VMware Tanzu Spring Framework denial of service | CVE-2023-20863
NAME__________VMware Tanzu Spring Framework denial of servicePlatforms Affected:VMware Tanzu Spring Framework 5.3.0 VMware Tanzu Spring Framework 6.0.0 VMware Tanzu Spring...
Year: 2023
WP Data Access plugin for WordPress privilege escalation | CVE-2023-1874
NAME__________WP Data Access plugin for WordPress privilege escalationPlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________WP Data Access plugin for WordPress could allow a...
Modal Dialog Plugin for WordPress cross-site scripting | CVE-2023-24001
NAME__________Modal Dialog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Modal Dialog Plugin for WordPress 3.5.9Risk Level:5.9Exploitability:HighConsequences:Gain Access DESCRIPTION__________Modal Dialog Plugin for...
Vice Society Ransomware Victim: CommScope
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Daily Vulnerability Trends: Sun Apr 16 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-23397Microsoft Outlook Elevation of Privilege VulnerabilityCVE-2023-28231DHCP Server Service Remote Code Execution VulnerabilityCVE-2023-21817Windows...
Cybersecurity Tip: Protecting Yourself Against Phishing Attacks
Phishing attacks are a type of cyber attack where an attacker tries to trick you into revealing sensitive information, such...
NCR suffers Aloha POS outage after BlackCat ransomware attack
Source: NCR Aloha NCR is suffering an outage on its Aloha point of sale platform after being hit by an...
Hackers start abusing Action1 RMM in ransomware attacks
Security researchers are warning that cybercriminals are increasingly using the Action1 remote access software for persistence on compromised networks and...
Android malware infiltrates 60 Google Play apps with 100M installs
A new Android malware named 'Goldoson' has infiltrated Google Play through 60 legitimate apps that collectively have 100 million downloads....
BlackCat/ALPHV Ransomware Victim: Leadway Assurance Company Limited
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
US-CERT Vulnerability Summary for the Week of April 3, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
GVision – A Reverse Image Search App That Use Google Cloud Vision API To Detect Landmarks And Web Entities From Images, Helping You Gather Valuable Information Quickly And Easily
GVision is a reverse image search app that use Google Cloud Vision API to detect landmarks and web entities from...
Royal Ransomware Victim: Stanley Electric U[.]S[.]
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Royal Ransomware Victim: 5Design
RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...
Malware Analysis – djvu – 1dd758012876b986897fa4ecc12660e3
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, botnet:623db25256a5734d1207787d269d05b2, discovery, persistence, ransomware, spyware, stealerMD5: 1dd758012876b986897fa4ecc12660e3SHA1: d83c9fcb25192e999272302cc48143b1f8754639ANALYSIS DATE: 2023-04-15T16:25:54ZTTPS: T1060, T1112, T1012, T1082,...
Malware Analysis – evasion – 0621da4524d3f97c53d56d062e7938de
Score: 10 MALWARE FAMILY: evasionTAGS:evasion, ransomware, trojanMD5: 0621da4524d3f97c53d56d062e7938deSHA1: f9fc642eb6ea007536a3d2b827a1995915e21417ANALYSIS DATE: 2023-04-15T16:23:11ZTTPS: T1082, T1158, T1112, T1491, T1012, T1053, T1088, T1089 ScoreMeaningExample10Known...
Malware Analysis – amadey – 25e4492533c31df8c81938100d1a89b5
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:lumma, family:smokeloader, family:vidar, botnet:623db25256a5734d1207787d269d05b2, botnet:e749025c61b2caca10aa829a9e1a65a1, botnet:pub1, botnet:sprg, backdoor, discovery, evasion, persistence, ransomware, spyware, stealer,...
LockBit 3.0 Ransomware Victim: osg[.]co[.]jp
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command execution | CVE-2022-40679
NAME__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F command executionPlatforms Affected:Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Fortinet FortiADC, Fortinet FortiDDoS, and Fortinet FortiDDoS-F could...
Siemens SCALANCE X-200IRT man-in-the-middle | CVE-2023-29054
NAME__________Siemens SCALANCE X-200IRT man-in-the-middlePlatforms Affected:Siemens SCALANCE X200-4P IRT Siemens SCALANCE X201-3P IRT Siemens SCALANCE X201-3P IRT PRO Siemens SCALANCE X202-2IRT...
Daily Vulnerability Trends: Sat Apr 15 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-28879In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to...
Police disrupts $98M online fraud ring with 33,000 victims
Europol and Eurojust announced today the arrest of five individuals believed to be part of a massive online investment fraud ring...
Darktrace: Investigation found no evidence of LockBit breach
Cybersecurity firm Darktrace says it found no evidence that the LockBit ransomware gang breached its network after the group added...
Google Chrome emergency update fixes first zero-day of 2023
Google has released an emergency Chrome security update to address the first zero-day vulnerability exploited in attacks since the start of the year. "Google...
