Daily Threat Intelligence – April 14 – 2023
With the U.S. reaching the end of its tax season, scammers are using this ideal time to target taxpayers. In...
Month: April 2023
HackerOne Bug Bounty Disclosure: sensitive-information-disclosurebyashishmurugan
Programme HackerOne Trellix Trellix Submitted by ashishmurugan ashishmurugan Report Sensitive Information Disclosure Full Report A considerable amount of time...
Russia-Linked Hackers Launches Espionage Attacks on Foreign Diplomatic Entities
The Russia-linked APT29 (aka Cozy Bear) threat actor has been attributed to an ongoing cyber espionage campaign targeting foreign ministries...
Kodi Confirms Data Breach: 400K User Records and Private Messages Stolen
Open source media player software provider Kodi has confirmed a data breach after threat actors stole the company's MyBB forum...
LockBit 3.0 Ransomware Victim: fameline[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: piszcz[.]pl
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: steel-eye[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: sanden[.]com[.]ph
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: ktbs[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: knvb[.]nl
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: homeandhearthealth[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: sandycove[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Siemens Teamcenter Visualization and JT2Go buffer overflow | CVE-2023-1709
NAME__________Siemens Teamcenter Visualization and JT2Go buffer overflowPlatforms Affected:Siemens Teamcenter Visualization 14.0 Siemens Teamcenter Visualization 13.2 Siemens Teamcenter Visualization 13.3 Siemens...
Siemens SCALANCE X-200IRT man-in-the-middle | CVE-2023-2905
NAME__________Siemens SCALANCE X-200IRT man-in-the-middlePlatforms Affected:Siemens SCALANCE X200-4P IRT Siemens SCALANCE X201-3P IRT Siemens SCALANCE X201-3P IRT PRO Siemens SCALANCE X202-2IRT...
Siemens SIPROTEC 5 devices denial of service | CVE-2023-28766
NAME__________Siemens SIPROTEC 5 devices denial of servicePlatforms Affected:Siemens SIPROTEC 5 6MD89 (CP300) Siemens SIPROTEC 5 7KE85 (CP200) Siemens SIPROTEC 5...
LiveAction LiveSP cross-site scripting | CVE-2023-27775
NAME__________LiveAction LiveSP cross-site scriptingPlatforms Affected:Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________LiveAction LiveSPis vulnerable to cross-site scripting, caused by improper validation of user-supplied input...
ServiceNow cross-site scripting | CVE-2022-39048
NAME__________ServiceNow cross-site scriptingPlatforms Affected:Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ServiceNow is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by...
BlueZ code execution | CVE-2023-27349
NAME__________BlueZ code executionPlatforms Affected:BlueZ BlueZRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________BlueZ could allow a remote attacker to execute arbitrary code on the system,...
Textpattern CMS file upload | CVE-2023-26852
NAME__________Textpattern CMS file uploadPlatforms Affected:Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Textpattern CMS could allow a remote authenticated attacker to upload arbitrary files, caused...
PikPak information disclosure | CVE-2023-27703
NAME__________PikPak information disclosurePlatforms Affected:Risk Level:4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________PikPak could allow a local attacker to obtain sensitive information, caused by a flaw...
Autodesk Maya code execution | CVE-2023-27907
NAME__________Autodesk Maya code executionPlatforms Affected:Autodesk Maya USD Plugin 0.22.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Autodesk Maya could allow a remote attacker to execute...
Siemens Mendix Forgot Password information disclosure | CVE-2023-27464
NAME__________Siemens Mendix Forgot Password information disclosurePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Siemens Mendix Forgot Password could allow a remote attacker to obtain...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
Void Tools Everything denial of service | CVE-2023-27704
NAME__________Void Tools Everything denial of servicePlatforms Affected:Risk Level:4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Void Tools Everything is vulnerable to a denial of service,...
