LockBit 3.0 Ransomware Victim: Nihonsakari Co[.] , Ltd
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Metador, a never-before-seen APT targeted ISPs and telco for about 2 years
A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about...
Cobalt Stike Beacon Detected – 103[.]234[.]72[.]104:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]68[.]103[.]151:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]150[.]154:6000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
D-Link DIR-867, D-Link DIR-878, and D-Link DIR-882-US buffer overflow | CVE-2022-41140
NAME D-Link DIR-867, D-Link DIR-878, and D-Link DIR-882-US buffer overflow Platforms Affected:D-Link DIR-878 1.20B05 D-Link DIR-867 1.30B07 D-Link DIR-878 1.30B08-Hotfix...
Exmatter exfiltration tool used to implement new extortion tactics
Ransomware operators switch to new extortion tactics by using the Exmatter malware and adding new data corruption functionality. The data...
Daily Vulnerability Trends: Mon Sep 26 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-30206Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique...
Cobalt Stike Beacon Detected – 3[.]231[.]236[.]148:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Black Basta Ransomware Victim: KOLLITSCH
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 193[.]201[.]9[.]221:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]173[.]15[.]17:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 107[.]172[.]206[.]62:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]78[.]155[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 117[.]50[.]180[.]158:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 150[.]230[.]203[.]74:8011
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 162[.]14[.]66[.]133:9090
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 115[.]159[.]50[.]67:60001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Attackers impersonate CircleCI platform to compromise GitHub accounts
Threat actors target GitHub users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. GitHub...
LockBit 3.0 Ransomware Victim: melorita[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: multicareinc[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: quantumce[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death
OpIran: Anonymous launched Operation Iran against Teheran due to the ongoing crackdown on dissent after Mahsa Amini’s death. Anonymous launched...
PSAsyncShell – PowerShell Asynchronous TCP Reverse Shell
PSAsyncShell is an Asynchronous TCP Reverse Shell written in pure PowerShell.Unlike other reverse shells, all the communication and execution flow...
