Cobalt Stike Beacon Detected – 43[.]245[.]199[.]163:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: May 2023
Cobalt Stike Beacon Detected – 139[.]59[.]224[.]38:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 31[.]44[.]184[.]88:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Dark Angel Victim: Gentex Corporation
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim: ANDRADE GUTIERREZ & ZAGOPE
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim: Incredible Technologies
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LibreOffice security bypass | CVE-2023-2255
NAME__________LibreOffice security bypassPlatforms Affected:LibreOffice LibreOffice 7.5.2 LibreOffice LibreOffice 7.4.6Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________LibreOffice could allow a remote attacker to bypass security...
Kopa Framework Plugin for WordPress cross-site request forgery | CVE-2022-47180
NAME__________Kopa Framework Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Kopa Framework Plugin for WordPress 1.3.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Kopa Framework Plugin...
TIBCO EBX Add-ons information disclosure | CVE-2023-26215
NAME__________TIBCO EBX Add-ons information disclosurePlatforms Affected:TIBCO EBX Add-ons 4.6.16Risk Level:7.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________TIBCO EBX Add-ons could allow a remote authenticated attacker...
Simple Share Buttons Adder Plugin for WordPress cross-site request forgery | CVE-2022-47178
NAME__________Simple Share Buttons Adder Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Simple Share Buttons Adder Plugin for WordPress 8.4.7Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
WP EasyPay Plugin for WordPress cross-site request forgery | CVE-2022-47177
NAME__________WP EasyPay Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Theme Tweaker Plugin for WordPress 5.20 WordPress WP EasyPay Plugin for...
WP-Advanced-Search Plugin for WordPress cross-site request forgery | CVE-2022-47447
NAME__________WP-Advanced-Search Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Theme Tweaker Plugin for WordPress 5.20 WordPress WP-Advanced-Search Plugin for WordPress 3.3.8Risk...
Performance Lab Plugin for WordPress cross-site request forgery | CVE-2022-47174
NAME__________Performance Lab Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Performance Lab Plugin for WordPress 2.2.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Performance Lab Plugin...
xili-tidy-tags Plugin for WordPress cross-site request forgery | CVE-2022-47448
NAME__________xili-tidy-tags Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress xili-tidy-tags Plugin for WordPress 1.12.03Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________xili-tidy-tags Plugin for WordPress is...
PyPI Implements Mandatory Two-Factor Authentication for Project Owners
The Python Package Index (PyPI) announced last week that every account that maintains a project on the official third-party software...
Don’t Click That ZIP File! Phishers Weaponizing .ZIP Domains to Trick Victims
A new phishing technique called "file archiver in the browser" can be leveraged to "emulate" a file archiver software in...
PyPI announces mandatory use of 2FA for all software publishers
The Python Package Index (PyPI) has announced that it will require every account that manages a project on the platform...
Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains
A new 'File Archivers in the Browser' phishing kit abuses ZIP domains by displaying fake WinRAR or Windows File Explorer...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on May 16, 2023. These...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Cisco Releases Security Advisory for Small Business Series Switches
Cisco Releases Security Advisory for Small Business Series Switches Cisco released a security advisory to address multiple vulnerabilities affecting the...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on May 23, 2023. These...
CISA: CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF)
CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF) Today, CISA, the Federal Bureau...
