Experts Uncover Year-Long Cyber Attack on IT Firm Utilizing Custom Malware RDStealer
A highly targeted cyber attack against an East Asian IT company involved the deployment of a custom malware written in...
Month: June 2023
ASUS Releases Patches to Fix Critical Security Bugs Impacting Multiple Router Models
Taiwanese company ASUS on Monday released firmware updates to address, among other issues, nine security bugs impacting a wide range...
SaaS in the Real World: How Global Food Chains Can Secure Their Digital Dish
The Quick Serve Restaurant (QSR) industry is built on consistency and shared resources. National chains like McDonald's and regional ones...
LockBit 3.0 Ransomware Victim: tilg[.]at
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: valleyoaks[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cornu[.]ch
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: bbrook[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: absolutecal[.]co[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 118[.]195[.]244[.]102:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]207[.]41[.]129:6443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]37[.]208[.]189:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 27[.]157[.]101[.]14:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]116[.]76[.]16:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 167[.]99[.]239[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]243[.]249[.]38:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]211[.]124[.]124:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]100[.]65[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 194[.]50[.]153[.]35:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OISF Suricata directory traversal | CVE-2023-35852
NAME__________OISF Suricata directory traversalPlatforms Affected:OISF Suricata 6.0.12Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OISF Suricata could allow a remote attacker to traverse directories on...
GiveWP Plugin for WordPress cross-site request forgery | CVE-2023-25450
NAME__________GiveWP Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress GiveWP Plugin for WordPress 2.25.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GiveWP Plugin for WordPress is...
CTAPT Plugin for WordPress cross-site scripting | CVE-2023-25972
NAME__________CTAPT Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Ctapt Plugin for WordPress 3.7Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CTAPT Plugin for WordPress is vulnerable...
PHPGurukul Rail Pass Management System SQL injection | CVE-2023-3275
NAME__________PHPGurukul Rail Pass Management System SQL injectionPlatforms Affected:PHPGurukul Rail Pass Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________PHPGurukul Rail Pass Management System...
Multiple Hikvision products session hijacking | CVE-2023-28809
NAME__________Multiple Hikvision products session hijackingPlatforms Affected:Hikvision DS-K1T804AXX Hikvision DS-K1T341AXX Hikvision DS-K1T671XXX Hikvision DS-K1T343XXX Hikvision DS-K1T341C Hikvision DS-K1T320XXXRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Multiple...
Multiple Hikvision products security bypass | CVE-2023-28810
NAME__________Multiple Hikvision products security bypassPlatforms Affected:Hikvision DS-K1T804AXX Hikvision DS-K1T341AXX Hikvision DS-K1T671XXX Hikvision DS-K1T343XXX Hikvision DS-K1T341C Hikvision DS-K1T320XXX Hikvision DS-KH63 Series...
