← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Multiple Booking Websites Compromised Due to Critical Vulnerabilities in Booking Engine
WHITE Security Media cryptocti 2023-10-05 Modified: 2023-10-05
69
IOCs
HIGH VOLUME
bitdefenderirm next generationresort data processingoctobercompliancecompliance livewebinarcloserisk managementsecurityvirgin islandsseptemberismg accountburmabugsevolutionjunegeneralservicelookalreadykingaugustcybermicrobackdoortipsnightstrongservermicro backdoorfileresortpathxmodulecompromisemartinfirsttwitterthemidaexecutioncomspecpersistenceenterprisesecurity mediadbirdata breach investigations reportlearnreadpublic sectorlevelmedium businesshealthcareutilitiesdownloaddata breachsmallenergycontactsectorfindexecuteavast freekinghamlet kinghamletattackkey useantivirus dateeset nod32mcafee totalwindowssystemsystem accountwindows servermicrosoftthoughjames forshawlogon sessionlittle tooservice accountbitsexploit
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (69)
All CVE FileHash-MD5 domain URL email hostname
TYPEINDICATORDESCRIPTIONCREATED
CVE CVE-2020-0787 2023-10-05
CVE CVE-2023-39420 2023-10-05
CVE CVE-2023-39421 2023-10-05
CVE CVE-2023-39422 2023-10-05
CVE CVE-2023-39423 2023-10-05
CVE CVE-2023-39424 2023-10-05
FileHash-MD5 05b0418263ac7ab3431f2329d0d3e2b0 2023-10-05
FileHash-MD5 063588bfda9642c835b5a2bcfedaf1da 2023-10-05
FileHash-MD5 07c7dffc9237373eeca170cc332e5ee0 2023-10-05
FileHash-MD5 12f2a5faa01efcee7a0829133173da2b 2023-10-05
FileHash-MD5 1d6554842dc48fd87b83113318e9256d 2023-10-05
FileHash-MD5 225fee186de514e1a24536a95bfa118d 2023-10-05
FileHash-MD5 24d7baab665b51719aca24718e3d0115 2023-10-05
FileHash-MD5 284e2bef6bec53942442a80daa3ab56d 2023-10-05
FileHash-MD5 3411c97b2017c5a60bacbae722afa9e3 2023-10-05
FileHash-MD5 366f6e5b7db3c0ef0eaa8776ae7ade24 2023-10-05
FileHash-MD5 3b15d7a3e9eea9c403ddc4e74fd329aa 2023-10-05
FileHash-MD5 3ee42bc3f765c8ac7e0708641fab4e9e 2023-10-05
FileHash-MD5 450d4c982490350082ca3dc89a0e8ee2 2023-10-05
FileHash-MD5 45ff3ba7c1ebc1db28d4438691b13bea 2023-10-05
FileHash-MD5 4912f690fc30bb2217d1b1f3029003fe 2023-10-05
FileHash-MD5 504a54e53727d418003d7b71647f6230 2023-10-05
FileHash-MD5 582862be0c3bdda4f65376169c57af98 2023-10-05
FileHash-MD5 58e200a60c8329058bb7e63118e6ce3f 2023-10-05
FileHash-MD5 5955f14160bb8aacc63f620065317c2c 2023-10-05
FileHash-MD5 5db5a373b1395d9f6aeb87f99e8a801c 2023-10-05
FileHash-MD5 61cac5c66aaba9f896da026bb2a7c899 2023-10-05
FileHash-MD5 6d85ea5b1d88aadd43fec8a53662c0ad 2023-10-05
FileHash-MD5 714f7493b7eb384f3ef7a49b73f8c66f 2023-10-05
FileHash-MD5 7efc7f94cbbc3e1d38873039996efe64 2023-10-05
FileHash-MD5 800294f84f61830b79577d241ef6c7df 2023-10-05
FileHash-MD5 871de9bf5a4fdfa5e448f47a14259335 2023-10-05
FileHash-MD5 87397cdbf0e62dd422dfcd0c54b39710 2023-10-05
FileHash-MD5 89c283604857ea44ef8d0bc109d53a73 2023-10-05
FileHash-MD5 8f39d5df4c38c2b90e5b9b091458eed7 2023-10-05
FileHash-MD5 91f0ba3999e7d368b294f8dd2b326865 2023-10-05
FileHash-MD5 953ccf89d1452a7142a1d3970219ed8a 2023-10-05
FileHash-MD5 9cf1bbd0d83d5701aebdba6e05f7bb93 2023-10-05
FileHash-MD5 a1d80427445b6db77daa39dfb89d3c2f 2023-10-05
FileHash-MD5 a92e0651bc8fef306ecbe992351d311f 2023-10-05
FileHash-MD5 ac7cdd4d1d08f74a7f9c56b760aa991b 2023-10-05
FileHash-MD5 adcc2d68a2d7c5e830be550890efd42b 2023-10-05
FileHash-MD5 adecf847a06fb12589e92c522f59473f 2023-10-05
FileHash-MD5 b1703ed5441ac3fb5004a37722e14b22 2023-10-05
FileHash-MD5 b487e7bfd88aa57ccbf47568055f47da 2023-10-05
FileHash-MD5 bdbeb4dd064cc30a3c02cfb1ea0e5dc8 2023-10-05
FileHash-MD5 bfea2b4a02a8044cb5f7fccc36172460 2023-10-05
FileHash-MD5 c0ba71922ba520ad479f4b77d6e70688 2023-10-05
FileHash-MD5 c453f876e25c8a04d9cde58f9290c88f 2023-10-05
FileHash-MD5 cb911c01d89b3a35bb3a7f525021b609 2023-10-05
FileHash-MD5 ce7fde78cb3d3fa08e053d8a6ccdb931 2023-10-05
FileHash-MD5 d5373e33861c09697af6c62987983321 2023-10-05
FileHash-MD5 d98ef3e72ed8cac642a51498ff67c3b0 2023-10-05
FileHash-MD5 e919e2ca19daa40904000a3222963b21 2023-10-05
FileHash-MD5 f74271e58d20f42be4bf2a685c78217d 2023-10-05
FileHash-MD5 fc45969de0677b995bfbc829906871f5 2023-10-05
domain telecomptd.org 2023-10-05
URL http://www.oag.state.md.us/Consumer 2023-10-05
email tara@zerodaylaw.com 2023-10-05
hostname www.oag.state.md.us 2023-10-05
hostname www.zerodaylaw.com 2023-10-05
CVE CVE-2010-2554 2023-10-05
CVE CVE-2017-13130 2023-10-05
CVE CVE-2019-19544 2023-10-05
CVE CVE-2022-41099 2023-10-05
URL https://decoder.cloud/2019/12/06/we-thought-they-were-potatoes-but-they-were-beans/ 2023-10-05
URL https://www.tiraniddo.dev/2020/04/sharing-logon-session-little-too-much.html 2023-10-05
domain decoder.cloud 2023-10-05
hostname www.tiraniddo.dev 2023-10-05
References (1)
↗ https://itm4n.github.io/printspooferSeptember 09th 2023 - CryptoGen Cyber Threat Intelligence Advisory #3214 - Multiple Booking Websites Compromised Due to Critical Vulnerabilities in Booking Engine-abusing-impersonate-privileges/