Month: January 2025

[LYNX] – Ransomware Victim: Engine Power Source

January 30, 2025

Ransomware Group: LYNX VICTIM NAME: Engine Power Source NOTE: No files or stolen information are by RedPacket Security. Any legal...

[THREEAM] – Ransomware Victim: soitinlaine[.]fi

January 30, 2025

Ransomware Group: THREEAM VICTIM NAME: soitinlainefi NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[APT73] – Ransomware Victim: ome[.]tv

January 30, 2025

Ransomware Group: APT73 VICTIM NAME: ometv NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Menway

January 30, 2025

Ransomware Group: AKIRA VICTIM NAME: Menway NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[LYNX] – Ransomware Victim: Tri-Sen Systems

January 30, 2025

Ransomware Group: LYNX VICTIM NAME: Tri-Sen Systems NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[LYNX] – Ransomware Victim: Jalaram Produce

January 30, 2025

Ransomware Group: LYNX VICTIM NAME: Jalaram Produce NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[LYNX] – Ransomware Victim: Scott Engineering

January 30, 2025

Ransomware Group: LYNX VICTIM NAME: Scott Engineering NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[LYNX] – Ransomware Victim: KPI Engineering

January 30, 2025

Ransomware Group: LYNX VICTIM NAME: KPI Engineering NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

Posh C2 Detected – 185[.]147[.]124[.]10:443

January 30, 2025

The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...

CVE Alert: CVE-2025-24790

January 30, 2025

Vulnerability Summary: CVE-2025-24790 Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect...

CVE Alert: CVE-2025-24882

January 30, 2025

Vulnerability Summary: CVE-2025-24882 regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different...

CVE Alert: CVE-2024-48849

January 30, 2025

Vulnerability Summary: CVE-2024-48849 Missing Origin Validation in WebSockets vulnerability in FLXEON. Session management was not sufficient to prevent unauthorized HTTPS...

CVE Alert: CVE-2025-24789

January 30, 2025

Vulnerability Summary: CVE-2025-24789 Snowflake JDBC provides a JDBC type 4 driver that supports core functionality, allowing Java program to connect...

CVE Alert: CVE-2024-48852

January 30, 2025

Vulnerability Summary: CVE-2024-48852 Insertion of Sensitive Information into Log File vulnerability observed in FLEXON. Some information may be improperly disclosed...

CVE Alert: CVE-2025-20061

January 30, 2025

Vulnerability Summary: CVE-2025-20061 mySCADA myPRO does not properly neutralize POST requests sent to a specific port with email information. This...

CVE Alert: CVE-2025-20014

January 30, 2025

Vulnerability Summary: CVE-2025-20014 mySCADA myPRO does not properly neutralize POST requests sent to a specific port with version information. This...

CVE Alert: CVE-2025-24795

January 30, 2025

Vulnerability Summary: CVE-2025-24795 The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake...

CVE Alert: CVE-2025-0840

January 30, 2025

Vulnerability Summary: CVE-2025-0840 A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects...

CVE Alert: CVE-2025-0841

January 30, 2025

Vulnerability Summary: CVE-2025-0841 A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as critical....

CVE Alert: CVE-2025-24793

January 30, 2025

Vulnerability Summary: CVE-2025-24793 The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake...

CVE Alert: CVE-2024-11187

January 30, 2025

Vulnerability Summary: CVE-2024-11187 It is possible to construct a zone such that some queries to it will generate responses containing...

CVE Alert: CVE-2025-24794

January 30, 2025

Vulnerability Summary: CVE-2025-24794 The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake...

CVE Alert: CVE-2024-12705

January 30, 2025

Vulnerability Summary: CVE-2024-12705 Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted...

CVE Alert: CVE-2025-24788

January 30, 2025

Vulnerability Summary: CVE-2025-24788 snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector...

Month: January 2025

[LYNX] – Ransomware Victim: Engine Power Source

[THREEAM] – Ransomware Victim: soitinlaine[.]fi

[APT73] – Ransomware Victim: ome[.]tv

[AKIRA] – Ransomware Victim: Menway

[LYNX] – Ransomware Victim: Tri-Sen Systems

[LYNX] – Ransomware Victim: Jalaram Produce

[LYNX] – Ransomware Victim: Scott Engineering

[LYNX] – Ransomware Victim: KPI Engineering

Posh C2 Detected – 185[.]147[.]124[.]10:443

CVE Alert: CVE-2025-24790

CVE Alert: CVE-2025-24882

CVE Alert: CVE-2024-48849

CVE Alert: CVE-2025-24789

CVE Alert: CVE-2024-48852

CVE Alert: CVE-2025-20061

CVE Alert: CVE-2025-20014

CVE Alert: CVE-2025-24795

CVE Alert: CVE-2025-0840

CVE Alert: CVE-2025-0841

CVE Alert: CVE-2025-24793

CVE Alert: CVE-2024-11187

CVE Alert: CVE-2025-24794

CVE Alert: CVE-2024-12705

CVE Alert: CVE-2025-24788

Cobalt Strike Beacon Detected – 8[.]210[.]78[.]137:81

Cobalt Strike Beacon Detected – 129[.]211[.]28[.]15:7777

Cobalt Strike Beacon Detected – 1[.]94[.]183[.]238:8080

Cobalt Strike Beacon Detected – 146[.]19[.]170[.]222:443

Cobalt Strike Beacon Detected – 179[.]43[.]186[.]234:443

You may have missed