9tbFOD18vjfXl6hblI784UgJYvDvjuGsewu8IArqELQjpt0AdnsBrvumRj7c6VVkxqPmo5G= Amazon Phishing Site hxxps://claim-reward[.]e0pxjz8hh09v[.]top/sweeps/amazon/zero/custom-box/index[.]html WordPress Phishing Site hxxp://planos[.]prevernacional[.]com[.]br/wp-admin/owa/Outlook[.]htm IONOS Webmail Phishing Site hxxps://ipfs[.]eth[.]aragon[.]network/ipfs/bafybeibk4j5dafn6ut5e3qx24247rby5gjxh6nj2lpz3l2d6xi5kt6khsa Rakuten Phishing Site hxxps://dwqgrefsa[.]zzux[.]com/mobile/index[.]php Leboncoin Phishing [...]
Ivanti Sentry (previously known as MobileIron Sentry) is an in-line gateway that manages, encrypts, and secures traffic between mobile devices and back-end enterprise systems. It is primarily utilized in Microsoft Exchange, ActiveSync and SharePoint servers. Ivanti disclosed a CVE-2023-38035 zero-day vulnerability that may enable an attacker with no rights to bypass authentication controls on the administrative interface [...]
An update to Criminal IP v1.37.1 has been released. [Criminal IP v1.37.1] Regular Maintenance and Update Release Note Maintenance Period : 2023.08.24 06:00~08:00 AM (UTC) [Improvements] Explanations about the three types of Domain Search scans added to the Pricing Page Domain Search Scan type explanation content added to the Criminal IP Pricing Page OpenAPI Title Change Changes were made to [...]
Phishing and Malicious URL Search Terms in the 4th Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Bank of America Phishing Site hxxps://613montreal[.]com/templates/protostar/language/css/f11ec9c79f796e126d395546dd87b97d6d2d24d3f3860a2d0a6b689f37e2a1c2789728d7d4b29c07ea8eaee099e2f3a3/ Facebook Phishing Site hxxp://auto-gielda48[.]net[.]pl/authorize.php?z4xo3LsTX5c2yYADzOLAEwrPeEHOJvnurO1gOgd8IDxvuDVG1GM82iAgnSGry3n= hxxps://www[.]mazowsze-ogloszenia[.]pl/authorize[.]php?ogB76tJS7ZO61WlgaMFAzvGUWqrptQq8H910a2qphnIsvTIIhVVasgnfSa37D1s6zhQmGTGmcPp28efbDZZU6XEFMnlhRWcZzm5hzDCQsBIAgUWXeHhNsQQOIbAyE9szoOBX166BId9jsgRqg4AIW6aFnv16Ko8FT9WiBoH1GEOkM3LCTEvRNTJcnh8dfTBYCKnVWtIy8YF8dqjjD33hycl5ChGghSor0MNeT7iVKChFpN0WTM3TQSNlh9E9rUxB= hxxps://bl0kir-fbgirpn[.]terbaru-2023[.]com/vhsfhqpdhdsih6/ Metamask Phishing Site hxxp://metmaxsklgin5[.]godaddysites[.]com Shopify Phishing Site hxxps://shoutout[.]wix[.]com/so/61Ockl6oK/c?w=vMzWr6xv9YCWPw5orlJM8KQ4e-UAa5R15CcoIWyl6aY.eyJ1IjoiaHR0cHM6Ly9vcHB0dGltYS5jb20vbC8iLCJyIjoiYjZhMDU1NzMtNDg1ZS00ZjhlLWE4NTYtZDlmMmU1Yzg1MWQzIiwibSI6Im1haWwiLCJjIjoiOWNmNGNiZTYtNDBlYS00ZWVmLTg5MzMtZDJlMzA3ZGYyZmVjIn0 Trust Wallet Phishing [...]
Phishing and Malicious URL Search Terms in the 3rd Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Crédit Agricole (French bank) Phishing Site hxxps://banque-france[.]helpfrench[.]com/steps/banques/CreditAgricole/ hxxp://cz55451[.]tw1[.]ru/4490c997f25d2a9/region.php?particulier Scotiabank (Canadian bank) Phishing Site hxxp://www[.]sbi[.]mx/page/41/786/kuatkan[.]php Coinbase Phishing Site hxxps://grey-enormous-chard[.]glitch[.]me/oak[.]html Facebook Phishing Site hxxps://akurewards[.]com/5284088706905/a1b2c3/ec74eb5aa714fe0c3ff20d9c8dd34410/ hxxp://www[.]filesusr[.]com/html/b772d6_895b18d5e6c9d5a5d6e5784a3498a39d[.]html?6794991*{{emailb64}}*https:/= [...]
The delay in applying patches for the FortiGate firewall's remote code execution (RCE) vulnerability, CVE-2023-27997, which was announced on June 12, 2023, has reached a critical stage. CVE-2023-27997 is a heap-based buffer overflow vulnerability affecting SSL-VPN enabled devices. This RCE vulnerability enables the remote execution of code through an SSL-VPN interface exposed on the web. With [...]
Phishing and Malicious URL Search Terms in the 2nd Week of August CIP Weekly Blacklist – Phishing or Malicious URL * Clicking the link takes you to the CIP Search Results Page. Crédit Agricole (French bank) Phishing Site hxxp://cz15911[.]tw1[.]ru/5171ff2c7c235fa/region[.]php?particulier Société Générale (French bank) Phishing Site hxxp://www[.]aipstore[.]pt/wp-content/upgrade/sg/ Garanti BBVA (Turkish bank) Phishing Site hxxps://persekenemede[.]net/isube/login[.]php SwissPass (Swiss [...]
[Criminal IP v1.36.1] Regular Maintenance and Update Release Note Maintenance Period: 2023.08.03 06:00~08:00 AM (UTC) [New Changes] GitHub Reference Page Open - A page showcasing code references utilizing the Criminal IP API, shared on GitHub, has been opened. Criminal IP Official GitHub: You can find various Open API utilization scripts on the Criminal IP's official GitHub repository list. [...]
