{"uuid": "1a564445-e9b4-4b26-a39d-039fb5ca8640", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46604", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/9449", "content": "#Malware_analysis\n1. Diamond Sleet supply chain compromise distributes a modified CyberLink installer\nhttps://www.microsoft.com/en-us/security/blog/2023/11/22/diamond-sleet-supply-chain-compromise-distributes-a-modified-cyberlink-installer\n2. HrServ - malware web shell DLL\nhttps://securelist.com/hrserv-apt-web-shell/111119\n3. CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits\nhttps://www.trendmicro.com/en_us/research/23/k/cve-2023-46604-exploited-by-kinsing.html", "creation_timestamp": "2023-11-23T10:58:01.000000Z"}