+- Bezbedan Balkan (https://bezbedanbalkan.net)
+-- Forum: Bezbednost privatnih resursa (https://bezbedanbalkan.net/forum-12.html)
+--- Forum: Kompromitovani resursi (https://bezbedanbalkan.net/forum-13.html)
+--- Thread: Kompromitovan prim-kostolac.rs (/thread-723.html)
Kompromitovan prim-kostolac.rs - 1van - 07-09-2023
Izgleda je kompromitovan prim-kostolac.rs. IP: 135.181.136.67, zemlja Finska, provajder Hetzner.
VirusTotal: https://www.virustotal.com/gui/url/a22e7180400fae626450887bc06a29c602725c76d07ee9510888ddeef6ccc9e7?nocache=1
Sucuri: https://sitecheck.sucuri.net/results/prim-kostolac.rs
RE: Kompromitovan prim-kostolac.rs - maxxa - 07-10-2023
Zanimljiv skroz.
Ako sam razumeo urlquery kaze da su u pitanju FAKEUPDATES, Severity je High.
Zanimljivi tekstovi na tu temu:
https://www.trendmicro.com/vinfo/us/security/definition/exploit-kit
https://www.bleepingcomputer.com/news/security/legitimate-tds-platform-abused-to-push-malware-via-exploit-kits/
report: https://urlquery.net/report/25ff3b20-7e91-45c7-8e6b-2a3deac59e79