CVE Alert: CVE-2024-47373
Vulnerability Summary: CVE-2024-47373 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiteSpeed Technologies LiteSpeed...
Month: October 2024
CVE Alert: CVE-2024-47377
Vulnerability Summary: CVE-2024-47377 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeKraft BuddyForms allows...
CVE Alert: CVE-2024-9536
Vulnerability Summary: CVE-2024-9536 A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this...
CVE Alert: CVE-2024-47372
Vulnerability Summary: CVE-2024-47372 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeNcode LLC TNC...
CVE Alert: CVE-2024-47376
Vulnerability Summary: CVE-2024-47376 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Tribulant Slideshow Gallery...
CVE Alert: CVE-2024-47371
Vulnerability Summary: CVE-2024-47371 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Walter Pinem WP...
CRI Guidance on Avoiding Ransomware Payments: A Critical Resource for Organizations
The Counter Ransomware Initiative (CRI) has issued vital guidance urging organizations to consider alternatives before making ransomware payments to cybercriminals....
Sellafield Fined £332,500 for Cybersecurity Failures at Nuclear Facility
Sellafield Ltd faces a hefty fine due to alarming cybersecurity failures impacting the management of its nuclear facility in Cumbria,...
MedusaLocker Ransomware Variant ‘BabyLockerKZ’ Targets Organizations Worldwide
A new MedusaLocker ransomware variant, identified as 'BabyLockerKZ', is targeting organizations globally, according to Cisco Talos. This financially-driven threat actor...
How Team Confidence Influences Cyber Incident Outcomes
Confidence among teams plays a crucial role in navigating cyber incidents effectively. The interplay of skills, trust, and adaptability is...
Switch – 5,397 breached accounts
HIBP In October 2024, the Hungarian IT headhunting service Switch inadvertently exposed thousands of customer records via a public GitHub...
[PLAY] – Ransomware Victim: Creative Consumer Concepts
Ransomware Group: PLAY VICTIM NAME: Creative Consumer Concepts NOTE: No files or stolen information are by RedPacket Security. Any legal...
[KILLSEC] – Ransomware Victim: seoulpi[.]io
Ransomware Group: KILLSEC VICTIM NAME: seoulpiio NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[PLAY] – Ransomware Victim: Power Torque Services
Ransomware Group: PLAY VICTIM NAME: Power Torque Services NOTE: No files or stolen information are by RedPacket Security. Any legal...
Cobalt Strike Beacon Detected – 23[.]95[.]65[.]198:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]55[.]195[.]5:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]236[.]228[.]126:3333
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]243[.]10[.]218:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]134[.]89[.]27:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 185[.]216[.]119[.]38:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 161[.]35[.]184[.]170:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-44204
Vulnerability Summary: CVE-2024-44204 A logic issue was addressed with improved validation. This issue is fixed in iOS 18.0.1 and iPadOS...
CVE Alert: CVE-2024-8519
Vulnerability Summary: CVE-2024-8519 The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for...
CVE Alert: CVE-2024-8802
Vulnerability Summary: CVE-2024-8802 The Clio Grow plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of...
