Month: December 2024

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

December 3, 2024

CISA Releases Nineteen Industrial Control Systems Advisories CISA released nineteen Industrial Control Systems (ICS) advisories on November 14, 2024. These...

CISA: Palo Alto Networks Emphasizes Hardening Guidance

December 3, 2024

Palo Alto Networks Emphasizes Hardening Guidance Updated November 15, 2024 Palo Alto Networks (PAN) has updated their informational bulletin, noting...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases One Industrial Control Systems Advisory

December 3, 2024

CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on November 19, 2024. These...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: Apple Releases Security Updates for Multiple Products

December 3, 2024

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

December 3, 2024

USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication Today, the Cybersecurity and Infrastructure Security Agency (CISA) and...

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

December 3, 2024

CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory Today, CISA, the Federal Bureau of Investigation (FBI), and the...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

December 3, 2024

2024 CWE Top 25 Most Dangerous Software Weaknesses The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Homeland...

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

December 3, 2024

CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization Today, CISA released Enhancing Cyber Resilience:...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Seven Industrial Control Systems Advisories

December 3, 2024

CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

December 3, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Six Industrial Control Systems Advisories

December 3, 2024

CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...

CovenantC2 Detected – 45[.]61[.]133[.]20:7443

December 3, 2024

The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...

US-CERT Vulnerability Summary for the Week of November 25, 2024

December 2, 2024

The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...

[RANSOMHUB] – Ransomware Victim: KHKKLOW[.]com

December 2, 2024

Ransomware Group: RANSOMHUB VICTIM NAME: KHKKLOWcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

HackerOne Bug Bounty Disclosure: open-redirected-by-host-header-black-world

December 2, 2024

Company Name: Localize Company HackerOne URL: https://hackerone.com/localizejs Submitted By:black_worldLink to Submitters Profile:https://hackerone.com/black_world Report Title:open redirected by host headerReport Link:https://hackerone.com/reports/2828499Date Submitted:02...

Month: December 2024

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

CISA: Palo Alto Networks Emphasizes Hardening Guidance

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases One Industrial Control Systems Advisory

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: Apple Releases Security Updates for Multiple Products

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Seven Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Six Industrial Control Systems Advisories

CovenantC2 Detected – 45[.]61[.]133[.]20:7443

US-CERT Vulnerability Summary for the Week of November 25, 2024

[RANSOMHUB] – Ransomware Victim: KHKKLOW[.]com

HackerOne Bug Bounty Disclosure: open-redirected-by-host-header-black-world

HackerOne Bug Bounty Disclosure: buffer-overflow-vulnerability-in-strcpy-leading-to-remote-code-execution-tix

[FOG] – Ransomware Victim: Conlin’s Pharmacy (conlinspharmacy[.]com)

[LYNX] – Ransomware Victim: Mmaynewagemicro

CVE Alert: CVE-2024-53748

[MEDUSA] – Ransomware Victim: Down East Granite

[INCRANSOM] – Ransomware Victim: fwmep[.]edu

[AKIRA] – Ransomware Victim: Surface Combustion

[AKIRA] – Ransomware Victim: Slawson Companies

Cobalt Strike Beacon Detected – 111[.]231[.]22[.]61:80

Cobalt Strike Beacon Detected – 43[.]133[.]36[.]25:8083

You may have missed