T1086 – Data Encrypted for Impact

Blog | Scenario

Critical Vulnerabilities in WS_FTP Server
ByDetecteam 2023-10-252023-10-25

TLP TLP TLP CLEAR Author Sebastien Tricaud Summary Caitlin Condon, an expert at Rapid7, has highlighted critical vulnerabilities in WS_FTP Server, a secure file transfer solution. These vulnerabilities, notably CVE-2023-40044 and CVE-2023-42657, were disclosed by Progress Software on September 27, 2023. CVE-2023-40044, a .NET deserialization flaw, allows remote code execution with a single HTTPS POST…

Read More Critical Vulnerabilities in WS_FTP Server
Blog | Scenario

Clop – Ransomware by TA505
ByDetecteam 2023-06-222023-06-23

TLP TLP TLP CLEAR Author Jordi Lobo Summary Clop ransomware is a variant of a previously known strain called CryptoMix. In 2019, Clop was delivered as the final payload of a phishing campaign associated with the financially motivated actor TA505. In 2020, Clop has evolved from a ransomware delivered through malicious spam to one being…

Read More Clop – Ransomware by TA505

End of content

End of content