CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on March 4, 2025. These...
Month: March 2025
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
[MONTI] – Ransomware Victim: 365labs – Security Corp
Ransomware Group: MONTI VICTIM NAME: 365labs - Security Corp NOTE: No files or stolen information are by RedPacket Security. Any...
Cobalt Strike Beacon Detected – 43[.]165[.]133[.]147:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 62[.]109[.]30[.]217:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 185[.]43[.]4[.]73:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-0685
Vulnerability Summary: CVE-2025-0685 A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module...
CVE Alert: CVE-2025-0686
Vulnerability Summary: CVE-2025-0686 A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs...
CVE Alert: CVE-2025-27423
Vulnerability Summary: CVE-2025-27423 Vim is an open source, command line text editor. Vim is distributed with the tar.vim plugin, that...
CVE Alert: CVE-2025-27422
Vulnerability Summary: CVE-2025-27422 FACTION is a PenTesting Report Generation and Collaboration Framework. Authentication is bypassed when an attacker registers a...
CVE Alert: CVE-2025-27421
Vulnerability Summary: CVE-2025-27421 Abacus is a highly scalable and stateless counting API. A critical goroutine leak vulnerability has been identified...
CVE Alert: CVE-2025-27371
Vulnerability Summary: CVE-2025-27371 In certain IETF OAuth 2.0-related specifications, when the JSON Web Token Profile for OAuth 2.0 Client Authentication...
CVE Alert: CVE-2025-1878
Vulnerability Summary: CVE-2025-1878 A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as problematic....
CVE Alert: CVE-2025-0684
Vulnerability Summary: CVE-2025-0684 A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs...
CVE Alert: CVE-2025-27370
Vulnerability Summary: CVE-2025-27370 OpenID Connect Core through 1.0 errata set 2 allows audience injection in certain situations. When the private_key_jwt...
CVE Alert: CVE-2024-30154
Vulnerability Summary: CVE-2024-30154 HCL SX is vulnerable to cross-site request forgery vulnerability which could allow an attacker to execute malicious...
[QILIN] – Ransomware Victim: PFS Grupo – Plan de igualdad, Sostenibilidad
Ransomware Group: QILIN VICTIM NAME: PFS Grupo - Plan de igualdad, Sostenibilidad NOTE: No files or stolen information are by...
HackerOne Bug Bounty Disclosure: ability-to-add-and-verify-uncontrolled-mobile-numbers-leading-to-account-takeover-ato-trev-ck
Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:trev0ckLink to Submitters Profile:https://hackerone.com/trev0ck Report Title:Ability to Add and Verify Uncontrolled...
HackerOne Bug Bounty Disclosure: sensitive-api-key-leakage-hemant
Company Name: AWS VDP Company HackerOne URL: https://hackerone.com/aws_vdp Submitted By:hemant1Link to Submitters Profile:https://hackerone.com/hemant1 Report Title:Sensitive API Key LeakageReport Link:https://hackerone.com/reports/3017105Date Submitted:04...
[FOG] – Ransomware Victim: Pampili (pampili[.]com[.]br)
Ransomware Group: FOG VICTIM NAME: Pampili (pampilicombr) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[BIANLIAN] – Ransomware Victim: Keystone Pacific Property Management LLC
Ransomware Group: BIANLIAN VICTIM NAME: Keystone Pacific Property Management LLC NOTE: No files or stolen information are by RedPacket Security....
[BIANLIAN] – Ransomware Victim: Mosley Glick O’Brien, Inc[.]
Ransomware Group: BIANLIAN VICTIM NAME: Mosley Glick O’Brien, Inc NOTE: No files or stolen information are by RedPacket Security. Any...
[AKIRA] – Ransomware Victim: FANTIN group
Ransomware Group: AKIRA VICTIM NAME: FANTIN group NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[AKIRA] – Ransomware Victim: Ray Fogg Corporate Properties
Ransomware Group: AKIRA VICTIM NAME: Ray Fogg Corporate Properties NOTE: No files or stolen information are by RedPacket Security. Any...
