CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on March 4, 2025. These...
Month: March 2025
Cobalt Strike Beacon Detected – 124[.]222[.]82[.]19:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]97[.]96[.]34:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 172[.]233[.]26[.]237:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]63[.]197:8989
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 118[.]193[.]36[.]235:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 34[.]152[.]19[.]0:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
[SAFEPAY] – Ransomware Victim: willms-fleisch[.]de
Ransomware Group: SAFEPAY VICTIM NAME: willms-fleischde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: Pervedant
Ransomware Group: LYNX VICTIM NAME: Pervedant NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-1933
Vulnerability Summary: CVE-2025-1933 On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from...
CVE Alert: CVE-2025-1932
Vulnerability Summary: CVE-2025-1932 An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122...
CVE Alert: CVE-2025-27424
Vulnerability Summary: CVE-2025-27424 Websites redirecting to a non-HTTP scheme URL could allow a website address to be spoofed for a...
CVE Alert: CVE-2025-27426
Vulnerability Summary: CVE-2025-27426 Malicious websites utilizing a server-side redirect to an internal error page could result in a spoofed website...
CVE Alert: CVE-2025-27425
Vulnerability Summary: CVE-2025-27425 Scanning certain QR codes that included text with a website URL could allow the URL to be...
CVE Alert: CVE-2025-1943
Vulnerability Summary: CVE-2025-1943 Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of...
CVE Alert: CVE-2025-1941
Vulnerability Summary: CVE-2025-1941 Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been...
CVE Alert: CVE-2024-50706
Vulnerability Summary: CVE-2024-50706 Unauthenticated SQL injection vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary SQL queries...
CVE Alert: CVE-2024-50705
Vulnerability Summary: CVE-2024-50705 Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary...
CVE Alert: CVE-2025-1942
Vulnerability Summary: CVE-2025-1942 When String.toUpperCase() caused a string to get longer it was possible for uninitialized memory to be incorporated...
[FOG] – Ransomware Victim: SCOLARO FETTER GRIZANTI & McGOUGH, P[.]C[.] (scolaro[.]com)
Ransomware Group: FOG VICTIM NAME: SCOLARO FETTER GRIZANTI & McGOUGH, PC (scolarocom) NOTE: No files or stolen information are by...
HackerOne Bug Bounty Disclosure: cve-on-payapps-com-khoof
Company Name: Autodesk Company HackerOne URL: https://hackerone.com/autodesk Submitted By:khoofLink to Submitters Profile:https://hackerone.com/khoof Report Title:CVE-2023-5561 on PayappscomReport Link:https://hackerone.com/reports/2997549Date Submitted:05 March 2025...
[RANSOMHUB] – Ransomware Victim: www[.]black-star[.]fr
Ransomware Group: RANSOMHUB VICTIM NAME: wwwblack-starfr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-50704
Vulnerability Summary: CVE-2024-50704 Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary code...
CVE Alert: CVE-2024-50707
Vulnerability Summary: CVE-2024-50707 Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary code...
