Another Critical Unauthenticated SQLi Flaw Discovered in MOVEit Transfer Software
Progress Software has announced the discovery and patching of a critical SQL injection vulnerability in MOVEit Transfer, popular software used...
Year: 2023
Mastodon Social Network Patches Critical Flaws Allowing Server Takeover
Mastodon, a popular decentralized social network, has released a security update to fix critical vulnerabilities that could expose millions of...
Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
Google has released its monthly security updates for the Android operating system, addressing 46 new software vulnerabilities. Among these, three...
BlackByte 2.0 Ransomware: Infiltrate, Encrypt, and Extort in Just 5 Days
Ransomware attacks are a major problem for organizations everywhere, and the severity of this problem continues to intensify. Recently, Microsoft's...
Close Security Gaps with Continuous Threat Exposure Management
CISOs, security leaders, and SOC teams often struggle with limited visibility into all connections made to their company-owned assets and...
Cybersecurity Agencies Sound Alarm on Rising TrueBot Malware Attacks
Cybersecurity agencies have warned about the emergence of new variants of the TrueBot malware. This enhanced threat is now targeting...
How Pen Testing can Soften the Blow on Rising Costs of Cyber Insurance
As technology advances and organizations become more reliant on data, the risks associated with data breaches and cyber-attacks also increase....
Akira Ransomware Victim: Pinnergy
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: 4LEAF, Inc
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: betalandservices[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: gacegypt[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: chasc[.]org
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: siegfried[.]com[.]mx
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cls-group[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Malware Analysis – coper – 49f67ec7bcfd5d8b01c1fb92820481f5
Score: 10 MALWARE FAMILY: coperTAGS:family:coper, family:octo, banker, evasion, infostealer, ransomware, rat, trojanMD5: 49f67ec7bcfd5d8b01c1fb92820481f5SHA1: 19bf5e03023516b25bd2d0747773186911bdbf2fANALYSIS DATE: 2023-07-07T08:10:51ZTTPS: ScoreMeaningExample10Known badA malware family...
Malware Analysis – ransomware – e7e442f7f42d61cdebfddc801f4b03dc
Score: 9 MALWARE FAMILY: ransomwareTAGS:ransomwareMD5: e7e442f7f42d61cdebfddc801f4b03dcSHA1: 3b16dbc84446cb30963b4886600b16b4cb545dd7ANALYSIS DATE: 2023-07-07T08:35:42ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more known damaging...
Malware Analysis – ransomware – 99a4a7145a78577d18ab6547210e5fec
Score: 10 MALWARE FAMILY: ransomwareTAGS:ransomware, spyware, stealerMD5: 99a4a7145a78577d18ab6547210e5fecSHA1: 20374dec61f839f1392bab96fc8e71f0e18ff334ANALYSIS DATE: 2023-07-07T06:25:15ZTTPS: T1005, T1081, T1012 ScoreMeaningExample10Known badA malware family was detected.8-9Likely...
Malware Analysis – banker – 3e7f87ff8fba7c78349284a6f4b9838b
Score: 8 MALWARE FAMILY: bankerTAGS:banker, evasion, ransomwareMD5: 3e7f87ff8fba7c78349284a6f4b9838bSHA1: 7d3f3b9cf7834b490f4ebfd7b714de5ba7ac67cbANALYSIS DATE: 2023-07-07T06:43:06ZTTPS: ScoreMeaningExample10Known badA malware family was detected.8-9Likely maliciousOne or more...
Mediatek Android denial of service | CVE-2023-20759
NAME__________Mediatek Android denial of servicePlatforms Affected:MediaTek AndroidRisk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mediatek Android is vulnerable to a denial of service, caused...
Netman-204 cross-site request forgery | CVE-2022-3372
NAME__________Netman-204 cross-site request forgeryPlatforms Affected:Riello Netman-204 02.05Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Netman-204 is vulnerable to cross-site request forgery, caused by improper validation...
1panel container repositories command execution | CVE-2023-36457
NAME__________1panel container repositories command executionPlatforms Affected:1Panel 1Panel 1.3.5Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________1panel could allow a remote authenticated attacker to execute arbitrary...
Samsung Pass security bypass | CVE-2023-30677
NAME__________Samsung Pass security bypassPlatforms Affected:Samsung PassRisk Level:6.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Samsung Pass could allow a physically proximate attacker to obtain sensitive information,...
Samsung Mobile devices security bypass | CVE-2023-30665
NAME__________Samsung Mobile devices security bypassPlatforms Affected:Samsung R 11 Samsung S 12 Samsung T 13Risk Level:4.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Samsung Mobile devices could...
Samsung Pass information disclosure | CVE-2023-30676
NAME__________Samsung Pass information disclosurePlatforms Affected:Samsung PassRisk Level:4.6Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samsung Pass could allow a physically proximate attacker to obtain sensitive information,...
