Black Basta Ransomware Victim: leclairgroup[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Month: January 2024
Black Basta Ransomware Victim: stemcor[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: fairmontfcu[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cyber Threat Landscape: 7 Key Findings and Upcoming Trends for 2024
The 2023/2024 Axur Threat Landscape Report provides a comprehensive analysis of the latest cyber threats. The information combines data from...
China-backed Hackers Hijack Software Updates to Implant “NSPX30” Spyware
A previously undocumented China-aligned threat actor has been linked to a set of adversary-in-the-middle (AitM) attacks that hijack update requests...
LODEINFO Fileless Malware Evolves with Anti-Analysis and Remote Code Tricks
Cybersecurity researchers have uncovered an updated version of a backdoor called LODEINFO that's distributed via spear-phishing attacks. The findings come...
Critical Jenkins Vulnerability Exposes Servers to RCE Attacks – Patch ASAP!
The maintainers of the open-source continuous integration/continuous delivery and deployment (CI/CD) automation software Jenkins have resolved nine security flaws, including...
Akira Ransomware Victim: Toronto Zoo
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: ANI Networks
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Notary Project Specifications denial of service | CVE-2024-23332
NAME__________Notary Project Specifications denial of servicePlatforms Affected:Notary Project Notary Project SpecificationsRisk Level:4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Notary Project Specifications is vulnerable to...
hoolock code execution | CVE-2024-23339
NAME__________hoolock code executionPlatforms Affected:hoolock hoolock 2.0.0 hoolock hoolock 2.1.0 hoolock hoolock 2.2.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________hoolock could allow a remote attacker...
Linux Kernel denial of service | CVE-2024-23849
NAME__________Linux Kernel denial of servicePlatforms Affected:Risk Level:6.2Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service,...
changedetection.io information disclosure | CVE-2024-23329
NAME__________changedetection.io information disclosurePlatforms Affected:changedetection.io changedetection.io 0.39.14 changedetection.io changedetection.io 0.45.12Risk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________changedetection.io could allow a remote attacker to obtain sensitive...
Linux Kernel denial of service | CVE-2024-23850
NAME__________Linux Kernel denial of servicePlatforms Affected:Risk Level:6.2Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service,...
tlsfuzzer python-ecdsa information disclosure | CVE-2024-23342
NAME__________tlsfuzzer python-ecdsa information disclosurePlatforms Affected:tlsfuzzer python-ecdsa 0.18.0Risk Level:7.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________tlsfuzzer python-ecdsa could allow a remote attacker to obtain sensitive information,...
Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injection | CVE-2024-21765
NAME__________Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injectionPlatforms Affected:Japanese Ministry of Agriculture Forestry and...
Jenkins GitLab Branch Source Plugin information disclosure | CVE-2024-23903
NAME__________Jenkins GitLab Branch Source Plugin information disclosurePlatforms Affected:Jenkins GitLab Branch Source Plugin 684.vea_fa_7c1e2fe3Risk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins GitLab Branch Source Plugin...
Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injection | CVE-2024-21796
NAME__________Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injectionPlatforms Affected:Japanese Ministry of Agriculture Forestry and...
Apple macOS Ventura, Sonoma, Monterey, iOS and iPadOS unspecified | CVE-2023-42915
NAME__________Apple macOS Ventura, Sonoma, Monterey, iOS and iPadOS unspecifiedPlatforms Affected:Apple macOS Sonoma 14.1 Apple macOS Monterey 12.7.2 Apple macOS Ventura...
Apache Airflow code execution | CVE-2023-50943
NAME__________Apache Airflow code executionPlatforms Affected:Apache Airflow 2.8.0Risk Level:3.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apache Airflow could allow a remote authenticated attacker to execute arbitrary...
Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injection | CVE-2024-22380
NAME__________Ministry of Agriculture, Forestry and Fisheries Electronic Delivery Check System XML external entity injectionPlatforms Affected:Japanese Ministry of Agriculture Forestry and...
Jenkins Matrix Project Plugin directory traversal | CVE-2024-23900
NAME__________Jenkins Matrix Project Plugin directory traversalPlatforms Affected:Jenkins Matrix Project Plugin 822.v01b_8c85d16d2Risk Level:4.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins Matrix Project Plugin could allow a...
Nautobot cross-site scripting | CVE-2024-23345
NAME__________Nautobot cross-site scriptingPlatforms Affected:Nautobot Nautobot 1.6.9 Nautobot Nautobot 2.1.1Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Nautobot is vulnerable to cross-site scripting, caused by improper...
Hono node-server directory traversal | CVE-2024-23340
NAME__________Hono node-server directory traversalPlatforms Affected:Hono node-server 1.3.0 Hono node-server 1.4.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Hono node-server could allow a remote attacker to...
