Month: December 2024

CISA: CISA Releases Ten Industrial Control Systems Advisories

December 14, 2024

CISA Releases Ten Industrial Control Systems Advisories CISA released ten Industrial Control Systems (ICS) advisories on December 12, 2024. These...

CISA: Ivanti Releases Security Updates for Multiple Products

December 14, 2024

Ivanti Releases Security Updates for Multiple Products Ivanti released security updates to address vulnerabilities in Ivanti Cloud Service Application, Ivanti...

CISA: Apple Releases Security Updates for Multiple Products

December 14, 2024

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

December 14, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

December 14, 2024

CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector Today, CISA and the Environmental...

[KAIROS] – Ransomware Victim: tcpm[.]com

December 13, 2024

Ransomware Group: KAIROS VICTIM NAME: tcpmcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[KAIROS] – Ransomware Victim: aneticaid[.]com

December 13, 2024

Ransomware Group: KAIROS VICTIM NAME: aneticaidcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[KAIROS] – Ransomware Victim: archlou[.]org

December 13, 2024

Ransomware Group: KAIROS VICTIM NAME: archlouorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: tekni-plex[.]com

December 13, 2024

Ransomware Group: RANSOMHUB VICTIM NAME: tekni-plexcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: www[.]hashem-contracting[.]com

December 13, 2024

Ransomware Group: RANSOMHUB VICTIM NAME: wwwhashem-contractingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

December 13, 2024

CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector Today, CISA and the Environmental...

CVE Alert: CVE-2024-54114

December 13, 2024

Vulnerability Summary: CVE-2024-54114 Out-of-bounds access vulnerability in playback in the DASH module Impact: Successful exploitation of this vulnerability will affect...

CVE Alert: CVE-2024-9367

December 13, 2024

Vulnerability Summary: CVE-2024-9367 An issue was discovered in GitLab CE/EE affecting all versions starting from 13.9 before 17.4.6, 17.5 before...

CVE Alert: CVE-2024-9387

December 13, 2024

Vulnerability Summary: CVE-2024-9387 An issue was discovered in GitLab CE/EE affecting all versions from 11.8 before 17.4.6, 17.5 before 17.5.4,...

CVE Alert: CVE-2024-54113

December 13, 2024

Vulnerability Summary: CVE-2024-54113 Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may...

CVE Alert: CVE-2024-8647

December 13, 2024

Vulnerability Summary: CVE-2024-8647 An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to 17.5.4,...

CVE Alert: CVE-2024-12271

December 13, 2024

Vulnerability Summary: CVE-2024-12271 The 360 Javascript Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘ref’ parameter...

CVE Alert: CVE-2024-28142

December 13, 2024

Vulnerability Summary: CVE-2024-28142 Due to missing input sanitization, an attacker can perform cross-site-scripting attacks and run arbitrary Javascript in the...

CVE Alert: CVE-2024-8233

December 13, 2024

Vulnerability Summary: CVE-2024-8233 An issue has been discovered in GitLab CE/EE affecting all versions from 9.4 before 17.4.6, 17.5 before...

CVE Alert: CVE-2024-47947

December 13, 2024

Vulnerability Summary: CVE-2024-47947 Due to missing input sanitization, an attacker can perform cross-site-scripting attacks and run arbitrary Javascript in the...

CVE Alert: CVE-2024-36498

December 13, 2024

Vulnerability Summary: CVE-2024-36498 Due to missing input sanitization, an attacker can perform cross-site-scripting attacks and run arbitrary Javascript in the...

[MONEYMESSAGE] – Ransomware Victim: Kazyon

December 13, 2024

Ransomware Group: MONEYMESSAGE VICTIM NAME: Kazyon NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[CIPHBIT] – Ransomware Victim: António Belém & António Gonçalves

December 13, 2024

Ransomware Group: CIPHBIT VICTIM NAME: António Belém & António Gonçalves NOTE: No files or stolen information are by RedPacket Security....

[FUNKSEC] – Ransomware Victim: lamundialdeseguros

December 13, 2024

Ransomware Group: FUNKSEC VICTIM NAME: lamundialdeseguros NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Month: December 2024

CISA: CISA Releases Ten Industrial Control Systems Advisories

CISA: Ivanti Releases Security Updates for Multiple Products

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

[KAIROS] – Ransomware Victim: tcpm[.]com

[KAIROS] – Ransomware Victim: aneticaid[.]com

[KAIROS] – Ransomware Victim: archlou[.]org

[RANSOMHUB] – Ransomware Victim: tekni-plex[.]com

[RANSOMHUB] – Ransomware Victim: www[.]hashem-contracting[.]com

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

CVE Alert: CVE-2024-54114

CVE Alert: CVE-2024-9367

CVE Alert: CVE-2024-9387

CVE Alert: CVE-2024-54113

CVE Alert: CVE-2024-8647

CVE Alert: CVE-2024-12271

CVE Alert: CVE-2024-28142

CVE Alert: CVE-2024-8233

CVE Alert: CVE-2024-47947

CVE Alert: CVE-2024-36498

[MONEYMESSAGE] – Ransomware Victim: Kazyon

[CIPHBIT] – Ransomware Victim: António Belém & António Gonçalves

[FUNKSEC] – Ransomware Victim: lamundialdeseguros

CVE Alert: CVE-2024-57823

CVE Alert: CVE-2024-41787

CVE Alert: CVE-2024-57686

CVE Alert: CVE-2024-57822

CVE Alert: CVE-2024-57687

You may have missed