Posh C2 Detected – 79[.]143[.]181[.]62:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
Year: 2023
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: floortex[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: morningstarco[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Microsoft Edge (Chromium-based) privilege escalation | CVE-2023-36024
NAME__________Microsoft Edge (Chromium-based) privilege escalationPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:7.1Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to gain...
Seriously Simple Stats Plugin for WordPress SQL injection | CVE-2023-45001
NAME__________Seriously Simple Stats Plugin for WordPress SQL injectionPlatforms Affected:Online Art Gallery Project Online Art Gallery Project 1.0 WordPress Seriously Simple...
Microsoft Edge (Chromium-based) code execution | CVE-2023-36014
NAME__________Microsoft Edge (Chromium-based) code executionPlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to execute...
Golang Go weak security | CVE-2023-45284
NAME__________Golang Go weak securityPlatforms Affected:Golang Go 1.20.10 Golang Go 1.21.3Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Golang Go could provide weaker than expected security,...
HotelDruid cross-site scripting | CVE-2023-47164
NAME__________HotelDruid cross-site scriptingPlatforms Affected:HotelDruid HotelDruid 3.0.2 HotelDruid HotelDruid 3.0.3 HotelDruid HotelDruid 3.0.5Risk Level:6.1Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________HotelDruid is vulnerable to cross-site scripting,...
The Rise of Ransomware in Healthcare: What IT Leaders Need to Know
The intersection of healthcare, entrusted with our most personal and sensitive data, and cybersecurity paints a worrying picture. Hospitals, physicians'...
World’s largest commercial bank ICBC confirms ransomware attack
Image: Adrian Grycuk/CC BY-SA 3.0 PL Update November 10, 06:49 EST: The Industrial & Commercial Bank of China confirmed its...
McLaren Health Care says data breach impacted 2.2 million people
McLaren Health Care (McLaren) is notifying nearly 2.2 million people of a data breach that occurred between late July and August...
Microsoft: BlueNoroff hackers plan new crypto-theft attacks
Microsoft warns that the BlueNoroff North Korean hacking group is setting up new attack infrastructure for upcoming social engineering campaigns...
Mortgage giant Mr. Cooper says customer data exposed in breach
Mr. Cooper, the largest home loan servicer in the United States, says it found evidence of customer data exposed during...
Maine govt notifies 1.3 million people of MOVEit data breach
The State of Maine has announced that its systems were breached after threat actors exploited a vulnerability in the MOVEit file...
Hackers breach healthcare orgs via ScreenConnect remote access
Security researchers are warning that hackers are targeting multiple healthcare organizations in the U.S. by abusing the ScreenConnect remote access...
Russian APT Sandworm Disrupted Power in Ukraine Using Novel OT Techniques
Google-owned Mandiant has revealed that Sandowrm, a Russia-backed hacking group, conducted a disruptive cyber-attack targeting a Ukrainian critical infrastructure organization...
OpenAI Reveals ChatGPT Is Being DDoS-ed
ChatGPT developer OpenAI has admitted the cause of intermittent outages across its flagship generative AI offering over the past day:...
New Kamran Spyware Targets Urdu-Speaking Users in Pakistan
Security researchers have identified a watering-hole attack on a regional news website, Hunza News, which delivers news about Gilgit-Baltistan, a...
UK Shoppers Lost Nearly £11m to Fraud Last Festive Season
A leading UK security agency has warned of AI-generated fraud in the coming weeks, after citing new figures that shoppers...
Quishing Campaigns Spike 50% in September
Security researchers have detected a double-digit percentage increase in incidents involving QR code phishing (quishing), as cyber-criminals exploit employee use...
ICBC and Allen & Overy Hit By Ransomware
Two giants of the banking and legal sectors have been breached by suspected ransomware actors, according to reports.Allen & Overy...
MPs Dangerously Uninformed About Facial Recognition – Report
Most British lawmakers are unaware or misinformed about how and where facial recognition technology (FRT) is being used, and the...
MOVEit Gang Targets SysAid Customers With Zero-Day Attacks
Microsoft has revealed a new threat campaign exploiting a zero-day vulnerability in the popular SysAid IT helpdesk software.Posting to X...
