Trusted Design

Patterson Dental Eaglesoft uses a hard-coded database password a

概要

According to the researcher, Eaglesoft uses hard-coded credentials to access a database back-end. The credentials are the same across installations of Eaglesoft. Sensitive patient information is contained in Eaglesoft databases. An administrator is unable to change these credentials without breaking access to the back-end database. The researcher has published a blog post with more information.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

Patterson Dental Eaglesoft uses a hard-coded database password (score: 0.93)
DEXIS Imaging Suite 10 contains hard-coded credentials (score: 0.54)
ManageEngine OpManager 11.5 Hardcoded Credential / SQL Bypass (score: 0.43)
NexusLogger: A New Cloud-based Keylogger Enters the Market (score: 0.40)
Credential Harvesting Hashes (score: 0.39)

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 6.21

Matched TTPs:

T1003 - OS Credential Dumping
T1114 - Email Collection

MITREへのリンク →

APT39

Score: 5.26

Matched TTPs:

T1003 - OS Credential Dumping
T1555 - Credentials from Password Stores

MITREへのリンク →

Mustang Panda

Score: 5.34

Matched TTPs:

T1003 - OS Credential Dumping
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

APT32

Score: 8.00

Matched TTPs:

T1003 - OS Credential Dumping
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1078.003 - Local Accounts

MITREへのリンク →

APT28

Score: 7.13

Matched TTPs:

T1003 - OS Credential Dumping
T1669 - Wi-Fi Networks

MITREへのリンク →

Storm-0501

Score: 9.59

Matched TTPs:

T1003 - OS Credential Dumping
T1588.006 - Vulnerabilities
T1555.005 - Password Managers

MITREへのリンク →

Silent Librarian

Score: 3.62

Matched TTPs:

T1114 - Email Collection

MITREへのリンク →

Magic Hound

Score: 3.62

Matched TTPs:

T1114 - Email Collection

MITREへのリンク →

Scattered Spider

Score: 6.77

Matched TTPs:

T1114 - Email Collection
T1555.005 - Password Managers

MITREへのリンク →

Sandworm Team

Score: 5.90

Matched TTPs:

T1588.006 - Vulnerabilities
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

Volt Typhoon

Score: 13.10

Matched TTPs:

T1588.006 - Vulnerabilities
T1555 - Credentials from Password Stores
T1552 - Unsecured Credentials
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

Threat Group-3390

Score: 3.15

Matched TTPs:

T1555.005 - Password Managers

MITREへのリンク →

Indrik Spider

Score: 3.15

Matched TTPs:

T1555.005 - Password Managers

MITREへのリンク →

Fox Kitten

Score: 3.15

Matched TTPs:

T1555.005 - Password Managers

MITREへのリンク →

UNC3886

Score: 3.15

Matched TTPs:

T1555.005 - Password Managers

MITREへのリンク →

LAPSUS$

Score: 5.20

Matched TTPs:

T1555.005 - Password Managers
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

HEXANE

Score: 4.72

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

Leafminer

Score: 8.34

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1003.005 - Cached Domain Credentials

MITREへのリンク →

Stealth Falcon

Score: 8.34

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1555.004 - Windows Credential Manager

MITREへのリンク →

APT41

Score: 4.72

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

APT33

Score: 11.09

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1003.005 - Cached Domain Credentials
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

MuddyWater

Score: 8.34

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1003.005 - Cached Domain Credentials

MITREへのリンク →

OilRig

Score: 14.71

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1003.005 - Cached Domain Credentials
T1555.004 - Windows Credential Manager
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

FIN6

Score: 7.47

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Malteiro

Score: 4.72

Matched TTPs:

T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

Kimsuky

Score: 4.72

Matched TTPs:

T1555.003 - Credentials from Web Browsers
T1078.003 - Local Accounts

MITREへのリンク →

Gamaredon Group

Score: 4.54

Matched TTPs:

T1001 - Data Obfuscation

MITREへのリンク →

Turla

Score: 6.29

Matched TTPs:

T1555.004 - Windows Credential Manager
T1078.003 - Local Accounts

MITREへのリンク →

Wizard Spider

Score: 6.37

Matched TTPs:

T1555.004 - Windows Credential Manager
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Mustard Tempest

Score: 4.54

Matched TTPs:

T1608.006 - SEO Poisoning

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

OilRig

Score: 0.73

Matched TTPs:

T1003.005 - Cached Domain Credentials
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol
T1555.003 - Credentials from Web Browsers
T1555 - Credentials from Password Stores
T1555.004 - Windows Credential Manager

MITREへのリンク →

Volt Typhoon

Score: 0.68

Matched TTPs:

T1588.006 - Vulnerabilities
T1552 - Unsecured Credentials
T1555 - Credentials from Password Stores
T1555.003 - Credentials from Web Browsers

MITREへのリンク →

APT33

Score: 0.58

Matched TTPs:

T1555 - Credentials from Password Stores
T1003.005 - Cached Domain Credentials
T1555.003 - Credentials from Web Browsers
T1048.003 - Exfiltration Over Unencrypted Non-C2 Protocol

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る