LockBit 3.0 Ransomware Victim: cristianaspinecenter[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: crbrandsinc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
BlackCat/ALPHV Ransomware Victim: Nelsonslaw LLP
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
US-CERT Bulletin (SB22-199):Vulnerability Summary for the Week of July 11, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
CloudMensis spyware went undetected for many years
Researchers spotted previously undocumented spyware, dubbed CloudMensis, that targets the Apple macOS systems. Researchers from ESET discovered a previously undetected...
HackerOne Bug Bounty Disclosure: html-injection-in-e-mail-not-resolved-()bythewikiii
Programme HackerOne Acronis Acronis Submitted by thewikiii thewikiii Report HTML Injection in E-mail Not Resolved () Full Report A considerable...
CISA: CISA released Security Advisory on MiCODUS MV720 Global Positioning System (GPS) Tracker
CISA released Security Advisory on MiCODUS MV720 Global Positioning System (GPS) Tracker CISA has released an Industrial Controls Systems Advisory...
Russia-linked APT29 relies on Google Drive, Dropbox to evade detection
Russia-linked threat actors APT29 are using the Google Drive cloud storage service to evade detection. Palo Alto Networks researchers reported...
Pinecone – A WLAN Red Team Framework
Pinecone is a WLAN networks auditing tool, suitable for red team usage. It is extensible via modules, and it is...
PPCGeeks – 492,518 breached accounts
In August 2016, the pocket PC fan site forum PPCGeeks suffered a data breach that exposed over 490k records. The...
Crooks create rogue cryptocurrency-themed apps to steal crypto assets from users
The U.S. FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. The U.S....
Cobalt Stike Beacon Detected – 202[.]95[.]14[.]125:49152
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]77[.]11[.]174:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The FTC will go after companies misusing location, health, and other sensitive data
After the overturning of Roe V Wade, many feared that using, having access to, and sharing reproductive and sexual health...
Creating an approval button and workflow in N8N via Telegram
Approval Workflow Example for N8N Have you ever had a workflow automation that needed a human decision to progress a...
Several apps on the Play Store used to spread Joker, Facestealer and Coper malware
Google blocked dozens of malicious apps from the official Play Store that were spreading Joker, Facestealer, and Coper malware families....
Apache CloudStack XML external entity | CVE-2022-35741
NAME Apache CloudStack XML external entity Platforms Affected:Apache CloudStack 4.5.0 Apache CloudStack 4.16.1.0 Apache CloudStack 4.17.0.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apache...
Node.js eslint-plugin-internal module code execution |
NAME Node.js eslint-plugin-internal module code execution Platforms Affected:Node.js eslint-plugin-internalRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js eslint-plugin-internal module could allow a remote attacker...
Accusoft ImageGear code execution | CVE-2022-29465
NAME Accusoft ImageGear code execution Platforms Affected:Accusoft ImageGear 20.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Accusoft ImageGear could allow a remote attacker to...
Apache Spark command execution | CVE-2022-33891
NAME Apache Spark command execution Platforms Affected:Apache Spark 3.1.2 Apache Spark 3.0.3 Apache Spark 3.1.1 Apache Spark 3.2.0 Apache Spark...
Node.js mozi-metrics code execution |
NAME Node.js mozi-metrics code execution Platforms Affected:Node.js mozi-metricsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js mozi-metrics could allow a remote attacker to execute...
AROX School ERP Pro file upload | CVE-2022-32119
NAME AROX School ERP Pro file upload Platforms Affected:AROX Solution AROX School ERP Pro 1.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION AROX School...
Node.js @contasimples/simples-react-uiOpen module code execution |
NAME Node.js @contasimples/simples-react-uiOpen module code execution Platforms Affected:Node.js @contasimples/simples-react-uiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @contasimples/simples-react-uiOpen module could allow a remote attacker...
Node.js ys-mozi-metrics module code execution |
NAME Node.js ys-mozi-metrics module code execution Platforms Affected:Node.js ys-mozi-metricsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ys-mozi-metrics module could allow a remote attacker...
