CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities
The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and...
SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
The U.S. Securities and Exchange Commission (SEC) has charged four current and former public companies for making "materially misleading disclosures"...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2023-26248
Vulnerability Summary: CVE-2023-26248 The Kademlia DHT (go-libp2p-kad-dht 0.20.0 and earlier) used in IPFS (0.18.1 and earlier) assigns routing information for...
CVE Alert: CVE-2024-8036
Vulnerability Summary: CVE-2024-8036 ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker...
CVE Alert: CVE-2024-48581
Vulnerability Summary: CVE-2024-48581 File Upload vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2024-10386
Vulnerability Summary: CVE-2024-10386 CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2022-30357
Vulnerability Summary: CVE-2022-30357 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
CVE Alert: CVE-2024-47821
Vulnerability Summary: CVE-2024-47821 pyLoad is a free and open-source Download Manager. The folder `/.pyload/scripts` has scripts which are run when...
CVE Alert: CVE-2024-10387
Vulnerability Summary: CVE-2024-10387 CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2024-9584
Vulnerability Summary: CVE-2024-9584 The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of...
CVE Alert: CVE-2024-9585
Vulnerability Summary: CVE-2024-9585 The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function...
CVE Alert: CVE-2024-48654
Vulnerability Summary: CVE-2024-48654 Cross Site Scripting vulnerability in Blood Bank v.1 allows a remote attacker to execute arbitrary code via...
[RAWORLD] – Ransomware Victim: TR****GB
Ransomware Group: RAWORLD VICTIM NAME: TR****GB NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DONUTLEAKS] – Ransomware Victim: ATTENTION!
Ransomware Group: DONUTLEAKS VICTIM NAME: ATTENTION! NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[BIANLIAN] – Ransomware Victim: Premier Work Support
Ransomware Group: BIANLIAN VICTIM NAME: Premier Work Support NOTE: No files or stolen information are by RedPacket Security. Any legal...
UK Government Promotes Cyber Essentials Certification for Enhanced Cybersecurity
The UK government is actively encouraging organizations to achieve Cyber Essentials Certification, emphasizing the significant benefits it offers in safeguarding...
AI Policy Development Ignoring Cybersecurity Teams: A Critical Concern
Cybersecurity teams are facing exclusion from AI policy development in enterprises, as revealed by recent research from ISACA at its...
Fortinet Confirms Exploit of Critical CVE-2024-47575 in FortiManager
Fortinet has confirmed the serious exploitation of a critical zero-day vulnerability, CVE-2024-47575, affecting its FortiManager network management solution. Fortinet has...
New Data Governance Legislation Introduced by UK Government
The UK government is set to strengthen personal data governance with the New Data Governance Legislation, known as the Data...
$1.25M Settlement for Penn State Over Cybersecurity Violations with DoD and NASA
Penn State has agreed to a $1.25 million settlement following allegations of inadequate cybersecurity measures related to its federal contracts....
Lazarus Group Exploits Google Chrome Zero-Day Vulnerability in New Campaign
The Lazarus Group has recently exploited a zero-day vulnerability in Google Chrome, exposing systems to significant risks. A newly uncovered...
AI National Security Memo: Key Actions by the White House for US Safety
The White House has unveiled a crucial National Security Memorandum (NSM) focused on AI, emphasizing its commitment to ensuring safe...
