CVE Alert: CVE-2024-55539
Vulnerability Summary: CVE-2024-55539 Weak algorithm used to sign RPM package. The following products are affected: Acronis Cyber Protect Cloud Agent...
Month: December 2024
CVE Alert: CVE-2024-53256
Vulnerability Summary: CVE-2024-53256 Rizin is a UNIX-like reverse engineering framework and command-line toolset. `rizin.c` still had an old snippet of...
CVE Alert: CVE-2024-45387
Vulnerability Summary: CVE-2024-45387 An SQL injection vulnerability in Traffic Ops in Apache Traffic Control = 8.0.0 allows a privileged user...
CVE Alert: CVE-2024-56363
Vulnerability Summary: CVE-2024-56363 APTRS (Automated Penetration Testing Reporting System) is a Python and Django-based automated reporting tool designed for penetration...
CVE Alert: CVE-2024-53961
Vulnerability Summary: CVE-2024-53961 ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a Pathname to a...
CVE Alert: CVE-2024-56362
Vulnerability Summary: CVE-2024-56362 Navidrome is an open source web-based music collection server and streamer. Navidrome stores the JWT secret in...
CVE Alert: CVE-2024-56364
Vulnerability Summary: CVE-2024-56364 SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending...
CVE Alert: CVE-2018-25106
Vulnerability Summary: CVE-2018-25106 A vulnerability, which was classified as critical, has been found in webuidesigning NebulaX Theme up to 5.0...
ICO Urges Caution: How to Safeguard Your Mobile Privacy This Christmas
As Christmas approaches, the ICO highlights a significant concern: many UK adults are unaware of how to erase personal data...
Interpol Uncovers 140+ Human Traffickers in Groundbreaking Anti-Trafficking Operation
Interpol has launched a groundbreaking initiative aimed at combatting human trafficking, identifying over 140 traffickers across South America and Europe....
Cryptomining Malware Discovered in Leading Open Source Packages
The risk of cryptomining malware infiltrating popular open source packages is rising, as recent high-profile compromises reveal serious security concerns....
Ransomware Attack on Ascension Exposes 5.6 Million Patient Records
The recent ransomware attack on Ascension has compromised sensitive data for approximately 5.6 million patients, raising significant concerns about healthcare...
Critical Vulnerabilities in WPLMS and VibeBP WordPress Plugins Exposed
Discover the serious vulnerabilities affecting WPLMS and VibeBP plugins. Stay informed to protect your WordPress site effectively. Understanding the VulnerabilitiesRecent...
[FUNKSEC] – Ransomware Victim: asjp[.]cerist[.]dz sell
Ransomware Group: FUNKSEC VICTIM NAME: asjpceristdz sell NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[FUNKSEC] – Ransomware Victim: egyptair[.]com 5 sell
Ransomware Group: FUNKSEC VICTIM NAME: egyptaircom 5 sell NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: itc[.]gov[.]ae with 1K !
Ransomware Group: FUNKSEC VICTIM NAME: itcgovae with 1K ! NOTE: No files or stolen information are by RedPacket Security. Any...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 3, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...
CISA: CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers
CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers Today, CISA—in partnership with...
CISA: CISA Releases New Public Version of CDM Data Model Document
CISA Releases New Public Version of CDM Data Model Document Today, the Cybersecurity and Infrastructure Security Agency (CISA) released an...
CISA: Cisco Releases Security Updates for NX-OS Software
Cisco Releases Security Updates for NX-OS Software Cisco released security updates to address a vulnerability in Cisco NX-OS software. A...
CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies
ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies Today, CISA—in partnership with...
