Mac users targeted in new malvertising campaign delivering Atomic Stealer
Summary Malicious ads for Google searches are targeting Mac users Phishing sites trick victims into downloading what they believe is the...
Month: September 2023
CISA: Juniper Networks Releases Security Advisory for Junos OS and Junos OS Evolved
Juniper Networks Releases Security Advisory for Junos OS and Junos OS Evolved Juniper Networks has released a security advisory to...
CISA: Mozilla Releases Security Updates for Multiple Products
Mozilla Releases Security Updates for Multiple Products Mozilla has released security updates to address vulnerabilities for Firefox 117, Firefox ESR...
CISA: CISA and FBI Publish Joint Advisory on QakBot Infrastructure
CISA and FBI Publish Joint Advisory on QakBot Infrastructure Today, the Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on August 29, 2023. This...
CISA: VMware Releases Security Updates for Aria Operations for Networks
VMware Releases Security Updates for Aria Operations for Networks VMware has released security updates to address multiple vulnerabilities in Aria...
CISA: CISA Warns of Hurricane-Related Scams
CISA Warns of Hurricane-Related Scams CISA urges users to remain on alert for malicious cyber activity following natural disasters, such...
CISA: VMware Releases Security Update for Tools
VMware Releases Security Update for Tools VMware has released a security update to address a vulnerability in VMware Tools. A...
CISA: CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware
CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware Today, the United Kingdom’s National Cyber Security...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on September 5, 2023. These...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on August 31, 2023. These...
New Python Variant of Chaes Malware Targets Banking and Logistics Industries
Banking and logistics industries are under the onslaught of a reworked variant of a malware called Chaes. "It has undergone...
Way Too Vulnerable: Join this Webinar to Understand and Strengthen Identity Attack Surface
In today's digital age, it's not just about being online but how securely your organization operates online. Regardless of size...
Ukraine’s CERT Thwarts APT28’s Cyberattack on Critical Energy Infrastructure
The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical...
9 Alarming Vulnerabilities Uncovered in SEL’s Power Management Products
Nine security flaws have been disclosed in electric power management products made by Schweitzer Engineering Laboratories (SEL). "The most severe...
W3LL Store: How a Secret Phishing Syndicate Targets 8,000+ Microsoft 365 Accounts
A previously undocumented "phishing empire" has been linked to cyber attacks aimed at compromising Microsoft 365 business email accounts over...
New BLISTER Malware Update Fuelling Stealthy Network Infiltration
An updated version of a malware loader known as BLISTER is being used as part of SocGholish infection chains to...
Three CISOs Share How to Run an Effective SOC
The role of the CISO keeps taking center stage as a business enabler: CISOs need to navigate the complex landscape...
Akira Ransomware Victim: Energy One
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
GPAC interger overflow | CVE-2023-4722
NAME__________GPAC interger overflowPlatforms Affected:GPAC GPAC 2.3-DEV-revreleaseRisk Level:5.9Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________GPAC could allow a remote attacker to execute arbitrary...
Waiting: One-click countdowns Plugin for cross-site request forgery, | CVE-2023-4000
NAME__________Waiting: One-click countdowns Plugin for cross-site request forgery,Platforms Affected:WordPress One-click countdowns Plugin for WordPress 0.6.2Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Waiting: One-click countdowns...
GPAC stack-based buffer overflow | CVE-2023-4756
NAME__________GPAC stack-based buffer overflowPlatforms Affected:GPAC GPAC 2.3-DEV-revreleaseRisk Level:5.9Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________GPAC is vulnerable to a stack-based buffer overflow, caused...
General Solutions Steiner GmbH CASE 3 Taskmanagement cross-site scripting | CVE-2023-37827
NAME__________General Solutions Steiner GmbH CASE 3 Taskmanagement cross-site scriptingPlatforms Affected:General Solutions Steiner GmbH CASE 3 Taskmanagement 3.3Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________General...
GPAC denial of service | CVE-2023-4720
NAME__________GPAC denial of servicePlatforms Affected:GPAC GPAC 2.3-DEV-revreleaseRisk Level:3.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________GPAC is vulnerable to a denial of service,...
