Cobalt Strike Beacon Detected – 185[.]198[.]234[.]147:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: October 2024
Cobalt Strike Beacon Detected – 39[.]100[.]93[.]1:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 89[.]116[.]48[.]86:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Four REvil Ransomware Members Sentenced in Rare Russian Cybercrime Convictions
Four members of the now-defunct REvil ransomware operation have been sentenced to several years in prison in Russia, marking one...
Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining
The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for...
CVE Alert: CVE-2024-10378
Vulnerability Summary: CVE-2024-10378 A vulnerability classified as critical has been found in ESAFENET CDG 5. Affected is the function actionViewCDGRenewFile...
CVE Alert: CVE-2024-49378
Vulnerability Summary: CVE-2024-49378 smartUp, a web browser mouse gestures extension, has a universal cross-site scripting issue in the Edge and...
CVE Alert: CVE-2024-49753
Vulnerability Summary: CVE-2024-49753 Zitadel is open-source identity infrastructure software. Versions prior to 2.64.1, 2.63.6, 2.62.8, 2.61.4, 2.60.4, 2.59.5, and 2.58.7...
CVE Alert: CVE-2024-10380
Vulnerability Summary: CVE-2024-10380 A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0....
CVE Alert: CVE-2024-10374
Vulnerability Summary: CVE-2024-10374 The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_loginout...
CVE Alert: CVE-2024-48579
Vulnerability Summary: CVE-2024-48579 SQL Injection vulnerability in Best House rental management system project in php v.1.0 allows a remote attacker...
CVE Alert: CVE-2024-49757
Vulnerability Summary: CVE-2024-49757 The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Due to a missing...
CVE Alert: CVE-2024-48580
Vulnerability Summary: CVE-2024-48580 SQL Injection vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2022-30355
Vulnerability Summary: CVE-2022-30355 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
CVE Alert: CVE-2024-48204
Vulnerability Summary: CVE-2024-48204 SQL injection vulnerability in Hanzhou Haobo network management system 1.0 allows a remote attacker to execute arbitrary...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities
The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and...
SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
The U.S. Securities and Exchange Commission (SEC) has charged four current and former public companies for making "materially misleading disclosures"...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2023-26248
Vulnerability Summary: CVE-2023-26248 The Kademlia DHT (go-libp2p-kad-dht 0.20.0 and earlier) used in IPFS (0.18.1 and earlier) assigns routing information for...
CVE Alert: CVE-2024-8036
Vulnerability Summary: CVE-2024-8036 ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker...
CVE Alert: CVE-2024-48581
Vulnerability Summary: CVE-2024-48581 File Upload vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2024-10386
Vulnerability Summary: CVE-2024-10386 CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor...
