[CICADA3301] – Ransomware Victim: Model Engineering
Ransomware Group: CICADA3301 VICTIM NAME: Model Engineering NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Month: September 2024
Telegram Agrees to Share User Data With Authorities for Criminal Investigations
In a major policy reversal, the popular messaging app Telegram has announced it will give users' IP addresses and phone...
CVE Alert: CVE-2024-0002
Vulnerability Summary: CVE-2024-0002 A condition exists in FlashArray Purity whereby an attacker can employ a privileged account allowing remote access...
CVE Alert: CVE-2024-39342
Vulnerability Summary: CVE-2024-39342 Entrust Instant Financial Issuance (formerly known as Cardwizard) 6.10.0, 6.9.0, 6.9.1, 6.9.2, and 6.8.x and earlier uses...
CVE Alert: CVE-2024-0001
Vulnerability Summary: CVE-2024-0001 A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active...
CVE Alert: CVE-2024-0005
Vulnerability Summary: CVE-2024-0005 A condition exists in FlashArray and FlashBlade Purity whereby a malicious user could execute arbitrary commands remotely...
CVE Alert: CVE-2024-39843
Vulnerability Summary: CVE-2024-39843 A SQL injection vulnerability in Centreon 24.04.2 allows a remote high-privileged attacker to execute arbitrary SQL command...
CVE Alert: CVE-2024-37779
Vulnerability Summary: CVE-2024-37779 WoodWing Elvis DAM v6.98.1 was discovered to contain an authenticated remote command execution (RCE) vulnerability via the...
CVE Alert: CVE-2024-39842
Vulnerability Summary: CVE-2024-39842 A SQL injection vulnerability in Centreon 24.04.2 allows a remote high-privileged attacker to execute arbitrary SQL command...
CVE Alert: CVE-2024-43201
Vulnerability Summary: CVE-2024-43201 The Planet Fitness Workouts iOS and Android mobile apps prior to version 9.8.12 (released on 2024-07-25) fail...
CVE Alert: CVE-2024-44540
Vulnerability Summary: CVE-2024-44540 Ubiquiti AirMax firmware version firmware version 8 allows attackers with physical access to gain a privileged command...
CVE Alert: CVE-2024-46639
Vulnerability Summary: CVE-2024-46639 A cross-site scripting (XSS) vulnerability in HelpDeskZ v2.0.2 allows attackers to execute arbitrary web scripts or HTML...
GameVN – 1,369,485 breached accounts
HIBP In May 2016, the Vietnamese gaming forum GameVN suffered a data breach that was later redistributed as part of...
Cobalt Strike Beacon Detected – 81[.]70[.]19[.]128:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 54[.]250[.]194[.]134:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 23[.]95[.]216[.]159:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 50[.]19[.]147[.]217:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]239[.]192[.]11:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]8[.]196[.]187:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: New CISA Plan Aligns Federal Agencies in Cyber Defense
New CISA Plan Aligns Federal Agencies in Cyber Defense Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Federal...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on September 17, 2024. These...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities
CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities Today, CISA and FBI released a Secure...
