← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
CosmicSting attack threatens 75% of Adobe Commerce stores
WHITE CyberHunter_NL 2024-09-05 Modified: 2024-10-05
13
IOCs
MEDIUM VOLUME
adobe commercesansecmagentoadobescanjuneupdate juneproduct pricingcosmicstingcvssupgradeexploitattackaprilvirustotal
Indicators of Compromise (13)
All CVE URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
CVE CVE-2024-2961 2024-09-05
CVE CVE-2024-34102 2024-09-05
URL ftp://89.110.84.168:21/d3d3LmptcGJ0ZWlsZS5kZQ==/Li4vYXBwL2V0Yy9lbnYucGhw/%d 2024-09-05
URL http://89.110.84.168/docs?id=d3d3LmptcGJ0ZWlsZS5kZQ==&m=1&f=Li4vYXBwL2V0Yy9lbnYucGhw 2024-09-05
URL https://checkout.lat/log.xml 2024-09-05
URL https://fars.ee/WuBQ.dtd 2024-09-05
URL https://m37gg41n.c5.rs/?exploited=%data; 2024-09-05
URL https://venum.com.cn/log.txt/xxe.xml 2024-09-05
domain checkout.lat 2024-09-05
domain ecomscan.com 2024-09-05
domain fars.ee 2024-09-05
domain venum.com.cn 2024-09-05
hostname m37gg41n.c5.rs 2024-09-05
References (1)
↗ https://sansec.io/research/cosmicsting