πΎ #Cerber is a Ransomware-as-a-Service active since 2016. It uses fileless execution and spreads across network via SMB shares.
Learn more and collect IOCs & samples: https://any.run/malware-trends/cerber/?utm_source=mastodon&utm_medium=post&utm_campaign=cerber&utm_content=mtt&utm_term=240225
Cado Security Labs reports that threat actors are exploiting CVE-2023-22518 (9.8 critical, disclosed 31 October 2023 by Atlassian, in CISA KEV Catalog 07 November 2023) in Atlassian Confluence to deploy Cerber ransomware. Cado provides a technical analysis of the Linux variant of Cerber. IOC provided. π https://www.cadosecurity.com/blog/cerber-ransomware-dissecting-the-three-heads
Critical Atlassian Flaw Exploited to Deploy #Linux Variant of #Cerber Ransomware
https://thehackernews.com/2024/04/critical-atlassian-flaw-exploited-to.html
ΠΠΏΠΏΠ°ΡΠ°ΡΠ½ΡΠΉ Π°Π½ΡΠΈΡΠΊΠΈΠΌΠΌΠ΅Ρ. Π§ΡΡΠ½Π°Ρ ΠΊΠΎΡΠΎΠ±ΠΎΡΠΊΠ°, Π·Π°ΡΠΈΡΠ°ΡΡΠ°Ρ Π±Π°Π½ΠΊΠΎΠΌΠ°ΡΡ
ΠΡΠΈΠ²Π΅ΡΡΡΠ²ΡΡ Π²ΡΠ΅Ρ ! ΠΡΠΌΠ°Ρ, Π°Π±ΡΠΎΠ»ΡΡΠ½ΠΎΠΌΡ Π±ΠΎΠ»ΡΡΠΈΠ½ΡΡΠ²Ρ ΡΠΈΠ΄ΡΡΠΈΡ Π·Π΄Π΅ΡΡ Π·Π½Π°ΠΊΠΎΠΌΡ ΡΠ°ΠΊΠΈΠ΅ ΡΡΡΡΠΎΠΉΡΡΠ²Π° Π΄Π»Ρ ΠΊΡΠ°ΠΆΠΈ Π΄Π°Π½Π½ΡΡ Π±Π°Π½ΠΊΠΎΠ²ΡΠΊΠΈΡ ΠΊΠ°ΡΡ ΠΊΠ°ΠΊ ΡΠΊΠΈΠΌΠΌΠ΅ΡΡ. Π‘ Π½ΠΈΠΌΠΈ Π°ΠΊΡΠΈΠ²Π½ΠΎ Π±ΠΎΡΠΎΠ»ΠΈΡΡ (Π³Π΄Π΅-ΡΠΎ ΡΡΠΏΠ΅ΡΠ½ΠΎ, Π° Π³Π΄Π΅-ΡΠΎ Π½Π΅ ΠΎΡΠ΅Π½Ρ), Π° ΠΊ ΡΠ°ΡΠΏΡΠΎΡΡΡΠ°Π½Π΅Π½ΠΈΡ Π±Π΅ΡΠΊΠΎΠ½ΡΠ°ΠΊΡΠ½ΡΡ ΠΊΠ°ΡΡ ΠΎΠ½ΠΈ ΡΠΈΡ ΠΎ ΠΈ Π½Π΅Π·Π°ΠΌΠ΅ΡΠ½ΠΎ ΡΡΠ»ΠΈ Π² ΠΈΡΡΠΎΡΠΈΡ. ΠΠ½ΠΎΠ³ΠΈΠ΅ Π½Π°Π²Π΅ΡΠ½ΡΠΊΠ° ΡΠ»ΡΡΠ°Π»ΠΈ ΠΏΡΠΎ ΡΠΏΠ΅ΡΠΈΠ°Π»ΡΠ½ΡΠ΅ Π½Π°ΠΊΠ»Π°Π΄ΠΊΠΈ Ρ ΠΈΡΡΠΎΠΉ ΡΠΎΡΠΌΡ Π½Π° ΡΡΠΈΡΡΠ²Π°ΡΠ΅Π»ΠΈ ΠΊΠ°ΡΡ, ΠΏΡΠΈΠ·Π²Π°Π½Π½ΡΠ΅ Π·Π°ΡΠΈΡΠΈΡΡ Π΄Π΅Π²Π°ΠΉΡ ΠΎΡ ΡΡΡΠ°Π½ΠΎΠ²ΠΊΠΈ ΠΏΠΎΡΡΠΎΡΠΎΠ½Π½Π΅Π³ΠΎ ΠΎΠ±ΠΎΡΡΠ΄ΠΎΠ²Π°Π½ΠΈΡ. ΠΠΎ ΠΎΠ΄Π½ΠΈΠΌΠΈ Π·Π°ΡΠΈΡΠ½ΡΠΌΠΈ ΠΏΠ»Π°ΡΡΠΌΠ°ΡΡΠΎΠ²ΡΠΌΠΈ Π΄Π΅ΡΠ°Π»ΡΠΌΠΈ Π²ΡΡ Π½Π΅ ΠΎΠ³ΡΠ°Π½ΠΈΡΠΈΠ²Π°Π»ΠΎΡΡ, ΡΡΡΠ΅ΡΡΠ²ΠΎΠ²Π°Π»ΠΈ ΠΊΡΠ΄Π° Π±ΠΎΠ»Π΅Π΅ ΠΈΠ½ΡΠ΅ΡΠ΅ΡΠ½ΡΠ΅ Π΄Π΅Π²Π°ΠΉΡΡ, ΠΏΠ°ΡΠΎΡΠΊΠ° ΠΊΠΎΡΠΎΡΡΡ ΠΏΠΎΠΏΠ°Π»Π° ΠΊΠΎ ΠΌΠ½Π΅ Π² ΡΡΠΊΠΈ. ΠΡΠ°ΠΊ, Π² ΡΠ΅Π³ΠΎΠ΄Π½ΡΡΠ½Π΅ΠΉ ΡΡΠ°ΡΡΠ΅ ΠΏΠΎΠ³ΠΎΠ²ΠΎΡΠΈΠΌ ΠΏΡΠΎ ΡΠ°ΠΊΠΎΠΉ ΠΌΠ°Π»ΠΎΠΈΠ·Π²Π΅ΡΡΠ½ΡΠΉ ΡΡΠ΅Π΄ΠΈ ΠΎΠ±ΡΠ²Π°ΡΠ΅Π»Π΅ΠΉ Π²ΠΈΠ΄ Π·Π°ΡΠΈΡΡ Π±Π°Π½ΠΊΠΎΠΌΠ°ΡΠΎΠ² ΠΊΠ°ΠΊ Π°ΠΊΡΠΈΠ²Π½ΡΠ΅ Π°Π½ΡΠΈΡΠΊΠΈΠΌΠΌΠ΅ΡΡ. ΠΠΎΠΏΡΡΠ½ΠΎ ΠΏΠΎΠΏΡΠΎΠ±ΡΠ΅ΠΌ Π·Π°ΠΏΡΡΡΠΈΡΡ ΠΈΠΌΠ΅ΡΡΠΈΠ΅ΡΡ Ρ ΠΌΠ΅Π½Ρ Π΄Π΅Π²Π°ΠΉΡΡ ΠΈ ΡΠ·Π½Π°Π΅ΠΌ, ΠΊΠ°ΠΊ ΠΎΠ½ΠΈ ΡΠ°Π±ΠΎΡΠ°ΡΡ. Π’ΡΠ°Π΄ΠΈΡΠΈΠΎΠ½Π½ΠΎ Π±ΡΠ΄Π΅Ρ ΠΌΠ½ΠΎΠ³ΠΎ ΠΈΠ½ΡΠ΅ΡΠ΅ΡΠ½ΠΎΠ³ΠΎ.
https://habr.com/ru/companies/timeweb/articles/804305/
#timeweb_ΡΡΠ°ΡΡΠΈ #pic #stm32 #cerber #tmd_security #Π±Π°Π½ΠΊΠΎΠΌΠ°Ρ #ΡΠΊΠΈΠΌΠΌΠ΅Ρ #ΠΊΠ°ΡΡΡΠΊΠ° #ΠΌΠ°Π³Π½ΠΈΡΠ½ΡΠΉ_ΡΡΠΈΡΡΠ²Π°ΡΠ΅Π»Ρ #ΠΊΠ°ΡΡΡ_Ρ_ΠΌΠ°Π³Π½ΠΈΡΠ½ΠΎΠΉ_ΠΏΠΎΠ»ΠΎΡΠΎΠΉ #ΡΠ΅ΡΠΌΠΈΠ½Π°Π» #Π΄Π°ΡΡΠΈΠΊΠΈ
AktualnoΕci:
Β»Bykon 2024Β«
W trzeci weekend kwietnia (20-21.04.2024 r.) zostanie zorganizowana VI edycja Bydgoskiego Konwentu Multifandomowy β Bykon.
https://www.fahrenheit.net.pl/aktualnosci/bykon-2024/
#Fahrenheit_zin #konwent #Bydgoszcz #Bykon #Artemis #BydgoskiKonwentMultifandomowy #Fantazmat #Kitsune #StrefaGierbezPrΔ du #Cerber #JUTRONAUCI #BydgoskieStowarzyszeniePopkultury
Leute, patcht euer #Confluence gegen die #C3rb3er Ransomware. Wir wurden in der Nacht von Sonntag auf Montag attackiert und haben seither alle HΓ€nde voll zu tun. Wegen KRITIS mussten wir sogar die ErmittlungsbehΓΆrden und das BSI einschalten. Echt nicht schΓΆn! #Cerber
Atlassian confirmed reports from Rapid7 Huntress Labs and Red Canary that CVE-2023-22518 is being exploited by hackers using the Cerber ransomware
https://therecord.media/atlassian-confirms-ransomware-using-confluence-bug-cerber
Help, please.
Anybody know if I can just remove or Drop these #Cerber entries in #phpMyAdmin? I had already removed the Cerber #plugin folder. Didn't solve my problems.
I was going to re-install #WordPress and saw this. Maybe all I need to do is remove these cerber stuff?
Ransomware Gangs and the Name Game Distraction https://krebsonsecurity.com/2021/08/ransomware-gangs-and-the-name-game-distraction/ #EvgeniyMikhailovichBogachev #BlackMatterransomware #DarkSideransomware #Babukransomware #Griefransomware #REvilransomware #TheBusinessClub #Cryptolocker #DoppelPaymer #GameoverZeuS #IndrikSpider #WastedLocker #CrowdStrike #FabianWosar #Ransomware #BitPaymer #EvilCorp. #MarkArena #Emsisoft #GandCrab #Cerber #Dridex #TA505 #zeus
Threat Roundup for April 2 to April 9 - Today, Talos is publishing a glimpse into the most prevalent threats we've observe... http://feedproxy.google.com/~r/feedburner/Talos/~3/Bycl6Q3poE8/threat-roundup-0402-0409.html #vulnerabilities #threatroundup #ciscotalos #features #bifrost #malware #securex #cerber #dridex #ramnit #swisyn #ursnif #talos #xpiro #iocs #razy #zbot
Threat Roundup for March 5 to March 12 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between March 5 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/ZtZsnUj_r6o/threat-roundup-0305-0312.html #vulnerabilities #threatroundup #ciscotalos #coinminer #features #gh0strat #johnnie #malware #securex #cerber #dridex #tofsee #zegost #talos #iocs #razy #zusy
Threat Roundup for February 19 to February 26 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Feb. 19 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/Vj7aSwo9fzY/threat-roundup-0219-0226.html #vulnerabilities #threatroundup #ciscotalos #coinminer #features #malware #securex #cerber #dridex #kovter #nymaim #remcos #tofsee #njrat #talos #iocs #ursu
Threat Roundup for January 22 to January 29 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 22 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/WazccVo1IsY/threat-roundup-0122.html #vulnerabilities #threatroundup #ciscotalos #darkcomet #chthonic #gh0strat #hupigon #malware #cerber #dridex #expiro #tofsee #talos
Threat Roundup for December 11 to December 18 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Dec. 11 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/tSQqOPOkcsg/threat-roundup-1211-1218.html #vulnerabilities #threatroundup #ciscotalos #tinybanker #darkcomet #phorpiex #tovkater #gamarue #lokibot #malware #cerber #dridex #talos #razy
Threat Roundup for November 6 to November 13 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Nov. 6 a... http://feedproxy.google.com/~r/feedburner/Talos/~3/ENwWYKRsK3g/threat-roundup-1106-1113.html #vulnerabilities #threatroundup #ciscotalos #tinybanker #malware #cerber #dridex #emotet #kuluoz #tofsee #zegost #talos #razy #scar
Threat Roundup for October 23 to October 30 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 23 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/mKvMlbu1KJk/threat-roundup-1023-1030.html #vulnerabilities #threatroundup #ciscotalos #darkcomet #gamarue #lokibot #malware #netwire #cerber #dridex #emotet #ramnit #talos #busy
Threat Roundup for October 2 to October 9 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct. 2 a... http://feedproxy.google.com/~r/feedburner/Talos/~3/bYaWUVTAszE/threat-roundup-1002-1009.html #vulnerabilities #threatroundup #ciscotalos #darkcomet #banload #malware #cerber #emotet #kovter #ursnif #talos #razy #zbot
Threat Roundup for August 14 to August 21 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Aug. 14 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/bWe9Mh4wPMQ/threat-roundup-0814-0821.html #vulnerabilities #threatroundup #ciscotalos #cybergate #malware #cerber #dridex #emotet #kuluoz #tofsee #njrat #talos
Threat Roundup for July 24 to July 31 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed between July 24 ... http://feedproxy.google.com/~r/feedburner/Talos/~3/mVpjCbFDeEY/threat-roundup-0724-0731.html #vulnerabilities #threatroundup #agenttesla #ciscotalos #teslacrypt #darkcomet #gh0strat #malware #cerber #kuluoz #tofsee #talos #xpiro
