Red Teaming On-Demand
CODE RED Threat Intelligence Pulse
VTA-00361 - Minebridge Trojan RAT Buries Itself On Outdated TeamViewer SuperPRO’s Recommendations:
1. Always be suspicious of vague emails, especially if there is a prompt to open an attachment or click on a URL or clickable text.
2. Do not enable macros ...
Learn More
1. Always be suspicious of vague emails, especially if there is a prompt to open an attachment or click on a URL or clickable text.
2. Do not enable macros ...
Learn More
VTA-00360 - Multiple Critical Remote Code Execution Vulnerabilities In VMWARE Products: SuperPRO’s Recommendations:
1. CVE-2021-21972:
VMware vCenter Server :
a) Version 7.0 prior update to version 7.0 U1c
b) Version 6.7 prior update to version 6.7 U3l
c) Version 6.5 prior update to version 6.5 ...
Learn More
1. CVE-2021-21972:
VMware vCenter Server :
a) Version 7.0 prior update to version 7.0 U1c
b) Version 6.7 prior update to version 6.7 U3l
c) Version 6.5 prior update to version 6.5 ...
Learn More
VTA-00359 - Multiple WordPress Plugin Vulnerabilities Affected One Million Websites: SuperPRO’s Recommendations:
1. Update to the latest version available, which is version 3.5.0.
2. Steps to manually update Ninja Forms:
i. Go to your WordPress Dashboard > Plugins and click "Deactivate" on the ...
Learn More
1. Update to the latest version available, which is version 3.5.0.
2. Steps to manually update Ninja Forms:
i. Go to your WordPress Dashboard > Plugins and click "Deactivate" on the ...
Learn More
CODE RED Programs
VTA-00361
VTA-00360
VTA-00359
Threat Statistics in February 2021 and January 2021
- Ticket opened
Severity %
- Critical
- High
- Medium
- Low
- Critical
- High
- Medium
- Low
Critical 0% High 21% Medium 30% Low 49%
Source: Provintell CyberSOC, Feb 2021
- Ticket opened
Severity %
- Critical
- High
- Medium
- Low
- Critical
- High
- Medium
- Low
Critical 0% High 4% Medium 60% Low 36%
Source: Provintell CyberSOC, January 2021
- Ticket Opened
Severity %
- Critical
- High
- Medium
- Low
- Critical
- High
- Medium
- Low
Critical 0% High 0% Medium 80% Low 20%
Source: Provintell CyberSOC, Feb 2021
- Ticket Opened
Severity %
- Critical
- High
- Medium
- Low
- Info
- Critical
- High
- Medium
- Low
- Info
Critical 0% High 0% Medium 64% Low 32% Info 4%
Source: Provintell CyberSOC, Jan 2021
Top Threats in February 2021 and January 2021
| Country | Threats Count | |
|---|---|---|
| China | 8 | |
| India | 6 | |
| United State | 6 | |
| Malaysia | 2 | |
| Russia | 2 | |
| Brazil | 2 | |
| Korea | 1 | |
| Netherlands | 1 | |
| United Kingdom | 1 | |
| Indonesia | 1 |
| Country | Threats Count | |
|---|---|---|
| China | 13 | |
| United State | 9 | |
| Brazil | 6 | |
| Vietnam | 5 | |
| Italy | 4 | |
| Thailand | 4 | |
| Turkey | 4 | |
| Singapore | 3 | |
| Indonesia | 3 | |
| Colombia | 1 |
| Mitre Att&ck | Threats Count | |
|---|---|---|
| Reconnaissance | 1 | |
| Resource Development | 0 | |
| Initial Access | 8 | |
| Execution | 3 | |
| Persistence | 1 | |
| Privilege Escalation | 0 | |
| Defense Evasion | 5 | |
| Credential Access | 5 | |
| Discovery | 7 | |
| Lateral Movement | 0 | |
| Collection | 0 | |
| Command and Control | 14 | |
| Exfiltration | 0 | |
| Impact | 1 | |
| Mitre Att&ck | Threats Count | |
|---|---|---|
| Reconnaissance | 0 | |
| Resource Development | 0 | |
| Initial Access | 36 | |
| Execution | 7 | |
| Persistence | 1 | |
| Privilege Escalation | 1 | |
| Defense Evasion | 1 | |
| Credential Access | 9 | |
| Discovery | 11 | |
| Lateral Movement | 0 | |
| Collection | 1 | |
| Command and Control | 5 | |
| Exfiltration | 0 | |
| Impact | 2 | |
Source: Provintell CyberSOC, February 2021
Access To Our Latest Indicator of Compromise (IOC) Published By Provintell Lab
AT&T Alien Labs Open Threat Exchange
The world’s largest open threat intelligence community that enables collaborative defense with actionable, community-powered threat data.