CVE Alert: CVE-2022-30357
Vulnerability Summary: CVE-2022-30357 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
Month: October 2024
CVE Alert: CVE-2024-47821
Vulnerability Summary: CVE-2024-47821 pyLoad is a free and open-source Download Manager. The folder `/.pyload/scripts` has scripts which are run when...
CVE Alert: CVE-2024-10387
Vulnerability Summary: CVE-2024-10387 CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2024-9584
Vulnerability Summary: CVE-2024-9584 The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of...
CVE Alert: CVE-2024-9585
Vulnerability Summary: CVE-2024-9585 The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function...
CVE Alert: CVE-2024-48654
Vulnerability Summary: CVE-2024-48654 Cross Site Scripting vulnerability in Blood Bank v.1 allows a remote attacker to execute arbitrary code via...
[RAWORLD] – Ransomware Victim: TR****GB
Ransomware Group: RAWORLD VICTIM NAME: TR****GB NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DONUTLEAKS] – Ransomware Victim: ATTENTION!
Ransomware Group: DONUTLEAKS VICTIM NAME: ATTENTION! NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[BIANLIAN] – Ransomware Victim: Premier Work Support
Ransomware Group: BIANLIAN VICTIM NAME: Premier Work Support NOTE: No files or stolen information are by RedPacket Security. Any legal...
UK Government Promotes Cyber Essentials Certification for Enhanced Cybersecurity
The UK government is actively encouraging organizations to achieve Cyber Essentials Certification, emphasizing the significant benefits it offers in safeguarding...
AI Policy Development Ignoring Cybersecurity Teams: A Critical Concern
Cybersecurity teams are facing exclusion from AI policy development in enterprises, as revealed by recent research from ISACA at its...
Fortinet Confirms Exploit of Critical CVE-2024-47575 in FortiManager
Fortinet has confirmed the serious exploitation of a critical zero-day vulnerability, CVE-2024-47575, affecting its FortiManager network management solution. Fortinet has...
New Data Governance Legislation Introduced by UK Government
The UK government is set to strengthen personal data governance with the New Data Governance Legislation, known as the Data...
$1.25M Settlement for Penn State Over Cybersecurity Violations with DoD and NASA
Penn State has agreed to a $1.25 million settlement following allegations of inadequate cybersecurity measures related to its federal contracts....
Lazarus Group Exploits Google Chrome Zero-Day Vulnerability in New Campaign
The Lazarus Group has recently exploited a zero-day vulnerability in Google Chrome, exposing systems to significant risks. A newly uncovered...
AI National Security Memo: Key Actions by the White House for US Safety
The White House has unveiled a crucial National Security Memorandum (NSM) focused on AI, emphasizing its commitment to ensuring safe...
MacOS Ransomware Attempts Use Old LockBit Brand for Attacks
Recent developments highlight how cybercriminals are leveraging old LockBit technology to target macOS devices with new ransomware attempts. A recent...
LinkedIn Fined $336 Million by Irish Data Protection Authority for GDPR Violations
The Irish Data Protection Commission has imposed a substantial $336 million fine on LinkedIn for violations of GDPR regarding its...
Women in Digital Trust: Overcoming Inequity and Achieving Career Satisfaction
Women in the digital trust sector face significant pay inequity challenges, yet progress in career satisfaction and advancement is evident....
Ukraine Issues Alert on Mass Phishing Campaign Targeting Citizens’ Data
Ukrainian authorities are on high alert regarding a mass phishing campaign designed to lure citizens into compromising their personal data....
Change Healthcare Breach Impacts 100 Million Americans’ Personal Information
The Change Healthcare ransomware attack has drastically affected the personal information of 100 million Americans, marking a significant incident in...
digiDirect – 304,337 breached accounts
HIBP In September 2024, a data breach sourced from the Australian retailer digiDirect was published to a popular hacking forum....
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
