Criminal IP Analysis Report on Zero-Day Vulnerability in Atlassian Confluence

According to Volexity 1), a cybersecurity company based in Washington, DC, a webshell was discovered in the Atlassian Confluence server during an incident response investigation. Initially believed to be an issue specific to Atlassian Confluence, Volexity developed an exploit code. However, further analysis revealed that the vulnerability was a zero-day exploit capable of executing remote [...]

Search for Defaced Websites Using Title Filter in Asset Search

Website defacement is a cyberattack in which a hacker gains unauthorized access to a website and alters its visual appearance, often leaving behind evidence indicating that the website has been attacked. This attack would feel like nothing if the screen is the only one that is changed. In reality, however, this implies that the hacker gains [...]

Search for Exposed Remote Management Systems With SSL Certificates

One of the available filters of Asset Search provided by Criminal IP is ssl_issuer_organization. This filter allows you to determine which institution's certificate was used to sign an SSL protocol, such as HTTPS. For instance, if we examine the SSL certificate of criminalip.io, we can see that it is "Verified by" Sectigo Limited (formerly known as Comodo CA), which indicates that a [...]

By |2023-05-12T09:28:56+09:00May 25th, 2022|Tags: , , , |0 Comments
Go to Top