Cybercrime Group ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering
A threat actor known as Muddled Libra is targeting the business process outsourcing (BPO) industry with persistent attacks that leverage...
Month: June 2023
Black Basta Ransomware Victim: M&M Industries
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
NOESCAPE Ransomware Victim: Promotion Fulfillment Center
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Cyril Johnston Hire
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
The Power of Browser Fingerprinting: Personalized UX, Fraud Detection, and Secure Logins
The case for browser fingerprinting: personalizing user experience, improving fraud detection, and optimizing login security Have you ever heard of...
NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems
The U.S. National Security Agency (NSA) on Thursday released guidance to help organizations detect and prevent infections of a Unified...
Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware
A new strain of JavaScript dropper has been observed delivering next-stage payloads like Bumblebee and IcedID. Cybersecurity firm Deep Instinct...
Cobalt Stike Beacon Detected – 47[.]241[.]225[.]61:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]220[.]160[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 118[.]178[.]133[.]227:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 119[.]91[.]144[.]175:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]223[.]118[.]115:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]15[.]107[.]182:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Silicon Labs Z/IP Gateway buffer overflow | CVE-2023-0970
NAME__________Silicon Labs Z/IP Gateway buffer overflowPlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Silicon Labs Z/IP Gateway is vulnerable to...
Makves DCAP information disclosure | CVE-2023-27243
NAME__________Makves DCAP information disclosurePlatforms Affected:Makves DCAP 3.0.0.122Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Makves DCAP could allow a remote attacker to obtain sensitive information,...
Zoho ManageEngine ADSelfService Plus security bypass | CVE-2023-35719
NAME__________Zoho ManageEngine ADSelfService Plus security bypassPlatforms Affected:Zoho ManageEngine ADSelfService PlusRisk Level:6.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Zoho ManageEngine ADSelfService Plus could allow a physical...
Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance cross-site scripting | CVE-2023-20120
NAME__________Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance cross-site scriptingPlatforms Affected:Cisco Secure Email...
urlnorm Rust crate denial of service | CVE-2023-33289
NAME__________urlnorm Rust crate denial of servicePlatforms Affected:progscrape urlnorm 0.1.4Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________urlnorm Rust crate is vulnerable to a denial...
Dell PowerStore weak security | CVE-2023-33289
NAME__________Dell PowerStore weak securityPlatforms Affected:Dell PowerStore 3.4Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Dell PowerStore could provide weaker than expected security, caused by an...
Apple CUPS cupsdAcceptClient() denial of service | CVE-2023-34241
NAME__________Apple CUPS cupsdAcceptClient() denial of servicePlatforms Affected:Apple CUPS 2.4Risk Level:7.7Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Apple CUPS is vulnerable to a...
Silicon Labs Z/IP Gateway information disclosure | CVE-2023-0969
NAME__________Silicon Labs Z/IP Gateway information disclosurePlatforms Affected:Silicon Labs Z/IP Gateway 7.18.01Risk Level:3.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Silicon Labs Z/IP Gateway could allow a...
SpiderControl SCADAWebServer denial of service | CVE-2023-3329
NAME__________SpiderControl SCADAWebServer denial of servicePlatforms Affected:SpiderControl SCADAWebServer 2.0.8Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SpiderControl SCADAWebServer is vulnerable to a denial of service,...
New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices
Internet-facing Linux systems and Internet of Things (IoT) devices are being targeted as part of a new campaign designed to...
8 Base Ransomware Victim: FrameOne
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
