CVE Alert: CVE-2025-0842
Vulnerability Summary: CVE-2025-0842 A vulnerability was found in needyamin Library Card System 1.0 and classified as critical. This issue affects...
Month: January 2025
CVE Alert: CVE-2025-0843
Vulnerability Summary: CVE-2025-0843 A vulnerability was found in needyamin Library Card System 1.0. It has been classified as critical. Affected...
CVE Alert: CVE-2025-0851
Vulnerability Summary: CVE-2025-0851 A path traversal issue in ZipUtils.unzip and TarUtils.untar in Deep Java Library (DJL) on all platforms allows...
CVE Alert: CVE-2025-21396
Vulnerability Summary: CVE-2025-21396 Missing authorization in Microsoft Account allows an unauthorized attacker to elevate privileges over a network. Affected Endpoints:...
CVE Alert: CVE-2025-21415
Vulnerability Summary: CVE-2025-21415 Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over...
[KILLSEC] – Ransomware Victim: payahmedabadechallan[.]org
Ransomware Group: KILLSEC VICTIM NAME: payahmedabadechallanorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Major Security Holes in Critical UK Government IT Systems – Urgent Cyber Resilience Needs
The UK government's IT systems are facing serious security vulnerabilities, prompting calls for improved cyber resilience across departments. The National...
Breakout Time Accelerates by 22%: How Cyber-Attacks Are Evolving
In 2024, breakout time for cyber-attacks has shrunk by 22%, heightening the challenge for cybersecurity professionals to respond effectively. Threat...
Exploitation of Government Websites for Phishing: A Rising Cyber Threat
Cybercriminals have increasingly targeted government websites due to their vulnerabilities, leveraging trust associated with these domains for phishing schemes. New...
Nation-State Hackers Exploit Gemini AI Tool for Malicious Activities
Nation-state hackers are increasingly exploiting Google's Gemini AI tool for their cyber operations. This article explores how various countries are...
DeepSeek: Chinese GenAI Startup Challenges Privacy with New LLM
DeepSeek, a year-old Chinese GenAI startup, is shaking up the tech world with its new large language model, R1, raising...
AI Vulnerabilities Surge 1205% in APIs: A Critical Security Concern
The rise of AI has led to a staggering 1205% increase in API vulnerabilities, highlighting a crucial security concern for...
HellCat Ransomware Gang: Utilizing Humiliation Tactics for Extortion
The newly emerged HellCat ransomware gang is leveraging psychological tactics to attract media attention and pressure victims into paying extortion...
[TERMITE] – Ransomware Victim: Zschimmer and Schwarz
Ransomware Group: TERMITE VICTIM NAME: Zschimmer and Schwarz NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FOG] – Ransomware Victim: Gitlabs: Prasaga, HE2B, Kombinat
Ransomware Group: FOG VICTIM NAME: Gitlabs: Prasaga, HE2B, Kombinat NOTE: No files or stolen information are by RedPacket Security. Any...
CISA: Fortinet Releases Security Updates for FortiManager
Fortinet Releases Security Updates for FortiManager Fortinet released a security update to address a vulnerability in FortiManager. A remote cyber...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on January 7, 2025. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases the Cybersecurity Performance Goals Adoption Report
CISA Releases the Cybersecurity Performance Goals Adoption Report Today, CISA released the Cybersecurity Performance Goals Adoption Report to highlight how...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on January 10, 2025. These...
CISA: CISA Adds One Vulnerability to the KEV Catalog
CISA Adds One Vulnerability to the KEV Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
