Red Teaming On-Demand

CODE RED Threat Intelligence Pulse

VTA-00358 - CVE-2021-1732: Local Privileges Escalation Vulnerability On Windows Win32k: SuperPRO’s Recommendations:
1. Update to latest patch accordingly for Windows OS and Windows 2019 servers by referring to this link.
(https://msrc.microsoft.com/update guide/vulnerability/CVE-2021-1732).
2. Keep Microsoft Defender up to date.
3. Configure the IOC information ...
Learn More
VTA-00357 - Kobalos Malware Targets High Performance Computer (HPC) Clusters: SuperPRO’s Recommendations:
1. Review and improve your server's SSH security settings e.g. https://linux-audit.com/audit-and-harden-your-ssh-configuration/ 2. Monitor your server's SSH service activities for unauthorized remote access and unknown network connections established by the ...
Learn More
VTA-00356 - Pro-Ocean Cryptojacking Malware: SuperPRO’s Recommendations: 1. CVE-2016-3088: The affected versions are, Apache ActiveMQ 5.0.0 - 5.13.x. The fileserver feature has been completely removed on the version 5.14.0. Users are advised to use other FTP and HTTP based file ...
Learn More

CODE RED Programs

VTA-00361
VTA-00360
VTA-00359

Subscribe To Our Mailing List

 

By clicking Subscribe, I agree to the use of my personal data in accordance with Provintell's Privacy Policy. Provintell will not sell, trade, rent or lease your personal data to third parties.

Threat Statistics in February 2021 and January 2021

  • Ticket opened

Severity %

  • Critical
  • High
  • Medium
  • Low

Critical 0% High 21% Medium 30% Low 49%

Source: Provintell CyberSOC, Feb 2021

  • Ticket opened

Severity %

  • Critical
  • High
  • Medium
  • Low

Critical 0% High 4% Medium 60% Low 36%

Source: Provintell CyberSOC, January 2021

  • Ticket Opened

Severity %

  • Critical
  • High
  • Medium
  • Low

Critical 0% High 0% Medium 80% Low 20%

Source: Provintell CyberSOC, Feb 2021

  • Ticket Opened

Severity %

  • Critical
  • High
  • Medium
  • Low
  • Info

Critical 0% High 0% Medium 64% Low 32% Info 4%

Source: Provintell CyberSOC, Jan 2021

Top Threats in February 2021 and January 2021

Country Threats Count
China 8
India 6
United State 6
Malaysia 2
Russia 2
Brazil 2
Korea 1
Netherlands 1
United Kingdom 1
Indonesia 1
Country Threats Count
China 13
United State 9
Brazil 6
Vietnam 5
Italy 4
Thailand 4
Turkey 4
Singapore 3
Indonesia 3
Colombia 1
Mitre Att&ck Threats Count
Reconnaissance 1
Resource Development 0
Initial Access 8
Execution 3
Persistence 1
Privilege Escalation 0
Defense Evasion 5
Credential Access 5
Discovery 7
Lateral Movement 0
Collection 0
Command and Control 14
Exfiltration 0
Impact 1
Mitre Att&ck Threats Count
Reconnaissance 0
Resource Development 0
Initial Access 36
Execution 7
Persistence 1
Privilege Escalation 1
Defense Evasion 1
Credential Access 9
Discovery 11
Lateral Movement 0
Collection 1
Command and Control 5
Exfiltration 0
Impact 2

Source: Provintell CyberSOC, February 2021

Access To Our Latest Indicator of Compromise (IOC) Published By Provintell Lab

AT&T Alien Labs Open Threat Exchange

The world’s largest open threat intelligence community that enables collaborative defense with actionable, community-powered threat data.