Kartwheel News

Cyber stories

Tag: CVE-2015-1427

Vulnerabilities, Exploits, and Malware Driving Attack Campaigns in July 2019

Conclusion Campaigns aimed at mining cryptocurrency and targeting Oracle WebLogic are clearly on the rise, and F5 researchers anticipate this trend to continue. This has been fueled partly by the zero-day vulnerability (CVE-2019-2725)found in April 2019. Oracle WebLogic is used widely by large corporations, and the servers are resource-intensive. This attracts threat actors looking to…

Read More

Vulnerabilities, Exploits, and Malware Driving Attack Campaigns in October 2019

The script uses random function and variable names to avoid detection by antivirus engines. It also contains another Base64-encoded payload. The threat actor uses .Net APIs to call the Windows API. For example, the script uses the .NET API to find address of VirtualAlloc function exported by kernel32.dll. It then marshals the shellcode by using…

Read More

Vulnerabilities, Exploits, and Malware Driving Attack Campaigns in December 2019

Security researchers at F5 Networks constantly monitor web traffic at various locations all over the world. This allows us to detect “in the wild” malware, and to get an insight into the current threat landscape.  In December 2019, security researchers detected a 100% increase in new threat campaigns as compared to November 2019. This was…

Read More

Recent Posts

Recent Comments

No comments to show.