CVE Alert: CVE-2024-43440
Vulnerability Summary: CVE-2024-43440 A flaw was found in moodle. A local file may include risks when restoring block backups. Affected...
Month: November 2024
CVE Alert: CVE-2024-43436
Vulnerability Summary: CVE-2024-43436 A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. Affected...
[RANSOMHUB] – Ransomware Victim: interlabel[.]be
Ransomware Group: RANSOMHUB VICTIM NAME: interlabelbe NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
HackerOne Bug Bounty Disclosure: leaking-vpn-traffic-through-non-rfc-local-ip-addresses-vanhoefm
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:vanhoefmLink to Submitters Profile:https://hackerone.com/vanhoefm Report Title:Leaking VPN traffic through non-RFC1918 local IP...
HackerOne Bug Bounty Disclosure: leakage-of-traffic-in-plaintext-towards-the-ip-address-of-vpn-server-vanhoefm
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:vanhoefmLink to Submitters Profile:https://hackerone.com/vanhoefm Report Title:Leakage of traffic in plaintext towards the...
[APT73] – Ransomware Victim: www[.]baldinger-ag[.]ch
Ransomware Group: APT73 VICTIM NAME: wwwbaldinger-agch NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: del-electric[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: del-electriccom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: www[.]lamaisonducitron[.]com
Ransomware Group: APT73 VICTIM NAME: wwwlamaisonducitroncom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: liftkits4less[.]com
Ransomware Group: APT73 VICTIM NAME: liftkits4lesscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[MEDUSA] – Ransomware Victim: Marisa S[.]A
Ransomware Group: MEDUSA VICTIM NAME: Marisa SA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications,...
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and...
CVE Alert: CVE-2024-10963
Vulnerability Summary: CVE-2024-10963 A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as...
CVE Alert: CVE-2024-9926
Vulnerability Summary: CVE-2024-9926 The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any...
CVE Alert: CVE-2024-43434
Vulnerability Summary: CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check,...
CVE Alert: CVE-2024-10965
Vulnerability Summary: CVE-2024-10965 A vulnerability classified as problematic was found in emqx neuron up to 2.10.0. Affected by this vulnerability...
CVE Alert: CVE-2024-8378
Vulnerability Summary: CVE-2024-8378 The Safe SVG WordPress plugin before 2.2.6 has its sanitisation code is only running for paths that...
CVE Alert: CVE-2024-10964
Vulnerability Summary: CVE-2024-10964 A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is the...
CVE Alert: CVE-2024-48954
Vulnerability Summary: CVE-2024-48954 An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an...
CVE Alert: CVE-2024-48953
Vulnerability Summary: CVE-2024-48953 An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules...
CVE Alert: CVE-2024-48952
Vulnerability Summary: CVE-2024-48952 An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate...
CVE Alert: CVE-2024-48951
Vulnerability Summary: CVE-2024-48951 An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used...
Cobalt Strike Beacon Detected – 47[.]92[.]140[.]190:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]254[.]25:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
