[BRAINCIPHER] – Ransomware Victim: Cristal y Lavisa S[.]A[.] de C[.]V[.]
Ransomware Group: BRAINCIPHER VICTIM NAME: Cristal y Lavisa SA de CV NOTE: No files or stolen information are by RedPacket...
[BRAINCIPHER] – Ransomware Victim: Estar Seguros, S[.]A[.]
Ransomware Group: BRAINCIPHER VICTIM NAME: Estar Seguros, SA NOTE: No files or stolen information are by RedPacket Security. Any legal...
Posh C2 Detected – 91[.]240[.]118[.]204:443
The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...
CVE Alert: CVE-2024-12283
Vulnerability Summary: CVE-2024-12283 The WP Pipes plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘x1’ parameter in...
CVE Alert: CVE-2024-10511
Vulnerability Summary: CVE-2024-10511 CWE-287: Improper Authentication vulnerability exists that could cause Denial of access to the web interface when someone...
CVE Alert: CVE-2024-53289
Vulnerability Summary: CVE-2024-53289 Dell ThinOS version 2408 contains a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability. A low privileged attacker with...
CVE Alert: CVE-2024-12004
Vulnerability Summary: CVE-2024-12004 The WPC Order Notes for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2024-11737
Vulnerability Summary: CVE-2024-11737 CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss...
CVE Alert: CVE-2024-54269
Vulnerability Summary: CVE-2024-54269 Missing Authorization vulnerability in Ninja Team Notibar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...
CVE Alert: CVE-2024-11008
Vulnerability Summary: CVE-2024-11008 The Members – Membership & User Role Editor Plugin plugin for WordPress is vulnerable to Sensitive Information...
CVE Alert: CVE-2024-12294
Vulnerability Summary: CVE-2024-12294 The Last Viewed Posts by WPBeginner plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
CVE Alert: CVE-2024-12363
Vulnerability Summary: CVE-2024-12363 Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows...
CVE Alert: CVE-2024-11840
Vulnerability Summary: CVE-2024-11840 The RapidLoad – Optimize Web Vitals Automatically plugin for WordPress is vulnerable to unauthorized access of data...
[SARCOMA] – Ransomware Victim: Brasilmad
Ransomware Group: SARCOMA VICTIM NAME: Brasilmad NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-12325
Vulnerability Summary: CVE-2024-12325 The Waymark plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘content’ parameter in all...
CVE Alert: CVE-2023-23472
Vulnerability Summary: CVE-2023-23472 IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7) could allow an authenticated user to obtain sensitive...
CVE Alert: CVE-2024-51460
Vulnerability Summary: CVE-2024-51460 IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed...
CVE Alert: CVE-2024-11351
Vulnerability Summary: CVE-2024-11351 The Restrict – membership, site, content and user access restrictions for WordPress plugin for WordPress is vulnerable...
CVE Alert: CVE-2024-28141
Vulnerability Summary: CVE-2024-28141 The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users...
CVE Alert: CVE-2024-11597
Vulnerability Summary: CVE-2024-11597 Under specific circumstances, insecure permissions in Ivanti Performance Manager before version 2024.3 HF1, 2024.1 HF1, or 2023.3...
CVE Alert: CVE-2024-11598
Vulnerability Summary: CVE-2024-11598 Under specific circumstances, insecure permissions in Ivanti Application Control before version 2024.3 HF1, 2024.1 HF2, or 2023.3...
CVE Alert: CVE-2024-8496
Vulnerability Summary: CVE-2024-8496 Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker...
CVE Alert: CVE-2024-10251
Vulnerability Summary: CVE-2024-10251 Under specific circumstances, insecure permissions in Ivanti Security Controls before version 2024.4.1 allows a local authenticated attacker...
