LockBit 3.0 Ransomware Victim: baffetmateriaux[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Year: 2023
LockBit 3.0 Ransomware Victim: kse[.]org[.]kw
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: midipapierspeints[.]fr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: tiger[.]jp
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Oracle Java SE, Oracle GraalVM Enterprise Edition unspecified | CVE-2023-21938
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 20.3.8 Oracle GraalVM Enterprise Edition 21.3.4 Oracle GraalVM...
Tuleap Community Edition cross-site scripting | CVE-2023-23938
NAME__________Tuleap Community Edition cross-site scriptingPlatforms Affected:Tuleap Community EditionRisk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Tuleap Community Edition is vulnerable to cross-site scripting, caused by...
Fastify @fastify/csrf-protection cross-site request forgery | CVE-2023-27495
NAME__________Fastify @fastify/csrf-protection cross-site request forgeryPlatforms Affected:Fastify @fastify/csrf-protection 4.0.1 Fastify @fastify/csrf-protection 5.0.0 Fastify @fastify/csrf-protection 6.2.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fastify @fastify/csrf-protection is vulnerable...
Oracle Java SE, Oracle GraalVM Enterprise Edition unspecified | CVE-2023-21937
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...
Secomea GateManager security bypass | CVE-2022-38125
NAME__________Secomea GateManager security bypassPlatforms Affected:Jsish Jsish 3.0.11Risk Level:3.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Secomea GateManager could allow a local attacker to bypass security restrictions,...
Oracle Java SE, Oracle GraalVM Enterprise Edition unspecified | CVE-2023-21967
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...
Oracle Java SE, Oracle GraalVM Enterprise Edition unspecified | CVE-2023-21939
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...
Omron CS/CJ Series information disclosure | CVE-2022-45794
NAME__________Omron CS/CJ Series information disclosurePlatforms Affected:OMRON SYSMAC CJ2H-CPU6-EIP OMRON SYSMAC CJ2H-CPU6 OMRON SYSMAC CJ1G-CPUP OMRON SYSMAC CS1H-CPUH OMRON SYSMAC CS1G-CPUH...
Oracle Java SE, Oracle GraalVM Enterprise Edition unspecified | CVE-2023-21954
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...
Secomea GateManager security bypass | CVE-2022-4308
NAME__________Secomea GateManager security bypassPlatforms Affected:Jsish Jsish 3.0.11Risk Level:6.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Secomea GateManager could allow a local attacker to bypass security restrictions,...
Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE unspecified | CVE-2023-21930
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE unspecifiedPlatforms Affected:Oracle GraalVM Enterprise Edition 20.3.5 Oracle GraalVM...
Russian Hackers Suspected in Ongoing Exploitation of Unpatched PaperCut Servers
Print management software provider PaperCut said that it has "evidence to suggest that unpatched servers are being exploited in the...
New All-in-One “EvilExtractor” Stealer for Windows Systems Surfaces on the Dark Web
A new "all-in-one" stealer malware named EvilExtractor (also spelled Evil Extractor) is being marketed for sale for other threat actors...
Decoy Dog malware toolkit found after analyzing 70 billion DNS queries
A new enterprise-targeting malware toolkit called ‘Decoy Dog’ has been discovered after inspecting anomalous DNS traffic that is distinctive from...
Hackers can breach networks using data on resold corporate routers
Enterprise-level network equipment on the secondary market hide sensitive data that hackers could use to breach corporate environments or to...
Terravision – 2,075,625 breached accounts
HIBP In February 2023, the European airport transfers service Terravision suffered a data breach. The breach exposed over 2M records...
CISA: CISA and Partners Release Cybersecurity Best Practices for Smart Cities
CISA and Partners Release Cybersecurity Best Practices for Smart Cities Today, CISA, NSA, FBI, NCSC-UK(link is external), ACSC(link is external),...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on April 20, 2023. These...
CISA: Oracle Releases Security Updates
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
CISA: CISA to Continue and Enhance U.K.’s Logging Made Easy Tool
CISA to Continue and Enhance U.K.’s Logging Made Easy Tool CISA has announced plans to continue and enhance the Logging...
