CISA: CISA Releases One Industrial Control Systems Medical Advisory
CISA Releases One Industrial Control Systems Medical Advisory CISA released one Industrial Control Systems Medical (ICS) medical advisory on April...
Year: 2023
HackerOne Bug Bounty Disclosure: [indy_node]pool_upgrade-command-injection,-trustee-node-can-execute-command-in-any-other-node`s-system-bykmhlyxj0
Programme HackerOne Hyperledger Hyperledger Submitted by kmhlyxj0 kmhlyxj0 Report POOL_UPGRADE command injection, Trustee Node can execute command in any other...
HackerOne Bug Bounty Disclosure: credential-leak-on-github:-https://github-com///-(peoplesoft-crm)bypentestor
Programme HackerOne 8x8 8x8 Submitted by pentestor pentestor Report Credential leak on GitHub: https://github.com/// (Peoplesoft CRM) Full Report A...
Google Gets Court Order to Take Down CryptBot That Infected Over 670,000 Computers
Google on Wednesday said it obtained a temporary court order in the U.S. to disrupt the distribution of a Windows-based...
Paperbug Attack: New Politically-Motivated Surveillance Campaign in Tajikistan
A little-known Russian-speaking cyber-espionage group has been linked to a new politically-motivated surveillance campaign targeting high-ranking government officials, telecom services,...
Black Basta Ransomware Victim: Gates Corporation
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: mastercorp
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: COACHCOMM
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware
Microsoft has confirmed that the active exploitation of PaperCut servers is linked to attacks that are designed to deliver Cl0p...
RTM Locker’s First Linux Ransomware Strain Targeting NAS and ESXi Hosts
The threat actors behind RTM Locker have developed a ransomware strain that's capable of targeting Linux machines, marking the group's...
LimeRAT Malware Analysis: Extracting the Config
Remote Access Trojans (RATs) have taken the third leading position in ANY. RUN's Q1 2023 report on the most prevalent...
LockBit 3.0 Ransomware Victim: silbon[.]es
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: cdcbmestihl[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: multimedica[.]it
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: bg2i[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: fsdc[.]org[.]hk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Task Reminder System cross-site scripting | CVE-2023-2219
NAME__________Task Reminder System cross-site scriptingPlatforms Affected:Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Task Reminder System is vulnerable to cross-site scripting, caused by improper validation...
Nokia OneNDS privilege escalation | CVE-2022-31244
NAME__________Nokia OneNDS privilege escalationPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Nokia OneNDS could allow a local authenticated attacker to gain elevated privileges on...
Sengled Dimmer Switch denial of service | CVE-2023-29779
NAME__________Sengled Dimmer Switch denial of servicePlatforms Affected:Sengled Dimmer Switch 0.0.9Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Sengled Dimmer Switch is vulnerable to a...
IBM Cloud Pak for Data file upload | CVE-2022-36769
NAME__________IBM Cloud Pak for Data file uploadPlatforms Affected:IBM Watson Knowledge Catalog on-prem 4.0 IBM Cloud Pak for Data 4.5 IBM...
Mattermost Server security bypass | CVE-2023-2193
NAME__________Mattermost Server security bypassPlatforms Affected:Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote authenticated attacker to bypass security restrictions, caused...
Task Reminder System SQL injection | CVE-2023-2218
NAME__________Task Reminder System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Task Reminder System is vulnerable to SQL injection. A remote authenticated attacker...
Task Reminder System SQL injection | CVE-2023-2217
NAME__________Task Reminder System SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Task Reminder System is vulnerable to SQL injection. A remote authenticated attacker...
Clusternet privilege escalation | CVE-2023-30622
NAME__________Clusternet privilege escalationPlatforms Affected:Clusternet Clusternet 0.15.1Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Clusternet could allow a local authenticated attacker to gain elevated privileges on...
