Cobalt Stike Beacon Detected – 194[.]55[.]224[.]169:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: May 2023
Cobalt Stike Beacon Detected – 1[.]117[.]144[.]13:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
US-CERT Vulnerability Summary for the Week of May 8, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Cbrutekrag – Penetration Tests On SSH Servers Using Brute Force Or Dictionary Attacks. Written In C
Penetration tests on SSH servers using dictionary attacks. Written in C. brute krag means "brute force" in afrikáans Disclaimer This...
RustChain – Hide Memory Artifacts Using ROP And Hardware Breakpoints
This tool is a simple PoC of how to hide memory artifacts using a ROP chain in combination with hardware...
BianLian Ransomware Victim: Altstadt Hoffman Plumbing
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Bedford Lodge Hotel
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: CADOpt Technologies
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Vascular Center of Intervention
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Albany ENT & Allergy Services
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: North Shore Medical Labs
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: Hermes Medical Solutions
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: B&R Eckel’s Transport
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware Victim: DA Alexander Company INC
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Daily Threat Intelligence – May 17 – 2023
Ransomware attacks are increasing at an alarming rate. Law enforcement agencies have released a joint advisory underlining threats on critical...
HackerOne Bug Bounty Disclosure: anyone-can-view-the-results-of-linkedin-skill-test–if-failed-to-earn-a-badge-or-if-the-badge-earned-is-kept-private:-both-cases-results-can-be-viewedbymarvelmaniac
Programme HackerOne LinkedIn LinkedIn Submitted by marvelmaniac marvelmaniac Report Anyone can view the results of linkedin skill test -if failed...
HackerOne Bug Bounty Disclosure: cve-2023-28320:-siglongjmp-race-conditionbynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CVE-2023-28320: siglongjmp race condition Full Report A considerable amount of...
HackerOne Bug Bounty Disclosure: users-can-set-up-workflows-using-restricted-and-invisible-system-tagsbymaxime_le-hericy
Programme HackerOne Nextcloud Nextcloud Submitted by maxime_le-hericy maxime_le-hericy Report Users can set up workflows using restricted and invisible system tags...
Identifying a Patch Management Solution: Overview of Key Criteria
Software is rarely a one-and-done proposition. In fact, any application available today will likely need to be updated – or...
OilAlpha: Emerging Houthi-linked Cyber Threat Targets Arabian Android Users
A hacking group dubbed OilAlpha with suspected ties to Yemen's Houthi movement has been linked to a cyber espionage campaign...
Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover
A financially motivated cyber actor has been observed abusing Microsoft Azure Serial Console on virtual machines (VMs) to install third-party...
State-Sponsored Sidewinder Hacker Group’s Covert Attack Infrastructure Uncovered
Cybersecurity researchers have unearthed previously undocumented attack infrastructure used by the prolific state-sponsored group SideWinder to strike entities located in...
Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs
The second generation version of Belkin's Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that...
LockBit 3.0 Ransomware Victim: wings[.]travel
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
