This article discusses various cybersecurity incidents and responses, including China’s opposition to U.S. sanctions regarding alleged hacking, the discovery of malicious URLs and IPs targeting China, vulnerabilities in BeyondTrust systems, and the emergence of a phishing plugin for WordPress. Affected Platform: China, United States, WordPress
Keypoints :
- China’s Foreign Ministry condemns U.S. sanctions related to alleged Chinese hacking activities.
- The National Cyber Security Center of China identifies a series of malicious URLs and IPs used by foreign hackers.
- Nearly 9,000 BeyondTrust systems remain exposed online despite known vulnerabilities.
- Moxa issues urgent warnings about critical vulnerabilities in several of its devices.
- Amsterdam halts the promotion of smart traffic lights due to privacy concerns.
- A new phishing WordPress plugin, PhishWP, is discovered, which steals credit card information.
- Consi Software terminates its IPO application on the Shenzhen Stock Exchange.
- Veracode acquires Phylum to enhance security against malicious open-source code.
MITRE Techniques :
- TA0001 – Initial Access: Exploitation of vulnerabilities in software systems to gain unauthorized access.
- TA0002 – Execution: The use of malicious plugins or scripts to execute unauthorized actions on a system.
- TA0007 – Discovery: Scanning for exposed systems and vulnerabilities to identify targets for attacks.
- TA0043 – Reconnaissance: Gathering information on potential targets through phishing techniques.
Indicator of Compromise :
- [url] gael2024.kozow.com
- [ip address] 149.28.98.229
- [url] counterstrike2-cheats.com
- [ip address] 45.137.198.211
- [url] bot.merisprivate.net
- Check the article for all found IoCs.
Full Research: https://www.aqniu.com/homenews/107884.html