Red Piranha Threat Intelligence Report - July 30 - August 5 2018

TRENDS


  • Attack Tool detected - Attack with 1081 occurrences was the top alarm this week.  
  • The United States the top attacking country this week with a total of 1740 different attackers. 



TOP ATTACKER COUNTRIES


CountryNo. of AttackersPercentage
United States174020.40%
China131617.9%
Russian Federation46012.8%
Brazil3717.3%
India3605%
Republic of Korea3064.9%
Australia2654.2%
France2623.8%
Germany1912.8%
Netherlands1782.7%
United Kingdom1592.5%
Singapore1562.2%
Vietnam1492.2%
Canada1491.9%
Egypt1271.8%
Italy1091.7%
Indonesia1031.7%
Hong Kong961.5%
Japan931.4%
Taiwan901.4%


Top Cyber Attackers by Country July 30 - August 5 2018



THREAT GEOLOCATION


Cyber Security Threat Geolocations July 30 - August 5 2018




TOP ATTACKING HOSTS


HostOccurrences
211.159.153.14123
110.164.49.254104
46.243.189.2499
119.23.52.18381
46.243.189.2070
122.114.226.265




EXPLOIT EVENT TYPES


Exploit Event Types July 30 - August 5 2018



OPEN THREAT EXCHANGE


Pulses SubscribedIndicatorsLast UpdatedNumber of AlarmsNumber of Events
5,440854,7482018-08-05 23:10:474,5654,965





COMMON VULNERABILITIES AND EXPOSURES - CVE


2018-08-03

Apache OpenWhisk CVE-2018-11757 Serverless Function Remote Code Execution Vulnerability
securityfocus.com/bid/104913


Apache OpenWhisk CVE-2018-11756 Remote Code Execution Vulnerability
securityfocus.com/bid/104915


SuSE openSUSE Build Service CVE-2018-12466 Security Bypass Vulnerability
securityfocus.com/bid/104958


2018-08-02


Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability
securityfocus.com/bid/104895


Microsoft Visual Studio CVE-2018-8172 Remote Code Execution Vulnerability
securityfocus.com/bid/104616


Symfony CVE-2018-14773 Security Bypass Vulnerability
securityfocus.com/bid/104943

2018-08-01


Cisco Identity Services Engine CVE-2018-0413 Cross Site Request Forgery Vulnerability
securityfocus.com/bid/104950


Cisco Unified Communications Manager CVE-2018-0411 Cross Site Scripting Vulnerability
securityfocus.com/bid/104949


Cisco Small Business 300 Series Managed Switches CVE-2018-0408 Cross Site Scripting Vulnerability
securityfocus.com/bid/104948


Cisco Small Business 300 Series Managed Switches CVE-2018-0407 Cross Site Scripting Vulnerability
securityfocus.com/bid/104947



VULNERABILITY NEWS


2018-08-03


Apache OpenWhisk CVE-2018-11757 Serverless Function Remote Code Execution Vulnerability
securityfocus.com/bid/104913


Apache OpenWhisk CVE-2018-11756 Remote Code Execution Vulnerability
securityfocus.com/bid/104915


SuSE openSUSE Build Service CVE-2018-12466 Security Bypass Vulnerability
securityfocus.com/bid/104958


2018-08-02


Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability
securityfocus.com/bid/104895


Microsoft Visual Studio CVE-2018-8172 Remote Code Execution Vulnerability
securityfocus.com/bid/104616


Symfony CVE-2018-14773 Security Bypass Vulnerability
securityfocus.com/bid/104943


2018-08-01

Top Attacker Hosts July 10 - August 5 2018
Details