LockBit 3.0 Ransomware Victim: americantilestone[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: September 2022
HackerOne Bug Bounty Disclosure: no-restriction-on-passwordbypatronum-m
Programme HackerOne GitLab GitLab Submitted by patronum-m patronum-m Report No Restriction on password Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: redos-in-net/http-affects-webhooks:-sidekiq-job-stuck-at-100%-cpu-for-a-yearbyafewgoats
Programme HackerOne GitLab GitLab Submitted by afewgoats afewgoats Report ReDoS in net/http affects webhooks: Sidekiq job stuck at 100% CPU...
HackerOne Bug Bounty Disclosure: xss-in-http://www-glassdoor-com/search/results-htm-via-parameter-pollutionbynokline
Programme HackerOne Glassdoor Glassdoor Submitted by nokline nokline Report XSS in http://www.glassdoor.com/Search/results.htm via Parameter Pollution Full Report A considerable amount...
HackerOne Bug Bounty Disclosure: rce-via-the-decompressedarchivesizevalidator-and-project-bulkimports-(behind-feature-flag)byvakzz
Programme HackerOne GitLab GitLab Submitted by vakzz vakzz Report RCE via the DecompressedArchiveSizeValidator and Project BulkImports (behind feature flag) Full...
HackerOne Bug Bounty Disclosure: web-cache-poisoning-leads-to-xss-and-dosbynokline
Programme HackerOne Glassdoor Glassdoor Submitted by nokline nokline Report Web Cache Poisoning leads to XSS and DoS Full Report A...
HackerOne Bug Bounty Disclosure: dos-validator-nodes-of-blockchain-to-block-external-connectionsbycre8
Programme HackerOne Hyperledger Hyperledger Submitted by cre8 cre8 Report DOS validator nodes of blockchain to block external connections Full Report...
Cyber espionage campaign targets Asian countries since 2021
A cyber espionage group targets governments and state-owned organizations in multiple Asian countries since early 2021. Threat actors are targeting...
Trend Micro addresses actively exploited Apex One zero-day
Trend Micro addressed multiple vulnerabilities in its Apex One endpoint security product, including actively exploited zero-day flaws. Trend Micro announced...
Iran-linked TA453 used new Multi-Persona Impersonation technique in recent attacks
Iran-linked threat actors target individuals specializing in Middle Eastern affairs, nuclear security and genome research. In mid-2022, Proofpoint researchers uncovered...
Cobalt Stike Beacon Detected – 47[.]100[.]253[.]207:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]42:82
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]70[.]88[.]208:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]192[.]92[.]147:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]42:10443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]61[.]139[.]132:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]130[.]45[.]148:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]4[.]254[.]197:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]143[.]223[.]42:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]232[.]198[.]235:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]26[.]157:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]35[.]198[.]64:60001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]138[.]243[.]184:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Apple macOS Monterey, iOS and iPadOS privilege escalation | CVE-2022-32911
NAME Apple macOS Monterey, iOS and iPadOS privilege escalation Platforms Affected:Apple macOS Monterey 12.5 Apple iOS 15.6 Apple iPadOS 15.6Risk...
