CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Month: May 2024
CISA: CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate Directory Traversal Vulnerabilities
CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate Directory Traversal Vulnerabilities Today, CISA and the...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on May 07, 2024. These...
Ioctlance – A Tool That Is Used To Hunt Vulnerabilities In X64 WDM Drivers
Description Presented at CODE BLUE 2023, this project titled Enhanced Vulnerability Hunting in WDM Drivers with Symbolic Execution and Taint...
NTLM Relay Gat – Powerful Tool Designed To Automate The Exploitation Of NTLM Relays
NTLM Relay Gat is a powerful tool designed to automate the exploitation of NTLM relays using ntlmrelayx.py from the Impacket...
GoPhish Login Page Detected – 34[.]133[.]186[.]252:4444
The Information provided at the time of posting was detected as "GoPhish Login Page". Depending on when you are viewing...
GoPhish Login Page Detected – 195[.]133[.]13[.]135:4444
The Information provided at the time of posting was detected as "GoPhish Login Page". Depending on when you are viewing...
GoPhish Login Page Detected – 64[.]227[.]178[.]226:3333
The Information provided at the time of posting was detected as "GoPhish Login Page". Depending on when you are viewing...
GoPhish Login Page Detected – 51[.]159[.]6[.]180:3333
The Information provided at the time of posting was detected as "GoPhish Login Page". Depending on when you are viewing...
HackerOne Bug Bounty Disclosure: member-role-which-doesn-t-have-permission-to-send-message-can-send-by-executing-channel-commands-ramsakal
Company Name: Mattermost Company HackerOne URL: https://hackerone.com/mattermost Submitted By:ramsakal7582Link to Submitters Profile:https://hackerone.com/ramsakal7582 Report Title:Member role which doesn't have permission to...
HackerOne Bug Bounty Disclosure: incorrect-type-conversion-in-interpreting-ipv-mapped-ipv-addresses-and-below-curl-results-in-indeterminate-ssrf-vulnerabilities-z-r-yu
Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:z3r0yuLink to Submitters Profile:https://hackerone.com/z3r0yu Report Title:Incorrect Type Conversion in interpreting IPv4-mapped IPv6...
HackerOne Bug Bounty Disclosure: improper-access-control-financial-fraud-allows-attacker-to-disclose-add-arbitrary-products-to-another-s-user-s-order-doomerhunter
Company Name: Shipt Company HackerOne URL: https://hackerone.com/shipt Submitted By:doomerhunterLink to Submitters Profile:https://hackerone.com/doomerhunter Report Title:Improper Access Control + Financial fraud allows...
HackerOne Bug Bounty Disclosure: a-member-with-editor-permissions-can-create-an-access-list-that-cannot-be-modified-viewed-or-deleted-mr-asg
Company Name: Teleport Company HackerOne URL: https://hackerone.com/teleport Submitted By:mr_asgLink to Submitters Profile:https://hackerone.com/mr_asg Report Title:A member with editor permissions can create...
Sliver C2 Detected – 168[.]138[.]179[.]33:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Sliver C2 Detected – 170[.]64[.]249[.]50:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
Critical Vulnerability in Tinyproxy Instances
Tinyproxy has released security fixes addressing a critical vulnerability (CVE-2023-49606) in their internet-exposed instances. The vulnerability has a Common Vulnerability...
INC Ransom Ransomware Victim: Pifer’s Auction & Realty
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: It4 Solutions Robras Corp
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: WEL Partners
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: Ingo Money Inc
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: Hardeman County Community Health Center
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: Trylon Srl
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: Pro Metals LLC
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
INC Ransom Ransomware Victim: Global Export Marketing Co[.] Ltd[.]
INC Ransom Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
