Month: January 2025

CVE Alert: CVE-2024-11830

January 9, 2025

Vulnerability Summary: CVE-2024-11830 The PDF Flipbook, 3D Flipbook—DearFlip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via outline settings...

CVE Alert: CVE-2024-12854

January 9, 2025

Vulnerability Summary: CVE-2024-12854 The Garden Gnome Package plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...

CVE Alert: CVE-2024-12853

January 9, 2025

Vulnerability Summary: CVE-2024-12853 The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...

[RANSOMHUB] – Ransomware Victim: drive-lines[.]com

January 9, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: drive-linescom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: castlehillha[.]co[.]uk

January 9, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: castlehillhacouk NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[MEDUSA] – Ransomware Victim: Rent-2-Own

January 9, 2025

Ransomware Group: MEDUSA VICTIM NAME: Rent-2-Own NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[APT73] – Ransomware Victim: pnp[.]co[.]za

January 9, 2025

Ransomware Group: APT73 VICTIM NAME: pnpcoza NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[EMBARGO] – Ransomware Victim: alansarioman[.]com

January 9, 2025

Ransomware Group: EMBARGO VICTIM NAME: alansariomancom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: E-Tank (Part 2)

January 9, 2025

Ransomware Group: AKIRA VICTIM NAME: E-Tank (Part 2) NOTE: No files or stolen information are by RedPacket Security. Any legal...

[FUNKSEC] – Ransomware Victim: gags[.]gov[.]eg

January 9, 2025

Ransomware Group: FUNKSEC VICTIM NAME: gagsgoveg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[FUNKSEC] – Ransomware Victim: mindev[.]gov[.]gr

January 9, 2025

Ransomware Group: FUNKSEC VICTIM NAME: mindevgovgr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: E-Tank (Part 1)

January 9, 2025

Ransomware Group: AKIRA VICTIM NAME: E-Tank (Part 1) NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-51480

January 9, 2025

Vulnerability Summary: CVE-2024-51480 RedisTimeSeries is a time-series database (TSDB) module for Redis, by Redis. Executing one of these commands TS.QUERYINDEX,...

CVE Alert: CVE-2024-11423

January 9, 2025

Vulnerability Summary: CVE-2024-11423 The Ultimate Gift Cards for WooCommerce – Create WooCommerce Gift Cards, Gift Vouchers, Redeem & Manage Digital...

CVE Alert: CVE-2024-51737

January 9, 2025

Vulnerability Summary: CVE-2024-51737 RediSearch is a Redis module that provides querying, secondary indexing, and full-text search for Redis. An authenticated...

CVE Alert: CVE-2024-55656

January 9, 2025

Vulnerability Summary: CVE-2024-55656 RedisBloom adds a set of probabilistic data structures to Redis. There is an integer overflow vulnerability in...

CVE Alert: CVE-2025-21102

January 9, 2025

Vulnerability Summary: CVE-2025-21102 Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged...

CVE Alert: CVE-2025-20126

January 9, 2025

Vulnerability Summary: CVE-2025-20126 A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could allow...

CVE Alert: CVE-2025-22137

January 9, 2025

Vulnerability Summary: CVE-2025-22137 Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an...

CVE Alert: CVE-2024-55517

January 9, 2025

Vulnerability Summary: CVE-2024-55517 An issue was discovered in the Interllect Core Search in Polaris FT Intellect Core Banking 9.5. Input...

CVE Alert: CVE-2025-20123

January 9, 2025

Vulnerability Summary: CVE-2025-20123 Multiple vulnerabilities in the web-based management interface of Cisco Crosswork Network Controller could allow an authenticated, remote...

CVE Alert: CVE-2024-55459

January 9, 2025

Vulnerability Summary: CVE-2024-55459 An issue in keras 3.7.0 allows attackers to write arbitrary files to the user's machine via downloading...

[TERMITE] – Ransomware Victim: Huntington Hotel Group

January 9, 2025

Ransomware Group: TERMITE VICTIM NAME: Huntington Hotel Group NOTE: No files or stolen information are by RedPacket Security. Any legal...

[AKIRA] – Ransomware Victim: Galfer

January 9, 2025

Ransomware Group: AKIRA VICTIM NAME: Galfer NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Month: January 2025

CVE Alert: CVE-2024-11830

CVE Alert: CVE-2024-12854

CVE Alert: CVE-2024-12853

[RANSOMHUB] – Ransomware Victim: drive-lines[.]com

[RANSOMHUB] – Ransomware Victim: castlehillha[.]co[.]uk

[MEDUSA] – Ransomware Victim: Rent-2-Own

[APT73] – Ransomware Victim: pnp[.]co[.]za

[EMBARGO] – Ransomware Victim: alansarioman[.]com

[AKIRA] – Ransomware Victim: E-Tank (Part 2)

[FUNKSEC] – Ransomware Victim: gags[.]gov[.]eg

[FUNKSEC] – Ransomware Victim: mindev[.]gov[.]gr

[AKIRA] – Ransomware Victim: E-Tank (Part 1)

CVE Alert: CVE-2024-51480

CVE Alert: CVE-2024-11423

CVE Alert: CVE-2024-51737

CVE Alert: CVE-2024-55656

CVE Alert: CVE-2025-21102

CVE Alert: CVE-2025-20126

CVE Alert: CVE-2025-22137

CVE Alert: CVE-2024-55517

CVE Alert: CVE-2025-20123

CVE Alert: CVE-2024-55459

[TERMITE] – Ransomware Victim: Huntington Hotel Group

[AKIRA] – Ransomware Victim: Galfer

[RANSOMHUB] – Ransomware Victim: capstoneins[.]ca

[QILIN] – Ransomware Victim: kksp[.]com

[RANSOMHUB] – Ransomware Victim: clarkfreightways[.]com

[APT73] – Ransomware Victim: India car owners

[APT73] – Ransomware Victim: mistralsolutions[.]com

You may have missed