CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 8, 2023. These...
Year: 2023
CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS
Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on August 17, 2023. These...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A cyber...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: Atlassian Releases Security Update for Confluence Server and Data Center
Atlassian Releases Security Update for Confluence Server and Data Center Atlassian has released its security bulletin for August 2023 to...
US-CERT Vulnerability Summary for the Week of August 7, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info phoenixcontact -- wp_6xxx_series In PHOENIX CONTACTs WP 6xxx series web panels...
Bryobio – NETWORK Pcap File Analysis
NETWORK Pcap File Analysis, It was developed to speed up the processes of SOC Analysts during analysis Tested OK DebianOK...
CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS
Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...
New BlackCat Ransomware Variant Adopts Advanced Impacket and RemCom Tools
Microsoft on Thursday disclosed that it found a new version of the BlackCat ransomware (aka ALPHV and Noberus) that embeds...
Google Chrome’s New Feature Alerts Users About Auto-Removal of Malicious Extensions
Google has announced plans to add a new feature in the upcoming version of its Chrome web browser to alert...
The Vulnerability of Zero Trust: Lessons from the Storm 0558 Hack
While IT security managers in companies and public administrations rely on the concept of Zero Trust, APTS (Advanced Persistent Threats)...
14 Suspected Cybercriminals Arrested Across Africa in Coordinated Crackdown
A coordinated law enforcement operation across 25 African countries has led to the arrest of 14 suspected cybercriminals, INTERPOL announced...
New Wave of Attack Campaign Targeting Zimbra Email Users for Credential Theft
A new "mass-spreading" social engineering campaign is targeting users of the Zimbra Collaboration email server with an aim to collect...
Catching up with WoofLocker, the most elaborate traffic redirection scheme to tech support scams
Back in January 2020, we blogged about a tech support scam campaign dubbed WoofLocker that was by far using the...
Akira Ransomware Victim: RIMSS
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Genesys Administrator Extension cross-site scripting | CVE-2023-23208
NAME__________Genesys Administrator Extension cross-site scriptingPlatforms Affected:Genesys Administrator Extension 9.0.104.18 Genesys Administrator Extension 9.0.104.17 Genesys Administrator Extension 9.0.104.16Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Genesys...
a3 Portfolio Plugin for WordPress cross-site scripting |
NAME__________a3 Portfolio Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress a3 Portfolio Plugin for WordPress 3.1.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________a3 Portfolio Plugin for...
Parsec Loader privilege escalation | US-CERT VU#287122
NAME__________Parsec Loader privilege escalationPlatforms Affected:Parsec Parsec Loader 7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Parsec Loader could allow a local authenticated attacker to gain...
InfiniteWP Client Plugin for WordPress information disclosure | CVE-2023-2916
NAME__________InfiniteWP Client Plugin for WordPress information disclosurePlatforms Affected:WordPress InfiniteWP Client Plugin for WordPress 1.11.1Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________InfiniteWP Client Plugin for...
Image Optimizer by 10web Plugin for WordPress cross-site scripting | CVE-2023-2122
NAME__________Image Optimizer by 10web Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Image Optimizer by 10web Plugin for WordPress 1.0.26Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting...
Zyxel XGS2220-30 denial of service | CVE-2023-28768
NAME__________Zyxel XGS2220-30 denial of servicePlatforms Affected:Zyxel XGS2220-30 4.80(ABXN.1) Zyxel XGS2220-30F 4.80(ABYE.1) Zyxel XGS2220-30HP 4.80(ABXO.1) Zyxel XGS2220-54 4.80(ABXP.1) Zyxel XGS2220-54FP 4.80(ACCE.1)...
PDF-XChange Editor information disclosure | CVE-2023-39504
NAME__________PDF-XChange Editor information disclosurePlatforms Affected:PDF-XChange Editor 9.4.363.0Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to obtain sensitive information,...
Cisco P Phone 6800, 7800, and 8800 Series cross-site request forgery | CVE-2023-20237
NAME__________Cisco P Phone 6800, 7800, and 8800 Series cross-site request forgeryPlatforms Affected:Cisco IP Phone 6800 Series Phones with Multiplatform Firmware...
