RedPacket Security - InfoSec News & Tutorials

Cobalt Stike Beacon Detected – 173[.]82[.]121[.]42:8666

June 14, 2022

Cobalt Stike Beacon Detected – 159[.]75[.]252[.]102:443

June 14, 2022

Cobalt Stike Beacon Detected – 101[.]42[.]175[.]119:80

June 14, 2022

Cobalt Stike Beacon Detected – 118[.]89[.]22[.]1:81

June 14, 2022

Cobalt Stike Beacon Detected – 114[.]132[.]214[.]17:80

June 14, 2022

Cobalt Stike Beacon Detected – 81[.]68[.]196[.]206:443

June 14, 2022

Cobalt Stike Beacon Detected – 194[.]36[.]188[.]12:443

June 14, 2022

Cobalt Stike Beacon Detected – 209[.]141[.]33[.]44:4433

June 14, 2022

Cobalt Stike Beacon Detected – 5[.]61[.]39[.]72:88

June 14, 2022

SharpEventPersist – Persistence By Writing/Reading Shellcode From Event Log

June 13, 2022

Persistence by writing/reading shellcode from Event Log. Usage The SharpEventPersist tool takes 4 case-sensitive parameters: -file "C:pathtoshellcode.bin" -instanceid 1337 -source...

News

US-CERT Bulletin (SB22-164):Vulnerability Summary for the Week of June 6, 2022

June 13, 2022

The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...

Russia-linked APT targets Ukraine by exploiting the Follina RCE vulnerability

June 13, 2022

Ukraine’s Computer Emergency Response Team (CERT) warns that the Russia-linked Sandworm APT group may exploit the Follina RCE vulnerability. Ukraine’s...

Taking down the IP2Scam tech support campaign

June 13, 2022

Tech support scams follow a simple business model that has not changed much over the years. After all, why change...

Cuba Ransomware Victim: Etron

June 13, 2022

Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...

HackerOne Bug Bounty Disclosure: lack-of-rate-limit-on-athentification-login-page-&-forgot-password-pagebysaidkira

June 13, 2022

GALLIUM APT used a new PingPull RAT in recent campaigns

June 13, 2022

China-linked Gallium APT employed a previously undocumented RAT, tracked as PingPull, in recent cyber espionage campaign targeting South Asia, Europe,...

Update Chrome now: Four high risk vulnerabilities found

June 13, 2022

Users of Chrome have been advised to apply updates as soon as possible related to seven security vulnerabilities. CISA has...

HelloXD Ransomware operators install MicroBackdoor on target systems

June 13, 2022

Experts observed the HelloXD ransomware deploying a backdoor to facilitate persistent remote access to infected hosts. The HelloXD ransomware first appeared...

confluencePot – Simple Honeypot For Atlassian Confluence (CVE-2022-26134)

June 13, 2022

ConfluencePot is a simple honeypot for the Atlassian Confluence unauthenticated and remote OGNL injection vulnerability (CVE-2022-26134). About the vulnerability You...

Serious vulnerabilities found in ITarian software, patches available for SaaS products

June 13, 2022

Dutch research group DIVD has identified multiple vulnerabilities in ITarian products. In cooperation with DIVD, ITarian has made patches available...

LockBit 2.0 Ransomware Victim: ptg[.]com[.]au

June 13, 2022

LockBit 2.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...

A week in security (June 6 – June 12)

June 13, 2022

Last week on Malwarebytes Labs: FBI warns of scammers soliciting donations for UkraineMicrosoft autopatch is here…but can you use it?Prometheus...

Cobalt Stike Beacon Detected – 185[.]112[.]83[.]65:443

June 13, 2022

Cobalt Stike Beacon Detected – 194[.]87[.]70[.]14:8080

June 13, 2022

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed