Play Ransomware Victim: Majestic Spice
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: September 2023
Play Ransomware Victim: Master Interiors
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
US-CERT Vulnerability Summary for the Week of August 21, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoqemu -- qemuThe hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model...
Meta Takes Down Thousands of Accounts Involved in Disinformation Ops from China and Russia
Meta has disclosed that it disrupted two of the largest known covert influence operations in the world from China and...
Researchers Warn of Cyber Weapons Used by Lazarus Group’s Andariel Cluster
The North Korean threat actor known as Andariel has been observed employing an arsenal of malicious tools in its cyber...
Key Cybersecurity Tools That Can Mitigate the Cost of a Breach
IBM's 2023 installment of their annual "Cost of a Breach" report has thrown up some interesting trends. Of course, breaches...
Akira Ransomware Victim: Green Diamond Resour ce
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Renton School Distri ct
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Children’s Home of W yoming Conference
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: O’Brien Steel Servic e
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Rivers Casino
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: New York & Company
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Ninja Forms Plugin for WordPress cross-site scripting | CVE-2023-4150
NAME__________Ninja Forms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Ninja Forms Plugin for WordPress 3.6.25Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Ninja Forms Plugin for...
User Activity Tracking and Log Plugin for WordPress cross-site request forgery | CVE-2023-4150
NAME__________User Activity Tracking and Log Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress User Activity Tracking and Log Plugin for WordPress...
IBM Sterling Secure Proxy information disclosure | CVE-2023-32338
NAME__________IBM Sterling Secure Proxy information disclosurePlatforms Affected:IBM Sterling Secure Proxy 6.0.3 IBM Sterling External Authentication Server 6.0.3 IBM Sterling External...
Realgimm file upload | CVE-2023-41638
NAME__________Realgimm file uploadPlatforms Affected:GruppoSCAI RealGimm 1.1.37p38Risk Level:5.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Realgimm could allow a remote attacker to upload arbitrary files, caused by...
GPAC denial of service | CVE-2023-4678
NAME__________GPAC denial of servicePlatforms Affected:GPAC GPAC 2.3-DEV-revreleaseRisk Level:4.4Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________GPAC is vulnerable to a denial of service,...
IBM Sterling Secure Proxy information disclosure | CVE-2023-29261
NAME__________IBM Sterling Secure Proxy information disclosurePlatforms Affected:IBM Sterling External Authentication Server 6.0.3 IBM Sterling External Authentication Server 6.1.0Risk Level:5.1Exploitability:UnprovenConsequences:Obtain Information...
Realgimm file upload | CVE-2023-41637
NAME__________Realgimm file uploadPlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Realgimm could allow a remote attacker to upload arbitrary files, caused by the improper...
Realgimm SQL injection | CVE-2023-41636
NAME__________Realgimm SQL injectionPlatforms Affected:GruppoSCAI RealGimm 1.1.37p38Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Realgimm is vulnerable to SQL injection. A remote attacker could send specially-crafted...
Realgimm XML External Entity Injection (XXE) information disclosure | CVE-2023-41635
NAME__________Realgimm XML External Entity Injection (XXE) information disclosurePlatforms Affected:GruppoSCAI RealGimm 1.1.37p38Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Realgimm is vulnerable to an XML External...
Realgimm SQL Injection | CVE-2023-41640
NAME__________Realgimm SQL InjectionPlatforms Affected:GruppoSCAI RealGimm 1.1.37p38Risk Level:6.5Exploitability:HighConsequences:Obtain Information DESCRIPTION__________Realgimm is vulnerable to SQL injection. A remote attacker could send specially-crafted...
Waiting: One-click countdowns Plugin for cross-site request forgery, | CVE-2023-4000
NAME__________Waiting: One-click countdowns Plugin for cross-site request forgery,Platforms Affected:WordPress One-click countdowns Plugin for WordPress 0.6.2Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Waiting: One-click countdowns...
IBM Security Guardium denial of service | CVE-2022-43903
NAME__________IBM Security Guardium denial of servicePlatforms Affected:IBM Security Guardium 10.6 IBM Security Guardium 11.3 IBM Security Guardium 11.4Risk Level:4.3Exploitability:UnprovenConsequences:Denial of...
