Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally | CISA [Wednesday, December 13, 2023]

Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally | CISA [Wednesday, December 13, 2023]
Report

Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally | CISA

Description :
Russia's foreign intelligence service (SVR) is targeting servers hosting TeamCity software, according to the CISA Cybersecurity and Infrastructure Security Agency (CISA), a US government agency that oversees cyber security.

Published Created Modified
2023-12-13 22:13:37 2023-12-13 22:13:37 2023-12-13 22:19:39

Tags

Indicators

IPv4s :
  • 65.21.51.58
  • 65.20.97.203
  • 103.76.128.34
URLs :
  • https://matclick.com/wp-query.php
Domains :
  • matclick.com
  • poetpages.com
Hashes :
  • 8afb71b7ce511b0bce642f46d6fc5dd79fad86a58223061b684313966efef9c7
  • ddf91c104a3cf2d2af6d44e213c97524f5286fc8
  • cb83e5cb264161c28de76a44d0edb450745e773d24bec5869d85f69633e44dcf
  • 18101518eae3eec6ebe453de4c4c380160774d7c3ed5c79e1813013ac1bb0b93
  • c37c109171f32456bbe57b8676cc533091e387e6ba733fbaa01175c43cfb6ebd
  • 34c8f155601a3948ddb0d60b582cfe87de970d443cc0e05df48b1a1ad2e42b5e
  • 1e74cf0223d57fd846e171f4a58790280d4593df1f23132044076560a5455ff8
  • 01b5f7094de0b2c6f8e28aa9a2ded678c166d615530e595621e692a9c0240732
  • 4ee70128c70d646c5c2a9a17ad05949cb1fbf1043e9d671998812b2dce75cf0f
  • f6194121e1540c3553273709127dfa1daab96b0acfab6e92548bfb4059913c69
  • 620d2bf14fe345eef618fdd1dac242b3a0bb65ccb75699fe00f7c671f2c1d869
  • c40a8006a7b1f10b1b42fdd8d6d0f434be503fb3400fb948ac9ab8ddfa5b78a0
  • 219fb90d2e88a2197a9e08b0e7811e2e0bd23d59233287587ccc4642c2cf3d67
  • 971f0ced6c42dd2b6e3ea3e6c54d0081cf9b06e79a38c2ede3a2c5228c27a6dc
  • ebe231c90fad02590fc56d5840acc63b90312b0e2fee7da3c7606027ed92600e
  • 950adbaf66ab214de837e6f1c00921c501746616a882ea8c42f1bad5f9b6eff4
  • 773f0102720af2957859d6930cd09693824d87db705b3303cef9ee794375ce13
  • f1b40e6e5a7cbc22f7a0bd34607b13e7e3493b8aad7431c47f1366f0256e23eb
  • d724728344fcf3812a0664a80270f7b4980b82342449a8c5a2fa510e10600443
  • c832462c15c8041191f190f7a88d25089d57f78e97161c3003d68d0cc2c4baa3
  • 4bf1915785d7c6e0987eb9c15857f7ac67dc365177a1707b14822131d43a6166
  • cd3584d61c2724f927553770924149bb51811742a461146b15b34a26c92cad43
  • 92c7693e82a90d08249edeafbca6533fed81b62e9e056dec34c24756e0a130a6
  • 0296e2ce999e67c76352613a718e11516fe1b0efc3ffdb8918fc999dd76a73a5
  • 7b666b978dbbe7c032cef19a90993e8e4922b743ee839632bfa6d99314ea6c53
  • c7b01242d2e15c3da0f45b8adec4e6913e534849cde16a2a6c480045e03fbee4
  • 19f1ef66e449cf2a2b0283dbb756850cca396114286e1485e35e6c672c9c3641
  • b53e27c79eed8531b1e05827ace2362603fb9f77f53cee2e34940d570217cbf7
  • 01aa278b07b58dc46c84bd0b1b5c8e9ee4e62ea0bf7a695862444af32e87f1fd
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.