[FOG] – Ransomware Victim: The University of Notre Dame Australia (nd[.]edu[.]au)
Ransomware Group: FOG VICTIM NAME: The University of Notre Dame Australia (ndeduau) NOTE: No files or stolen information are by...
Year: 2025
[MEDUSA] – Ransomware Victim: SRP Companies
Ransomware Group: MEDUSA VICTIM NAME: SRP Companies NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEDUSA] – Ransomware Victim: Paignton Zoo
Ransomware Group: MEDUSA VICTIM NAME: Paignton Zoo NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEDUSA] – Ransomware Victim: Natures Organics
Ransomware Group: MEDUSA VICTIM NAME: Natures Organics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[CLOP] – Ransomware Victim: lacold[.]com
Ransomware Group: CLOP VICTIM NAME: lacoldcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-10649
Vulnerability Summary: CVE-2024-10649 wandb/openui latest commit c945bb859979659add5f490a874140ad17c56a5d contains a vulnerability where unauthenticated endpoints allow file uploads and downloads from an...
CVE Alert: CVE-2024-46434
Vulnerability Summary: CVE-2024-46434 Tenda W18E V16.01.0.8(1625) suffers from authentication bypass in the web management portal allowing an unauthorized remote attacker...
CVE Alert: CVE-2024-13010
Vulnerability Summary: CVE-2024-13010 The WP Foodbakery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and...
CVE Alert: CVE-2024-46435
Vulnerability Summary: CVE-2024-46435 A stack overflow vulnerability in the Tenda W18E V16.01.0.8(1625) web management portal allows an authenticated remote attacker...
CVE Alert: CVE-2024-13011
Vulnerability Summary: CVE-2024-13011 The WP Foodbakery plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type...
CVE Alert: CVE-2024-46433
Vulnerability Summary: CVE-2024-46433 A default credentials vulnerability in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote attackers to access the web management...
CVE Alert: CVE-2024-46432
Vulnerability Summary: CVE-2024-46432 Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. An attacker can send a specially crafted HTTP...
CVE Alert: CVE-2024-46431
Vulnerability Summary: CVE-2024-46431 Tenda W18E V16.01.0.8(1625) is vulnerable to Buffer Overflow. An attacker with access to the web management portal...
CVE Alert: CVE-2024-46430
Vulnerability Summary: CVE-2024-46430 Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. Unauthorized password change via the web management portal...
CVE Alert: CVE-2024-46429
Vulnerability Summary: CVE-2024-46429 A hardcoded credentials vulnerability in Tenda W18E V16.01.0.8(1625) allows unauthenticated remote attackers to access the web management...
[AKIRA] – Ransomware Victim: Prime Trust Financial
Ransomware Group: AKIRA VICTIM NAME: Prime Trust Financial NOTE: No files or stolen information are by RedPacket Security. Any legal...
Cobalt Strike Beacon Detected – 43[.]143[.]114[.]43:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 62[.]234[.]57[.]48:83
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]205[.]157[.]23:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 110[.]41[.]164[.]39:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Brute Ratel C4 Detected – 54[.]178[.]158[.]125:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
[THREEAM] – Ransomware Victim: sehma[.]com
Ransomware Group: THREEAM VICTIM NAME: sehmacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-46437
Vulnerability Summary: CVE-2024-46437 A sensitive information disclosure vulnerability in the Tenda W18E V16.01.0.8(1625) web management portal allows an unauthenticated remote...
CVE Alert: CVE-2024-8550
Vulnerability Summary: CVE-2024-8550 A Local File Inclusion (LFI) vulnerability exists in the /load-workflow endpoint of modelscope/agentscope version v0.0.4. This vulnerability...
