North Korea-linked APTs use Maui Ransomware to target the Healthcare industry
US authorities have issued a joint advisory warning of North Korea-linked APTs using Maui ransomware in attacks against the Healthcare...
Month: July 2022
Mangatoon – 23,040,238 breached accounts
In May 2022, the Hong Kong based Manga service Mangatoon suffered a data breach that exposed 23M subscriber records. The...
ENISA released the Threat Landscape Methodology
I’m proud to announce that the European Union Agency for Cybersecurity, ENISA, has released the Threat Landscape Methodology. Policy makers,...
Cuba Ransomware Victim: Stm[.]com[.]tw
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cobalt Stike Beacon Detected – 45[.]9[.]150[.]54:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 117[.]50[.]184[.]149:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 209[.]141[.]54[.]23:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 134[.]209[.]94[.]26:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]44[.]132[.]80:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]223[.]217[.]110:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 118[.]31[.]7[.]165:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]198[.]187[.]234:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]132[.]244[.]178:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Google to delete location data of trips to abortion clinics
The historical overturning of Roe v. Wade in June prompted lawmakers and technology companies to respond with deep concern over...
Cobalt Stike Beacon Detected – 118[.]195[.]144[.]147:8090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]57[.]179[.]73:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]223[.]40[.]108:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]71[.]68[.]50:8033
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OrBit, a new sophisticated Linux malware still undetected
Cybersecurity researchers warn of new malware, tracked as OrBit, which is a fully undetected Linux threat. Cybersecurity researchers at Intezer...
Node.js dedicated-servers module code execution |
NAME Node.js dedicated-servers module code execution Platforms Affected:Node.js dedicated-serversRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js dedicated-servers module could allow a remote attacker...
MediaTek Android code execution | CVE-2022-20083
NAME MediaTek Android code execution Platforms Affected:MediaTek AndroidRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MediaTek Android could allow a remote attacker to execute...
Node.js @ovh-ui/oui-spinner module code execution |
NAME Node.js @ovh-ui/oui-spinner module code execution Platforms Affected:Node.js @ovh-ui/oui-spinnerRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @ovh-ui/oui-spinner module could allow a remote attacker...
Apache Commons Configuration code execution | CVE-2022-33980
NAME Apache Commons Configuration code execution Platforms Affected:Apache Commons Configuration 2.4 Apache Commons Configuration 2.5 Apache Commons Configuration 2.6 Apache...
MediaTek Android privilege escalation | CVE-2022-20082
NAME MediaTek Android privilege escalation Platforms Affected:MediaTek AndroidRisk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION MediaTek Android could allow a local attacker to gain...
