CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Month: October 2023
CISA: Apple Releases Security Advisories for Multiple Products
Apple Releases Security Advisories for Multiple Products Apple has released security updates to address vulnerabilities in multiple products. A cyber...
CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities With Additional Releases
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities With Additional Releases Today, CISA updated its guidance addressing...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on October 26, 2023. These...
CISA: CISA Announces Launch of Logging Made Easy
CISA Announces Launch of Logging Made Easy Today, CISA announces the launch of a new version of Logging Made Easy (LME)(link...
US-CERT Vulnerability Summary for the Week of October 16, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformAffected 1E Platform versions have a Blind SQL Injection vulnerability...
CloudPulse – AWS Cloud Landscape Search Engine
During the reconnaissance phase, an attacker searches for any information about his target to create a profile that will later...
HackerOne Bug Bounty Disclosure: b-security-bug-https-bugzilla-mozilla-org-oauth-authorize-crlf-header-injection-via-redirect-uri-parameter-b-oja
Company Name: b'Mozilla Critical Services' Company HackerOne URL: https://hackerone.com/mozilla_critical_services Submitted By:b'oja'Link to Submitters Profile:https://hackerone.com/b'oja' Report Title:b'Security bug https://bugzilla.mozilla.org/oauth/authorize - CRLF...
Play Ransomware Victim: Drug Emporium
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Bush Refrigeration
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: KDI Office Technology
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Het Veer
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Play Ransomware Victim: Online Development
Play News Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: VOLEX[.]COM
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: Fortive Corporation
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Researchers Uncover Wiretapping of XMPP-Based Instant Messaging Service
New findings have shed light on what's said to be a lawful attempt to covertly intercept traffic originating from jabberru...
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: boeing[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: boeing[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tilden-coil[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Sticky Notes App cross-site scripting | CVE-2023-5791
NAME__________Sticky Notes App cross-site scriptingPlatforms Affected:Sourcecodester Sticky Notes Apps 1.0Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Sticky Notes App is vulnerable to cross-site scripting,...
RabbitMQ Server denial of service | CVE-2023-46118
NAME__________RabbitMQ Server denial of servicePlatforms Affected:RabbitMQ RabbitMQ Server 3.11.23 RabbitMQ RabbitMQ Server 3.12.6Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________RabbitMQ Server is vulnerable...
IDAttend IDWeb information disclosure | CVE-2023-27259
NAME__________IDAttend IDWeb information disclosurePlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to obtain sensitive information,...
IDAttend IDWeb information disclosure | CVE-2023-27376
NAME__________IDAttend IDWeb information disclosurePlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to obtain sensitive information,...
