Threat actors exploit a flaw in Digium Phone Software to target VoIP servers
Threat actors are targeting VoIP servers by exploiting a vulnerability in Digium’s software to install a web shell, Palo Alto...
Year: 2022
Kubeaudit – Tool To Audit Your Kubernetes Clusters Against Common Security Controls
kubeaudit is a command line tool and a Go package to audit Kubernetes clusters for various different security concerns, such...
Famm – 535,240 breached accounts
In late 2020, the Japanese family photos website Famm suffered a data breach that subsequently exposed 1.3M customer records, including...
Eskimi – 1,197,620 breached accounts
In late 2020, the AdTech platform Eskimi suffered a data breach that exposed 26M records with 1.2M unique email addresses....
Cobalt Stike Beacon Detected – 185[.]81[.]68[.]45:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 180[.]178[.]36[.]51:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 49[.]232[.]222[.]254:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Node.js html-live-player module code execution |
NAME Node.js html-live-player module code execution Platforms Affected:Node.js html-live-playerRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js html-live-player module could allow a remote attacker...
Honeywell Alerton Ascent Control Module (ACM) code execution | CVE-2022-30244
NAME Honeywell Alerton Ascent Control Module (ACM) code execution Platforms Affected:Honeywell Alerton Ascent Control Module (ACM) 2022-05-04Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
Node.js patrick-test2 module code execution |
NAME Node.js patrick-test2 module code execution Platforms Affected:Node.js patrick-test2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js patrick-test2 module could allow a remote attacker...
Siemens SCALANCE X Switch Devices brute force | CVE-2022-26647
NAME Siemens SCALANCE X Switch Devices brute force Platforms Affected:Siemens SCALANCE X200-4P IRT (6GK5200-4AH00- 2BA3) Siemens SCALANCE X200-4P IRT (6GK5200-4AH10-...
Schneider Electric Easergy P5 buffer overflow | CVE-2022-34756
NAME Schneider Electric Easergy P5 buffer overflow Platforms Affected:Schneider Electric Easergy P5 01.401.102Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Schneider Electric Easergy P5...
Siemens EN100 Ethernet modules denial of service | CVE-2022-30938
NAME Siemens EN100 Ethernet modules denial of service Platforms Affected:Siemens EN100 Ethernet module IEC 61850 variant 4.20 Siemens EN100 Ethernet...
Node.js @releasebuildr/ui module code execution |
NAME Node.js @releasebuildr/ui module code execution Platforms Affected:Node.js @releasebuildr/uiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @releasebuildr/ui module could allow a remote attacker...
Node.js releasebuildr module code execution |
NAME Node.js releasebuildr module code execution Platforms Affected:Node.js releasebuildrRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js releasebuildr module could allow a remote attacker...
Node.js indy-vdr-shared module code execution |
NAME Node.js indy-vdr-shared module code execution Platforms Affected:Node.js indy-vdr-sharedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js indy-vdr-shared module could allow a remote attacker...
Honeywell Alerton Visual Logic code execution | CVE-2022-30243
NAME Honeywell Alerton Visual Logic code execution Platforms Affected:Honeywell Alerton Visual Logic 2022-05-04Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Honeywell Alerton Visual Logic...
Schneider Electric SpaceLogic C-Bus Home Controller command execution | CVE-2022-34753
NAME Schneider Electric SpaceLogic C-Bus Home Controller command execution Platforms Affected:Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) 1.31.460Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access...
Tainted password-cracking software for industrial systems used to spread P2P Sality bot
Dragos researchers uncovered a small-scale campaign targeting industrial engineers and operators with Sality malware. During a routine vulnerability assessment, Dragos...
Black Basta Ransomware Victim: KNAUF
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: WALLWORKINC
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: C2CORP
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: ttdwest
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: paradise
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
