Rug Pull Schemes: Crypto Investor Losses Near $1M
Check Point’s Threat Intel Blockchain system has revealed a new scam, shedding light on the persistent threat of Rug Pulls –...
Year: 2023
University of Manchester CISO Speaks Out on Summer Cyber-Attack
The University of Manchester’s CISO has highlighted how the institution approached remediation and recovery following the damaging cyber-incident it experienced...
US-CERT Vulnerability Summary for the Week of November 13, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocheckpoint -- endpoint_securityLocal attacker can escalate privileges on affected installations of Check...
ICS-Forensics-Tools – Microsoft ICS Forensics Framework
Microsoft ICS Forensics Tools is an open source forensic framework for analyzing Industrial PLC metadata and project files. it enables...
Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks
A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive...
Black Basta Ransomware Victim: etude-villa[.]fr
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: agrovi[.]dk
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: arenaproducts[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Mirai-based Botnet Exploiting Zero-Day Bugs in Routers and NVRs for Massive DDoS Attacks
An active malware campaign is leveraging two zero-day vulnerabilities with remote code execution (RCE) functionality to rope routers and video...
N. Korean Hackers Distribute Trojanized CyberLink Software in Supply Chain Attack
A North Korean state-sponsored threat actor tracked as Diamond Sleet is distributing a trojanized version of a legitimate application developed...
6 Steps to Accelerate Cybersecurity Incident Response
Modern security tools continue to improve in their ability to defend organizations' networks and endpoints against cybercriminals. But the bad...
LockBit 3.0 Ransomware Victim: officinaverdedesign[.]it
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Zimbra Collaboration Suite cross-site scripting | CVE-2023-43103
NAME__________Zimbra Collaboration Suite cross-site scriptingPlatforms Affected:Zimbra Zimbra Collaboration SuiteRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zimbra Collaboration Suite is vulnerable to cross-site scripting, caused...
Cubecart command execution | CVE-2023-47675
NAME__________Cubecart command executionPlatforms Affected:CubeCart CubeCart 6.5.2Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cubecart could allow a remote attacker to execute arbitrary commands on the...
Zimbra Collaboration Suite cross-site scripting | CVE-2023-43102
NAME__________Zimbra Collaboration Suite cross-site scriptingPlatforms Affected:Zimbra Zimbra Collaboration SuiteRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Zimbra Collaboration Suite is vulnerable to cross-site scripting, caused...
ANAC XML Bandi di Gara Plugin for WordPress cross-site scripting | CVE-2023-47656
NAME__________ANAC XML Bandi di Gara Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress ANAC XML Bandi di Gara Plugin for WordPress 7.5Risk...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39546
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
Honeywell ProWatch code execution | CVE-2023-6179
NAME__________Honeywell ProWatch code executionPlatforms Affected:Honeywell ProWatch 4.5Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Honeywell ProWatch could allow a local authenticated attacker to execute arbitrary...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39545
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39547
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command execution | CVE-2023-39544
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
Actueel Financieel Nieuws Denk Internet Solutions Plugin for WordPress cross-site scripting | CVE-2023-47554
NAME__________Actueel Financieel Nieuws Denk Internet Solutions Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Actueel Financieel Nieuws Denk Internet Solutions...
Cubecart cross-site directory traversal | CVE-2023-47283
NAME__________Cubecart cross-site directory traversalPlatforms Affected:CubeCart CubeCart 6.5.2Risk Level:2.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Cubecart could allow a remote attacker to traverse directories on the...
Cubecart cross-site directory traversal | CVE-2023-42428
NAME__________Cubecart cross-site directory traversalPlatforms Affected:CubeCart CubeCart 6.5.2Risk Level:2.7Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Cubecart could allow a remote attacker to traverse directories on the...
