Month: February 2025

Posh C2 Detected – 185[.]147[.]124[.]108:443

February 26, 2025

The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...

[MEDUSA] – Ransomware Victim: Aurora Boardworks

February 25, 2025

Ransomware Group: MEDUSA VICTIM NAME: Aurora Boardworks NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MEDUSA] – Ransomware Victim: Mundelein Park & Recreation District

February 25, 2025

Ransomware Group: MEDUSA VICTIM NAME: Mundelein Park & Recreation District NOTE: No files or stolen information are by RedPacket Security....

[HUNTERS] – Ransomware Victim: Vermeer Mexico

February 25, 2025

Ransomware Group: HUNTERS VICTIM NAME: Vermeer Mexico NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MEDUSA] – Ransomware Victim: Laurens School District 56

February 25, 2025

Ransomware Group: MEDUSA VICTIM NAME: Laurens School District 56 NOTE: No files or stolen information are by RedPacket Security. Any...

[MEDUSA] – Ransomware Victim: Heartland Health Center

February 25, 2025

Ransomware Group: MEDUSA VICTIM NAME: Heartland Health Center NOTE: No files or stolen information are by RedPacket Security. Any legal...

[AKIRA] – Ransomware Victim: National AirVibrator

February 25, 2025

Ransomware Group: AKIRA VICTIM NAME: National AirVibrator NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2025-27330

February 25, 2025

Vulnerability Summary: CVE-2025-27330 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PlayerJS PlayerJS allows DOM-Based XSS....

CVE Alert: CVE-2025-27331

February 25, 2025

Vulnerability Summary: CVE-2025-27331 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sébastien Dumont WooCommerce Display Products...

CVE Alert: CVE-2025-27332

February 25, 2025

Vulnerability Summary: CVE-2025-27332 Cross-Site Request Forgery (CSRF) vulnerability in gmnazmul Smart Maintenance & Countdown allows Stored XSS. This issue affects...

CVE Alert: CVE-2025-27329

February 25, 2025

Vulnerability Summary: CVE-2025-27329 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in inlinkz EZ InLinkz linkup allows...

CVE Alert: CVE-2025-27328

February 25, 2025

Vulnerability Summary: CVE-2025-27328 Cross-Site Request Forgery (CSRF) vulnerability in queeez WP-PostRatings Cheater allows Cross Site Request Forgery. This issue affects...

CVE Alert: CVE-2025-27327

February 25, 2025

Vulnerability Summary: CVE-2025-27327 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Winlin Live Streaming Video Player...

CVE Alert: CVE-2025-27344

February 25, 2025

Vulnerability Summary: CVE-2025-27344 Cross-Site Request Forgery (CSRF) vulnerability in filipstepanov Phee's LinkPreview allows Cross Site Request Forgery. This issue affects...

CVE Alert: CVE-2025-27341

February 25, 2025

Vulnerability Summary: CVE-2025-27341 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in afzal_du Reactive Mortgage Calculator allows...

CVE Alert: CVE-2025-27325

February 25, 2025

Vulnerability Summary: CVE-2025-27325 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bruce Video.js HLS Player allows...

CVE Alert: CVE-2025-27342

February 25, 2025

Vulnerability Summary: CVE-2025-27342 Cross-Site Request Forgery (CSRF) vulnerability in josesan WooCommerce Recargo de Equivalencia allows Cross Site Request Forgery. This...

[RANSOMHUB] – Ransomware Victim: www[.]wpisd[.]com

February 25, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwwpisdcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: www[.]ateliermonarque[.]com

February 25, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwateliermonarquecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[MEDUSA] – Ransomware Victim: Friendship House

February 25, 2025

Ransomware Group: MEDUSA VICTIM NAME: Friendship House NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[RANSOMHUB] – Ransomware Victim: www[.]avalon-hotel[.]com

February 25, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwavalon-hotelcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[CACTUS] – Ransomware Victim: bluedge[.]com

February 25, 2025

Ransomware Group: CACTUS VICTIM NAME: bluedgecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: www[.]rgb[.]com

February 25, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwrgbcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: hgmlegal[.]com

February 25, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: hgmlegalcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Month: February 2025

Posh C2 Detected – 185[.]147[.]124[.]108:443

[MEDUSA] – Ransomware Victim: Aurora Boardworks

[MEDUSA] – Ransomware Victim: Mundelein Park & Recreation District

[HUNTERS] – Ransomware Victim: Vermeer Mexico

[MEDUSA] – Ransomware Victim: Laurens School District 56

[MEDUSA] – Ransomware Victim: Heartland Health Center

[AKIRA] – Ransomware Victim: National AirVibrator

CVE Alert: CVE-2025-27330

CVE Alert: CVE-2025-27331

CVE Alert: CVE-2025-27332

CVE Alert: CVE-2025-27329

CVE Alert: CVE-2025-27328

CVE Alert: CVE-2025-27327

CVE Alert: CVE-2025-27344

CVE Alert: CVE-2025-27341

CVE Alert: CVE-2025-27325

CVE Alert: CVE-2025-27342

[RANSOMHUB] – Ransomware Victim: www[.]wpisd[.]com

[RANSOMHUB] – Ransomware Victim: www[.]ateliermonarque[.]com

[MEDUSA] – Ransomware Victim: Friendship House

[RANSOMHUB] – Ransomware Victim: www[.]avalon-hotel[.]com

[CACTUS] – Ransomware Victim: bluedge[.]com

[RANSOMHUB] – Ransomware Victim: www[.]rgb[.]com

[RANSOMHUB] – Ransomware Victim: hgmlegal[.]com

[KILLSEC] – Ransomware Victim: Wendy Wu Tours

[HUNTERS] – Ransomware Victim: Tata Technologies

[QILIN] – Ransomware Victim: rockhillwc[.]com

[RANSOMHUB] – Ransomware Victim: goencon[.]com

[QILIN] – Ransomware Victim: peruzzi[.]com

You may have missed