Month: January 2025

CVE Alert: CVE-2025-0474

January 15, 2025

Vulnerability Summary: CVE-2025-0474 Invoice Ninja is vulnerable to authenticated Server-Side Request Forgery (SSRF) allowing for arbitrary file read and network...

CVE Alert: CVE-2025-21131

January 15, 2025

Vulnerability Summary: CVE-2025-21131 Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result...

CVE Alert: CVE-2024-56374

January 15, 2025

Vulnerability Summary: CVE-2024-56374 An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack...

CVE Alert: CVE-2025-21128

January 15, 2025

Vulnerability Summary: CVE-2025-21128 Substance3D - Stager versions 3.0.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could...

CVE Alert: CVE-2025-21130

January 15, 2025

Vulnerability Summary: CVE-2025-21130 Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result...

CVE Alert: CVE-2025-21129

January 15, 2025

Vulnerability Summary: CVE-2025-21129 Substance3D - Stager versions 3.0.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could...

[APT73] – Ransomware Victim: betclic[.]com

January 15, 2025

Ransomware Group: APT73 VICTIM NAME: betcliccom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[LYNX] – Ransomware Victim: Lowe Engineers

January 15, 2025

Ransomware Group: LYNX VICTIM NAME: Lowe Engineers NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

HackerOne Bug Bounty Disclosure: netrc-and-redirect-credential-leak-nyymi

January 15, 2025

Company Name: Internet Bug Bounty Company HackerOne URL: https://hackerone.com/ibb Submitted By:nyymiLink to Submitters Profile:https://hackerone.com/nyymi Report Title:netrc and redirect credential leakReport...

[LYNX] – Ransomware Victim: Woodport Doors

January 15, 2025

Ransomware Group: LYNX VICTIM NAME: Woodport Doors NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[FUNKSEC] – Ransomware Victim: barilga[.]gov[.]mn

January 15, 2025

Ransomware Group: FUNKSEC VICTIM NAME: barilgagovmn NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-21133

January 15, 2025

Vulnerability Summary: CVE-2025-21133 Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability...

CVE Alert: CVE-2025-21127

January 15, 2025

Vulnerability Summary: CVE-2025-21127 Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Uncontrolled Search Path Element vulnerability that...

CVE Alert: CVE-2025-21134

January 15, 2025

Vulnerability Summary: CVE-2025-21134 Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability...

CVE Alert: CVE-2025-21132

January 15, 2025

Vulnerability Summary: CVE-2025-21132 Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result...

CVE Alert: CVE-2025-21122

January 15, 2025

Vulnerability Summary: CVE-2025-21122 Photoshop Desktop versions 25.12, 26.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability...

CVE Alert: CVE-2025-23041

January 15, 2025

Vulnerability Summary: CVE-2025-23041 Umbraco.Forms is a web form framework written for the nuget ecosystem. Character limits configured by editors for...

CVE Alert: CVE-2024-55921

January 15, 2025

Vulnerability Summary: CVE-2024-55921 TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the...

CVE Alert: CVE-2024-55892

January 15, 2025

Vulnerability Summary: CVE-2024-55892 TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\CMS\Core\Http\Uri` to parse externally...

CVE Alert: CVE-2024-55891

January 15, 2025

Vulnerability Summary: CVE-2024-55891 TYPO3 is a free and open source Content Management Framework. It has been discovered that the install...

CVE Alert: CVE-2024-48858

January 15, 2025

Vulnerability Summary: CVE-2024-48858 Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could...

[LYNX] – Ransomware Victim: communisis[.]com & paragon[.]world

January 15, 2025

Ransomware Group: LYNX VICTIM NAME: communisiscom & paragonworld NOTE: No files or stolen information are by RedPacket Security. Any legal...

Cobalt Strike Beacon Detected – 154[.]64[.]231[.]1:8443

January 15, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 47[.]92[.]135[.]251:8443

January 15, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Month: January 2025

CVE Alert: CVE-2025-0474

CVE Alert: CVE-2025-21131

CVE Alert: CVE-2024-56374

CVE Alert: CVE-2025-21128

CVE Alert: CVE-2025-21130

CVE Alert: CVE-2025-21129

[APT73] – Ransomware Victim: betclic[.]com

[LYNX] – Ransomware Victim: Lowe Engineers

HackerOne Bug Bounty Disclosure: netrc-and-redirect-credential-leak-nyymi

[LYNX] – Ransomware Victim: Woodport Doors

[FUNKSEC] – Ransomware Victim: barilga[.]gov[.]mn

CVE Alert: CVE-2025-21133

CVE Alert: CVE-2025-21127

CVE Alert: CVE-2025-21134

CVE Alert: CVE-2025-21132

CVE Alert: CVE-2025-21122

CVE Alert: CVE-2025-23041

CVE Alert: CVE-2024-55921

CVE Alert: CVE-2024-55892

CVE Alert: CVE-2024-55891

CVE Alert: CVE-2024-48858

[LYNX] – Ransomware Victim: communisis[.]com & paragon[.]world

Cobalt Strike Beacon Detected – 154[.]64[.]231[.]1:8443

Cobalt Strike Beacon Detected – 47[.]92[.]135[.]251:8443

[PLAY] – Ransomware Victim: Mid-State Machine & Fabricating Corp

[FUNKSEC] – Ransomware Victim: cara[.]com[.]my

[FUNKSEC] – Ransomware Victim: rattelacademy[.]com

Cobalt Strike Beacon Detected – 45[.]182[.]189[.]105:80

Cobalt Strike Beacon Detected – 82[.]202[.]173[.]167:8083

You may have missed