CISA: Ivanti Releases Security Updates for EPMM to address CVE-2023-35081
Ivanti Releases Security Updates for EPMM to address CVE-2023-35081 Ivanti has identified and released patches for a directory traversal vulnerability(link...
Year: 2023
CISA: CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse
CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse The Australian Signals Directorate’s Australian Cyber...
CISA: CISA Releases Malware Analysis Reports on Barracuda Backdoors
CISA Releases Malware Analysis Reports on Barracuda Backdoors CISA has published three malware analysis reports on malware variants associated with...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on July 27, 2023. These...
US-CERT Vulnerability Summary for the Week of July 17, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infooliva_expertise -- oliva_expertise_eks Improper Neutralization of Special Elements used in an SQL...
HackerOne Bug Bounty Disclosure: b-disavowed-an-email-without-any-authentication-b-sameersec
Company Name: b'Liberapay' Company HackerOne URL: https://hackerone.com/liberapay Submitted By:b'sameersec'Link to Submitters Profile:https://hackerone.com/b'sameersec' Report Title:b'Disavowed an email without any authentication'Report Link:https://hackerone.com/reports/2088808Date...
HackerOne Bug Bounty Disclosure: b-crash-report-cloudflare-warp-doesn-t-verify-text-length-in-excluded-host-name-input-data-b-shewhoisblack
Company Name: b'Cloudflare Public Bug Bounty' Company HackerOne URL: https://hackerone.com/cloudflare Submitted By:b'shewhoisblack'Link to Submitters Profile:https://hackerone.com/b'shewhoisblack' Report Title:b'Crash report -Cloudflare WARP...
HackerOne Bug Bounty Disclosure: b-register-create-a-ticket-as-somebody-else-on-hackerone-support-b-t
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'735t'Link to Submitters Profile:https://hackerone.com/b'735t' Report Title:b'Register & create a ticket as somebody...
HackerOne Bug Bounty Disclosure: b-takeover-of-hackerone-engineering-via-github-b-m-chan
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'm0chan'Link to Submitters Profile:https://hackerone.com/b'm0chan' Report Title:b'Takeover of hackerone.engineering via Github'Report Link:https://hackerone.com/reports/2085260Date Submitted:31...
New P2PInfect Worm Targets Redis Servers with Undocumented Breach Methods
The P2PInfect peer-to-peer (P2) worm has been observed employing previously undocumented initial access methods to breach susceptible Redis servers and...
Dark Angel Victim: Sysco Corporation
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Patchwork Hackers Target Chinese Research Organizations Using EyeShell Backdoor
Threat actors associated with the hacking crew known as Patchwork have been spotted targeting universities and research organizations in China...
Webinar: Riding the vCISO Wave: How to Provide vCISO Services
Demand for Virtual CISO services is soaring. According to Gartner, the use of vCISO services among small and mid-size businesses...
AVRecon Botnet Leveraging Compromised Routers to Fuel Illegal Proxy Service
More details have emerged about a botnet called AVRecon, which has been observed making use of compromised small office/home office...
Akira Ransomware Victim: Handi Quilter
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Offutt Nord
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Morehead State Unive rsity (MSU)
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Frost & Sullivan
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: westoaksschool[.]co[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: twv-staderland[.]de
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: llombart[.]de
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Dark Angel Victim:
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Dark Angel Victim:
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
