CyberStrike Harvester
AlienVault
· Published 24/06/2026 19:45 · Modified 24/06/2026 19:45
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 24/06/2026 19:45
- Modified
- 24/06/2026 19:45
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 21 attack patterns (mitre), 12 sectors, 8 indicators, 3 vulnerabilities (cve), 1 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (21)
-
T1539 usesSteal Web Session Cookie MITRE
-
T1087.002 usesDomain Account MITRE
-
T1078 usesValid Accounts MITRE
-
T1110.004 usesCredential Stuffing MITRE
-
T1119 usesAutomated Collection MITRE
-
T1039 usesData from Network Shared Drive MITRE
-
T1046 usesNetwork Service Discovery MITRE
-
T1135 usesNetwork Share Discovery MITRE
-
T1602.002 usesNetwork Device Configuration Dump MITRE
Sectors (12)
-
Energy targets
-
Retail targets
-
Government targets
-
Hospitality targets
-
Transportation targets
-
Education targets
-
Finance targets
-
Telecommunications targets
-
Defense targets
-
Healthcare targets
-
Manufacturing targets
-
Technology targets
Indicators (8)
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 20/06/2027 · Source: AlienVault
Vulnerabilities (CVE) (3)
4.7
Medium
Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 13/05/2026
- Modified
- 10/06/2026
9.8
Critical
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 04/04/2026
- Modified
- 09/04/2026
CVE-2026-25089
targets
9.8
Critical
A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 09/06/2026
- Modified
- 24/06/2026
Reports (1)
-
AlienVault Confidence 100 3 CVEs 21 MITREs 2 Malwares 8 IOCs 2 Observables